Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: WIa3dgrWpRWvpGAjIIDof3aylHYjkg8MQkd9ElEackU=
Subject key identifier: 4A:4C:A6:F4:54:3F:51:F0:B2:48:D6:39:C8:E6:19:61:38:B3:EF:53
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 01988E0FBA43F77323516A691A5F61EDEA68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 02AE
Signing time: Sat 09 Aug 2025 09:00:52 +0000
Manifest this update: Sat 09 Aug 2025 09:00:52 +0000
Manifest next update: Sun 10 Aug 2025 09:00:52 +0000
Files and hashes: 1: 5jBhyCclhjBWCSh1O-0WT6aKzvs.roa (hash: MRjgNDdW46vQb+SgK5+muMmigtF72q9wmhV3HqxuIuc=)
2: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: qbo6mBJ2yNl6LjhRmyZW9cvgVKPw6Td0GiZ0RVJu6BI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:0f:ba:43:f7:73:23:51:6a:69:1a:5f:61:ed:ea:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Aug 9 09:00:52 2025 GMT
Not After : Aug 10 09:00:52 2025 GMT
Subject: CN=4a4ca6f4543f51f0b248d639c8e6196138b3ef53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d5:97:2a:5f:b6:a6:70:e0:fa:5c:01:76:90:
43:bf:e1:0b:31:ac:7b:ab:c5:e8:5d:ce:e3:c5:25:
5d:d3:b2:db:c9:35:1a:da:f8:14:ee:99:e0:3b:a5:
7c:0b:23:32:6d:a1:37:e0:55:41:9f:8d:8c:0b:42:
10:f1:cf:fb:94:65:1d:78:0e:91:26:7e:7a:c0:64:
a1:da:8a:d6:31:24:5c:20:69:eb:64:53:54:0c:84:
cb:b2:12:2c:42:33:b7:a2:19:6c:25:a4:cc:6e:17:
3b:5d:de:51:10:73:bc:d4:83:ec:0d:9a:99:cf:c2:
e6:36:a0:a5:b0:ba:44:78:1a:dc:e1:0e:a4:fa:41:
af:f4:47:09:2b:03:d7:c9:e7:d7:4b:4b:a4:02:6c:
0c:05:53:ca:10:b1:04:0e:31:8d:7d:35:3c:53:08:
c9:90:e8:03:25:2c:4b:46:23:44:4e:a3:10:eb:35:
c8:14:d4:fe:5a:84:73:29:a2:96:a0:71:3a:11:05:
c4:85:65:d3:64:6a:19:d3:b7:db:8f:46:5c:b6:e0:
c9:ae:c5:ec:2d:8e:c9:d0:ab:85:e6:e3:98:16:6f:
58:7a:be:bb:19:ba:bd:7f:c6:06:97:95:de:f8:3e:
c7:ed:c3:e8:71:b7:f1:ec:54:c9:cd:eb:7e:0f:3c:
fd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:4C:A6:F4:54:3F:51:F0:B2:48:D6:39:C8:E6:19:61:38:B3:EF:53
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:39:58:0a:cc:a3:5c:83:d4:a6:c9:d6:b1:86:ea:b9:93:67:
5c:24:84:e9:85:6e:41:d7:93:53:a5:3b:ba:92:a6:aa:80:c6:
40:35:10:b7:58:c1:ac:5c:f9:09:32:6f:31:e3:93:37:9b:9c:
10:c7:82:a9:22:3e:af:ca:3b:3e:5f:2c:29:d5:7e:a9:da:47:
42:ee:15:43:a2:2e:99:68:aa:c2:20:d5:b7:30:cf:e5:76:fd:
9d:39:f8:c7:9b:56:5a:a5:0c:6c:79:88:3b:8b:2f:83:e1:f3:
da:e0:32:09:96:b4:5f:38:81:25:db:ed:f9:bf:01:ea:f3:18:
db:1c:e0:44:6a:f3:73:51:9a:96:36:8a:d6:37:c8:61:62:1e:
f8:5a:bd:79:05:cc:f9:60:da:6e:a3:87:f2:2a:fa:47:52:c4:
4f:c3:c8:36:27:3b:9d:ee:73:74:05:2d:c8:3c:d5:db:01:70:
be:bf:4a:c1:aa:9b:90:a5:74:b4:60:d2:71:f8:29:4b:9e:25:
36:3a:35:61:8d:87:93:53:9d:57:dd:27:c5:21:0a:d7:b4:de:
59:5d:86:c1:15:0a:e6:07:2c:fa:1a:78:16:36:10:00:e8:63:
de:7a:02:e3:0e:d3:0d:66:25:39:28:65:56:e8:a9:49:07:f5:
91:b5:b5:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:40:28 2025 by rpki-client