Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
File: sx0cKJHYgEaaINi38Y5M2GVDAEY.mft (raw, json)
Hash identifier: nRoWW6gD11bnnD3oDJDs86qVqQvPDCw3MlTGvtMNx4Q=
Subject key identifier: BA:A7:4C:29:89:82:7A:12:35:72:21:34:52:0C:A2:FB:69:A3:8B:E2
Authority key identifier: B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
Certificate issuer: /CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Certificate serial: 01987450BB76295855D04464C376B6A11D9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
Manifest number: 02F9
Signing time: Mon 04 Aug 2025 09:01:44 +0000
Manifest this update: Mon 04 Aug 2025 09:01:44 +0000
Manifest next update: Tue 05 Aug 2025 09:01:44 +0000
Files and hashes: 1: K12F-uP3adhB5XYkvRWOwtyWFxQ.roa (hash: 4K99rP4m/GgxDIw4+Su5OB+ocoFQK/2aIqkgeWKmoU4=)
2: sx0cKJHYgEaaINi38Y5M2GVDAEY.crl (hash: Hd8ZMng2uNANg24DJ+iiCJU/LrtmFwiXRTyBUbuOgOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:bb:76:29:58:55:d0:44:64:c3:76:b6:a1:1d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Validity
Not Before: Aug 4 09:01:44 2025 GMT
Not After : Aug 5 09:01:44 2025 GMT
Subject: CN=baa74c2989827a1235722134520ca2fb69a38be2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:48:c4:73:fe:bf:0f:47:6e:bf:53:6b:18:8b:
27:70:c3:69:a2:4c:da:82:94:07:7c:aa:fa:a4:50:
ff:87:45:a8:4e:c3:1e:03:82:f0:27:92:43:a7:bc:
0f:ac:e4:89:9a:c2:bb:5f:d2:48:b8:fe:7e:6f:ab:
ea:0a:3f:17:64:2e:ec:ec:0b:a3:ad:3f:73:3b:b5:
8d:9e:fb:ed:6b:a3:c8:ef:07:7d:40:35:d1:16:30:
db:c1:c4:7c:cd:71:70:77:f1:cc:44:37:02:96:a2:
64:ec:67:bc:14:47:e8:c2:19:21:dd:69:d1:11:ca:
b4:01:48:00:3d:b7:f1:fc:06:26:6e:70:68:16:48:
d3:bd:f3:f4:a9:6c:ee:e0:84:cc:df:9b:67:46:34:
45:b6:1f:6a:75:7a:27:6b:ab:ec:e3:b8:46:76:d4:
c8:1b:20:66:05:56:e0:f7:3b:a9:71:49:df:b9:31:
70:63:6e:cf:b1:22:74:ce:e9:0b:37:fb:3a:f2:98:
d1:ed:e9:39:3f:67:61:b5:41:e2:03:57:ee:c9:af:
68:77:47:e2:b3:8b:34:1d:dc:06:3e:dd:d0:d8:8b:
bc:e9:5a:85:c4:b2:84:7a:52:39:ca:58:94:c5:74:
94:de:6a:89:9f:b8:20:a6:99:9b:9a:0f:e2:96:1e:
bf:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A7:4C:29:89:82:7A:12:35:72:21:34:52:0C:A2:FB:69:A3:8B:E2
X509v3 Authority Key Identifier:
keyid:B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:a5:8d:51:51:f3:2e:4e:b5:a1:c7:58:6f:c7:60:c1:84:a1:
60:91:73:34:6c:0a:6e:45:2b:6d:73:53:98:f6:9e:5b:23:03:
03:7a:8e:ed:8b:df:ac:53:49:01:40:2e:f5:c1:82:dd:ca:24:
d2:98:36:80:04:1e:96:0c:33:87:f8:8d:c3:30:e2:ec:f3:30:
97:86:4a:c2:eb:9c:c3:4c:e8:09:26:5c:c2:ab:4f:8b:59:f2:
db:5b:82:d8:f6:bb:0f:52:03:a1:53:86:3f:fa:f2:bd:d0:17:
1f:84:9e:45:b3:00:d8:af:4c:1a:9b:d2:d8:81:dd:65:36:fd:
18:e8:be:cd:2f:00:8e:f2:4b:b8:d8:ec:63:81:b6:1e:70:ef:
be:e2:30:1b:81:b6:d9:de:6a:32:4a:f3:35:a7:eb:6d:f9:6a:
fd:2d:ed:68:33:a1:a8:4f:0c:e6:df:e2:47:e1:39:fd:52:f9:
e0:db:0b:84:25:52:ab:7f:99:9b:e2:5b:7a:71:8f:1b:4c:a6:
5c:ed:ff:01:8a:ed:34:77:87:d0:9e:26:39:a1:aa:77:c5:62:
c1:57:d8:08:76:22:bf:e3:0a:20:4c:83:93:bb:5d:cb:ab:6e:
9a:1e:52:d5:9d:c7:01:40:f0:98:97:e4:42:a8:ed:52:35:c7:
b4:fa:43:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:11:16 2025 by rpki-client