Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
File: t3gT9sVnClhoatw9SVV0QpXdFBk.mft (raw, json)
Hash identifier: 4zqAH5BRCBYgaU8E2MqrCVOAT7tBnQqQiVjgMeLlBIQ=
Subject key identifier: 78:63:8C:E0:AB:34:26:52:93:72:AA:6E:A7:A5:95:F1:8D:A6:C8:AB
Authority key identifier: B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
Certificate issuer: /CN=b77813f6c5670a58686adc3d4955744295dd1419
Certificate serial: 019893369336569B21E5CD3E974595AB0ADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
Manifest number: 0EFF
Signing time: Sun 10 Aug 2025 09:01:23 +0000
Manifest this update: Sun 10 Aug 2025 09:01:23 +0000
Manifest next update: Mon 11 Aug 2025 09:01:23 +0000
Files and hashes: 1: t3gT9sVnClhoatw9SVV0QpXdFBk.crl (hash: O5C6PF3BgcINSMH2uHjFld2JbczosdOofvmUFpYV/E0=)
2: xy0ayvCMPxVGUij5mpyeTNFKRNw.roa (hash: tXbOwwPUAQhZJRCjintnYpclKOHIFWoxy2lUX1RBhtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 09:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:36:93:36:56:9b:21:e5:cd:3e:97:45:95:ab:0a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b77813f6c5670a58686adc3d4955744295dd1419
Validity
Not Before: Aug 10 09:01:23 2025 GMT
Not After : Aug 11 09:01:23 2025 GMT
Subject: CN=78638ce0ab3426529372aa6ea7a595f18da6c8ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9e:27:de:2c:20:a8:38:d9:95:4d:bb:cc:62:
43:d5:08:8a:46:fd:92:6d:08:f3:7b:27:a1:46:3c:
78:56:3d:85:fc:86:5a:4b:ab:21:5d:09:c2:f9:0c:
72:d1:7b:7a:ae:1e:23:1d:0b:e9:f6:72:53:87:ab:
62:0e:2b:79:77:1a:40:95:4d:bd:0a:a8:5a:34:e0:
6b:66:5d:36:86:a3:c1:2c:8f:ee:c3:b0:07:f9:5f:
81:86:84:c8:3a:57:3b:96:fb:c8:70:50:c8:bd:17:
0c:56:2e:ea:23:b0:4a:0d:5c:27:fc:f5:b1:9a:05:
e4:2b:c2:18:14:1e:ad:73:17:37:f2:f1:43:03:10:
ac:db:11:ab:d7:d2:07:5e:ec:bf:87:e8:6e:14:1a:
9a:f9:b8:92:16:2f:b9:8f:9f:42:05:b0:1b:29:66:
99:d7:ab:84:9e:4a:0a:95:1e:95:f8:5f:b0:a4:df:
b5:9c:38:e3:00:74:89:c1:f1:de:d1:2a:13:77:c2:
d0:4a:12:00:4a:6f:89:51:16:bd:15:df:e6:74:bc:
a3:fe:5e:c8:dc:a5:b2:fb:ea:ce:b8:b1:be:e1:7e:
97:4e:f7:8d:59:6d:7c:f3:10:37:4d:e9:ec:cf:07:
d2:80:39:68:14:5e:77:9d:97:a5:20:86:e7:ec:8b:
ef:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:63:8C:E0:AB:34:26:52:93:72:AA:6E:A7:A5:95:F1:8D:A6:C8:AB
X509v3 Authority Key Identifier:
keyid:B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:42:4a:de:e1:b3:b7:45:e2:ed:a3:e4:c6:b1:42:fb:32:da:
22:2f:ce:01:37:8f:b8:1a:d6:9e:b6:fe:25:e4:25:67:d4:05:
c3:3a:a0:3c:cb:15:79:19:e7:ed:f8:69:c0:8e:66:57:27:fd:
00:ac:ea:81:36:98:08:1e:25:df:d3:44:98:76:3c:0a:07:7f:
c7:79:67:bd:90:f5:ee:3e:6b:f9:ae:39:65:a0:f9:2f:59:c4:
1f:14:11:ae:52:ee:fe:d9:4b:b0:79:30:05:ca:07:b6:2b:1e:
e1:80:55:21:1c:63:aa:51:60:f2:4b:4c:c3:25:ae:ad:56:2a:
b6:61:6c:03:96:c6:ee:33:73:df:37:b8:75:eb:e8:ce:94:e2:
d9:b2:b4:de:75:cf:19:2e:08:f9:7c:3f:2d:e0:21:44:c0:47:
a9:73:79:0d:04:40:06:d5:d7:b7:69:16:78:bc:0b:1d:4f:cc:
27:cf:10:ef:13:47:33:5a:64:3b:7e:0f:fb:be:0f:80:85:a0:
1f:91:08:54:a2:08:4c:55:c1:08:3c:4d:e9:cb:d0:3a:3d:61:
68:c1:03:71:51:da:1b:5f:c9:57:2f:67:5e:05:ee:42:7b:3c:
b4:ea:1c:ea:d7:97:67:43:3a:be:7b:8e:3e:2e:2f:a2:5f:56:
d4:23:c5:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:13:07 2025 by rpki-client