Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
File: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft (raw, json)
Hash identifier: 4r9KI0y/fAQS3GSJX6eUfi/xFYYAt4lBJZmBHkCr+sk=
Subject key identifier: 74:FB:51:6D:76:11:5A:10:60:67:56:2C:04:2B:23:1D:DA:05:54:A5
Authority key identifier: B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
Certificate issuer: /CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Certificate serial: 01988DD917F2533AFEA070A62F39C9493669
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
Manifest number: 1000
Signing time: Sat 09 Aug 2025 08:01:11 +0000
Manifest this update: Sat 09 Aug 2025 08:01:11 +0000
Manifest next update: Sun 10 Aug 2025 08:01:11 +0000
Files and hashes: 1: GhdbZGuzA1z36-UUonZ5zaCX38Q.roa (hash: gEgIQ1ixFSRgI4FI7VMbdhgtgY8jLC1wmNutDGTQS80=)
2: NItMcfmuUtS9SnSR4ZKm4r93TXs.roa (hash: F3sutapYp582NIFvW6vfwf2KF7d5dSaqH83k0FhwJoc=)
3: QCQJObKakvoo4ygnw5Fh20FS0Ts.roa (hash: pr5RHo/glhDEkjitYcq1TogKj+NW5j/LUqIM2EWPEaw=)
4: UVdJ6rkBr4eKgNxEkOLstufV6r8.roa (hash: +gXeK3tudL2I9QvUvgp4q5Jq/oJHp1PYKMtr+laCpNs=)
5: VtsYZXVJAZoFqneDgMrcdY1ZLqo.roa (hash: iydD1kql5GaDH+9KnMFCTe4zA6F46avj8WklVHWfoCY=)
6: YaM_6GNAfAUY1a7EBWWPiZdkY80.roa (hash: imYp4kHblD7OJu3xkBBiybF6gSfL+pAE8EuXrkCO7Ws=)
7: eulbDis-0B0z9GbHcqEo9NdV9rU.roa (hash: r5N8Yg0+954vST6YgvvV4VsOdx/dWOgqxmrlpu8jwtw=)
8: peZQPUG6EREQXk9fJ6XL9FgtEhs.roa (hash: dkv5IIQlSg33elfikzY5ije40KJ3f2E2+53gSCvVzhE=)
9: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl (hash: COCUodMTf2eQYtOKJkO+qtVM41HIrxy5YO79rfTLR8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:d9:17:f2:53:3a:fe:a0:70:a6:2f:39:c9:49:36:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Validity
Not Before: Aug 9 08:01:11 2025 GMT
Not After : Aug 10 08:01:11 2025 GMT
Subject: CN=74fb516d76115a106067562c042b231dda0554a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ea:5a:f8:ed:5a:d7:e4:36:4d:b2:c4:b3:0d:
69:e5:23:58:0e:ff:57:74:bb:4a:ca:ef:bf:2c:08:
07:51:70:ca:d8:ff:de:ed:6e:9a:40:ec:67:86:6a:
52:9b:8f:aa:f7:50:dc:e7:b7:de:45:6e:22:0e:b8:
19:44:ec:b6:4e:f2:57:dd:39:3f:d0:73:2c:a3:2e:
04:2b:7c:d3:14:11:88:87:b5:e7:e9:75:c9:d3:2e:
77:da:56:46:04:dd:7e:7f:f0:6b:18:98:2b:79:6e:
9b:06:53:bf:8f:a8:4a:f8:a2:c7:2c:5b:45:39:47:
ed:df:58:9b:a5:8c:74:2c:6b:85:2c:06:ee:13:64:
e2:f9:57:87:57:b2:96:4d:10:ee:a9:af:30:18:79:
50:c4:06:10:1e:b3:84:e8:d0:0b:d0:ea:3f:fd:b9:
36:3b:9f:a7:5b:2b:57:fc:6a:6a:24:ae:4f:2b:b2:
af:be:e6:a5:b0:bc:ed:b8:24:69:ed:83:45:a1:9d:
fc:9b:b6:70:90:36:0a:02:6c:63:48:4b:67:50:8e:
88:12:31:0b:d4:a5:91:c6:c9:ad:dc:64:a3:1e:c1:
e0:e0:54:6a:53:1b:99:74:20:98:d0:29:6d:4d:b7:
04:c8:e6:8b:63:ac:3d:c6:ac:75:99:58:6a:58:d2:
cb:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FB:51:6D:76:11:5A:10:60:67:56:2C:04:2B:23:1D:DA:05:54:A5
X509v3 Authority Key Identifier:
keyid:B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:86:1a:ad:64:00:43:da:f4:e3:3b:a3:a0:41:53:8a:82:6a:
e3:9b:e4:72:f8:ee:25:34:6f:22:86:dc:43:44:1c:40:e3:9d:
b0:4a:ec:ed:77:e1:ce:4c:fc:bb:f0:b6:c6:5e:71:24:99:7b:
a1:03:6a:da:80:ef:a2:4b:7b:70:df:74:e7:85:75:81:ab:ef:
1c:b0:94:6c:93:6e:03:cf:3e:9c:26:a2:c9:fd:2d:54:84:50:
14:f6:28:58:29:b4:f0:a6:9e:a5:62:95:44:7a:28:2e:0c:13:
a1:40:ec:5e:03:5a:94:f6:77:8e:c5:4d:1b:fe:53:dc:02:f4:
bb:00:fa:eb:9f:86:f0:93:3a:f9:11:02:f1:34:71:35:4c:2f:
51:85:0a:17:0e:90:dc:4c:71:65:2f:15:61:1c:5f:77:02:b9:
50:73:0d:ca:92:cd:af:c3:51:73:1b:66:a7:eb:3a:a7:df:2a:
4f:d8:0b:9d:2c:ae:99:71:37:a5:61:57:58:c5:7c:5d:89:8d:
a9:2a:a4:af:07:23:17:c5:f3:3f:69:c8:d7:5d:f2:f6:70:1d:
8b:fa:f5:ee:d0:6b:5e:df:b4:61:ee:f6:c5:00:4c:01:0e:a1:
03:73:bb:55:73:93:61:50:ad:3d:43:35:d9:30:1b:3c:2c:c9:
12:27:c3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:23:49 2025 by rpki-client