Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
File: sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft (raw, json)
Hash identifier: rnlCE+B0WB25LF4BhMRHqPhE1CBi/4PMcu/gfUMGW/Q=
Subject key identifier: 29:41:38:1C:6B:CD:54:BF:BC:9E:42:FA:C7:A6:00:3C:D4:BC:BD:92
Authority key identifier: B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
Certificate issuer: /CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Certificate serial: 0198917ECDBD4E3B3189CC6087CA90CB2544
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
Manifest number: 031F
Signing time: Sun 10 Aug 2025 01:01:03 +0000
Manifest this update: Sun 10 Aug 2025 01:01:03 +0000
Manifest next update: Mon 11 Aug 2025 01:01:03 +0000
Files and hashes: 1: cutf0Yk4GqOLANVUSKcxrSdUxug.roa (hash: Q8Q4U3gD48zecWRmDv6Pw0MZwpRvb60BHrR0/Xs/Hmo=)
2: sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl (hash: ERnrZNIiZ6PlJDuESeCLFdXjkt4ikAGMyCB55zQgXe0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:7e:cd:bd:4e:3b:31:89:cc:60:87:ca:90:cb:25:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Validity
Not Before: Aug 10 01:01:03 2025 GMT
Not After : Aug 11 01:01:03 2025 GMT
Subject: CN=2941381c6bcd54bfbc9e42fac7a6003cd4bcbd92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d6:83:c4:7e:f5:57:c6:25:3b:5d:0b:08:69:
b6:15:2a:81:0e:5d:11:49:83:dd:ca:8a:65:31:17:
88:d5:4d:63:c0:93:70:bb:36:ec:a1:28:cf:cf:6f:
2b:f6:2c:4c:9e:af:5f:18:ee:be:bd:e9:b1:8b:96:
46:c9:68:a3:ac:cd:e9:3b:67:d6:b4:92:02:2e:6f:
32:ec:44:16:6f:1e:09:9d:f9:fa:23:af:cf:a3:e9:
59:67:21:1e:ab:bf:fe:33:ea:15:1b:0d:16:28:3d:
9c:11:bd:88:ad:26:15:80:66:27:a7:bd:ed:71:b7:
ff:10:99:bc:08:9a:db:e5:ab:83:b7:2a:e1:4e:4f:
59:94:4e:c0:f6:54:0c:10:ad:3e:8a:86:ec:ed:02:
5a:c1:6f:86:f2:65:f8:3b:f1:02:00:33:bc:26:15:
16:4e:19:67:ce:75:df:f6:b7:1f:f0:7a:3f:1b:c1:
8e:7e:7d:2c:86:fe:11:0f:b7:38:23:ae:5c:3c:76:
1c:34:33:c3:0b:94:83:54:74:61:34:d0:cb:09:dd:
42:35:8b:38:dd:23:d4:f1:35:97:06:d8:84:82:44:
9d:88:30:51:25:35:a1:be:ee:6e:ba:5f:8a:f2:70:
db:3e:00:d7:08:5f:73:5e:55:ec:b0:91:2f:c1:0f:
42:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:41:38:1C:6B:CD:54:BF:BC:9E:42:FA:C7:A6:00:3C:D4:BC:BD:92
X509v3 Authority Key Identifier:
keyid:B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:4e:cd:7a:7c:3d:a3:b4:65:9f:2c:4f:08:13:9b:49:ec:00:
e5:2d:6f:e8:a3:a0:c1:da:76:a9:72:c6:b3:ac:a6:fd:a0:8b:
8f:5f:7c:0b:42:0a:4e:68:6a:fc:09:21:0d:e1:60:8d:7e:2e:
c7:f2:51:c5:fd:dc:7c:e8:62:74:ad:64:1b:11:3b:1a:e1:9d:
d2:e5:4f:08:f7:c8:82:29:fb:f7:e0:fb:6a:c2:4b:2b:12:86:
7b:9b:34:b1:2e:bb:74:32:5f:6f:0e:f0:ce:89:86:0d:39:61:
a4:71:da:08:79:31:b4:74:d2:eb:a8:58:96:62:d0:a1:19:ef:
14:0f:92:c2:de:87:bf:3d:19:95:63:bd:bb:62:0d:43:39:57:
b7:bd:1b:c8:0b:ad:cf:b3:37:59:3b:bc:98:e9:f6:d5:29:8a:
8f:52:27:a2:bb:db:ae:26:fb:eb:24:d5:1e:fd:6c:c8:1e:5e:
ff:76:2d:f1:f4:52:8a:66:67:80:8a:26:c3:c3:67:46:3d:79:
8f:cc:c6:09:df:f0:71:3b:6a:ba:01:8c:10:76:be:fb:1a:17:
16:c1:82:ca:56:96:43:a7:14:50:b8:1c:e3:d6:25:e5:3f:1c:
f3:24:a3:07:18:04:49:36:25:c0:95:91:e7:de:02:97:e7:52:
90:6c:8c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 03:51:44 2025 by rpki-client