Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
File: sKT8KvOK9bT1hh4n_QB-YktfmwI.mft (raw, json)
Hash identifier: IO9JbvxyXTr/8yL8CAR76qnUbvW7fToVMGCSuhFSiSc=
Subject key identifier: 9C:0B:E8:82:C9:51:C3:25:D0:E5:6D:2C:48:98:C8:D8:A9:BB:2B:6D
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 01988D3463D71F44BDF4F6B25689B47B2519
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
Manifest number: 14F4
Signing time: Sat 09 Aug 2025 05:01:17 +0000
Manifest this update: Sat 09 Aug 2025 05:01:17 +0000
Manifest next update: Sun 10 Aug 2025 05:01:17 +0000
Files and hashes: 1: EhMQv2Hd3Y0AB-EaVNPw9A1el2Y.roa (hash: bVKsgWkrvgH7jweX9NZzvJ58rjQAc648XkG11nW0Xqk=)
2: sKT8KvOK9bT1hh4n_QB-YktfmwI.crl (hash: HJGEP0o1jZJ5+9hL9LcbhUGKlROQAq9Ws0lY7mwQp1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:34:63:d7:1f:44:bd:f4:f6:b2:56:89:b4:7b:25:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Aug 9 05:01:17 2025 GMT
Not After : Aug 10 05:01:17 2025 GMT
Subject: CN=9c0be882c951c325d0e56d2c4898c8d8a9bb2b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:82:19:fc:b7:40:33:bc:1c:9b:b3:5a:f5:75:
6b:ee:cd:c3:31:1a:93:0a:b9:e6:b1:4b:35:43:78:
5d:35:ba:f6:d2:5d:ea:8c:f0:03:9c:c0:4d:6a:66:
f7:ba:47:f8:ea:72:69:41:80:82:bc:7d:92:ea:1c:
f4:d9:aa:e7:a0:fd:e5:d4:d5:61:c5:a0:be:a7:6b:
d7:1b:44:d5:b9:47:0a:88:45:a0:d0:9a:e8:b4:85:
23:9d:da:f1:17:f4:91:dd:51:f8:08:de:e0:42:f7:
00:e2:ae:bf:f3:fc:87:9a:ee:a1:c4:fe:77:95:81:
6d:d5:75:5c:8c:df:67:e9:db:3b:23:6d:a8:8d:17:
4c:7b:7b:a4:14:a2:2f:7e:11:c0:e8:71:89:ef:b0:
e2:07:50:a2:e4:60:09:20:e4:b9:c4:c3:39:fd:f0:
77:98:c5:3e:34:88:5a:02:81:f3:1f:de:2b:b8:f1:
aa:c9:67:7d:50:2b:b8:cb:f0:e6:15:43:96:6e:a2:
bf:78:5a:cc:3a:c3:02:39:35:4d:61:6a:09:f2:8c:
2c:60:10:68:88:bf:0e:23:6d:0e:18:c0:d0:96:40:
9a:d9:98:e5:d5:38:99:5c:54:e6:b6:19:d5:fe:7e:
a8:16:b2:35:6a:7d:07:43:05:a9:20:df:06:ab:93:
b7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:0B:E8:82:C9:51:C3:25:D0:E5:6D:2C:48:98:C8:D8:A9:BB:2B:6D
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:b0:2a:b7:57:bb:f7:75:dd:87:14:56:2f:f4:b0:30:0c:23:
24:16:2a:29:cb:23:8b:5c:9b:a0:d9:d4:c2:1a:12:9b:26:06:
ca:d4:d2:d5:d7:83:70:46:df:0b:16:5f:d0:61:0c:b7:eb:f0:
18:ac:44:00:38:18:a7:2a:22:41:c9:46:6f:2f:4b:18:f7:8e:
31:76:f2:07:2a:5b:e5:65:59:19:34:63:a2:43:5b:23:6e:5a:
62:9b:26:43:a6:35:53:98:88:98:02:99:ca:a7:aa:d0:6e:72:
aa:eb:2a:ed:0f:b5:5e:4c:9c:fe:4b:8d:f7:ba:09:aa:3b:c8:
07:3d:43:40:fe:a1:37:cf:30:bb:61:16:a7:07:ac:c2:64:65:
a3:8b:37:08:42:31:66:73:bc:4a:ca:02:e8:bc:a7:a3:57:63:
5e:88:9b:6e:41:94:10:7b:0a:e8:81:cd:d4:79:5c:38:06:51:
a2:af:22:9d:ad:e1:ec:be:89:0f:1a:17:36:2a:05:19:93:aa:
d2:59:d3:bc:5d:35:e0:ad:9d:36:b9:ea:b6:6e:bf:ed:77:5f:
81:bc:8a:78:c6:0d:a6:d1:bc:dd:2a:57:03:15:0d:67:82:a9:
e9:95:34:32:7d:7a:a7:36:a9:19:bf:f7:5d:0c:c4:8b:8a:ad:
cf:d9:0a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:45:58 2025 by rpki-client