Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
File: uT2pHx9TY0JyxZEQh85my602FKM.mft (raw, json)
Hash identifier: d+Q9Ojx4ux9VUog0zz5+c45byid91R7Z+0IN2Qtgp30=
Subject key identifier: F9:F1:27:37:82:00:A0:D2:F8:A2:1D:CD:10:C9:B0:EE:02:8B:81:42
Authority key identifier: B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
Certificate issuer: /CN=b93da91f1f53634272c5911087ce66cbad3614a3
Certificate serial: 0198A04DFFB11EEBEFD268467B219C9895B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
Manifest number: 07CC
Signing time: Tue 12 Aug 2025 22:02:02 +0000
Manifest this update: Tue 12 Aug 2025 22:02:02 +0000
Manifest next update: Wed 13 Aug 2025 22:02:02 +0000
Files and hashes: 1: 0386LGj4Sidbyca8KneFkNR54TI.roa (hash: jcV5FqK/anJpS83+3AC/ntYQGRcWnZsS3JRi5ZH9EXg=)
2: uT2pHx9TY0JyxZEQh85my602FKM.crl (hash: EnEgnPPiFleaWvgxn9mxPJ7+wTuvqzWGBd9czH+U/zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:ff:b1:1e:eb:ef:d2:68:46:7b:21:9c:98:95:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b93da91f1f53634272c5911087ce66cbad3614a3
Validity
Not Before: Aug 12 22:02:02 2025 GMT
Not After : Aug 13 22:02:02 2025 GMT
Subject: CN=f9f127378200a0d2f8a21dcd10c9b0ee028b8142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3e:d6:cb:b6:93:14:2b:78:45:4c:b6:2f:8c:
2f:8d:64:2c:b1:46:08:03:ea:c8:cc:ce:43:c8:ce:
b8:d5:1c:e8:b6:c7:7f:3f:e9:39:80:4d:89:58:41:
cd:a7:fa:f6:d8:78:89:28:b9:58:46:b9:b1:c8:2f:
36:af:de:08:61:ad:70:ef:a0:00:e1:38:b6:72:fe:
ed:af:73:b2:ec:58:05:cb:06:0a:39:e7:ad:59:e7:
69:ac:a2:d4:06:ce:c4:ea:62:db:a4:c7:36:5a:8f:
cc:3d:fe:95:72:b7:12:9a:95:c9:fc:ad:5f:4e:3c:
cb:fe:84:6b:be:e0:84:a0:3a:e0:7d:a9:9e:92:8c:
b6:86:5d:43:66:2b:c5:dd:84:b6:63:14:23:eb:e8:
52:7e:e3:a4:b0:d4:94:ca:9b:69:36:87:05:7b:27:
86:25:51:c9:c0:27:5f:7a:6c:c5:f5:7a:a3:5e:02:
7a:78:d9:92:d5:c7:97:5f:99:65:54:2c:55:94:04:
a0:f0:a8:62:9a:f0:ce:45:d3:b4:a3:a7:df:f2:bc:
82:52:ad:d5:b3:71:8d:43:3b:9f:e0:50:72:6f:7a:
b7:04:6e:ca:98:91:da:8b:d8:29:f4:8e:e6:20:b1:
df:74:49:b0:b5:01:7a:a3:60:cf:9e:cc:0a:87:e0:
e8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F1:27:37:82:00:A0:D2:F8:A2:1D:CD:10:C9:B0:EE:02:8B:81:42
X509v3 Authority Key Identifier:
keyid:B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:d7:e3:aa:e7:f1:86:91:d3:ca:bc:66:2b:49:bd:9d:44:98:
d3:0a:e7:1a:48:e5:c9:4d:cc:c7:40:85:13:58:ad:69:4f:51:
68:8d:a9:5f:5a:09:c6:2d:81:c3:3e:0c:cc:7d:b2:2c:92:6e:
df:2d:40:7b:dc:e1:4e:b0:82:b2:4e:6f:9a:cf:89:2a:61:1d:
46:32:37:e2:1b:d4:27:86:f2:5d:fc:22:0d:2f:e6:60:50:59:
67:44:a8:3b:79:aa:01:99:b1:b3:2e:f8:6a:ff:0a:d5:ad:27:
eb:33:70:7b:1e:92:39:6a:32:c2:7f:11:e3:e1:d0:30:f1:44:
25:0d:76:19:67:16:59:48:1a:37:26:6f:f0:eb:84:36:d0:85:
c7:4a:a5:aa:29:0d:46:ba:c5:1e:3d:e1:a9:b1:a0:62:ce:20:
ec:c5:99:23:3d:60:f8:64:54:84:70:8b:55:93:59:c5:6a:53:
18:b9:b3:f3:bc:52:5c:fb:0b:5e:57:b2:82:64:39:cc:e8:a1:
8a:61:b4:05:7f:e2:d1:8c:88:51:53:c2:37:7f:8d:a9:a4:5a:
65:fa:be:a4:3d:59:20:d3:c2:db:21:2d:9a:24:6c:54:05:82:
38:53:d5:41:a3:ec:a6:1b:76:31:b8:b0:14:ca:77:90:ed:f8:
4e:3a:e1:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 04:25:54 2025 by rpki-client