Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft
File: sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft (raw, json)
Hash identifier: 1FghFvHQyqP6TGtNUiJKVB85Jn1y3s9Fl9fCkS4ZFqQ=
Subject key identifier: 30:90:7B:3A:DC:47:C5:1F:06:A7:FC:FC:8F:A0:98:0B:C1:83:61:B6
Authority key identifier: B1:F5:BB:AA:05:19:80:BD:48:11:B6:65:5A:0F:95:DB:36:12:78:09
Certificate issuer: /CN=b1f5bbaa051980bd4811b6655a0f95db36127809
Certificate serial: 019890DA2A9D94321AA49E12477DC3FE1EE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sfW7qgUZgL1IEbZlWg-V2zYSeAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft
Manifest number: 0FB6
Signing time: Sat 09 Aug 2025 22:01:13 +0000
Manifest this update: Sat 09 Aug 2025 22:01:13 +0000
Manifest next update: Sun 10 Aug 2025 22:01:13 +0000
Files and hashes: 1: MLxgcAFNN-a_n0hgMIOfT5C141o.roa (hash: ewiYdgPU3ZjjkZdT9FRRd/GKYeBkT/vZjdgs+F+3aZo=)
2: sfW7qgUZgL1IEbZlWg-V2zYSeAk.crl (hash: GK+1RRWAjs+PFNyqu4k3plM8RmDgUsXPhIME4tFnef0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sfW7qgUZgL1IEbZlWg-V2zYSeAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:da:2a:9d:94:32:1a:a4:9e:12:47:7d:c3:fe:1e:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1f5bbaa051980bd4811b6655a0f95db36127809
Validity
Not Before: Aug 9 22:01:13 2025 GMT
Not After : Aug 10 22:01:13 2025 GMT
Subject: CN=30907b3adc47c51f06a7fcfc8fa0980bc18361b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:c0:b3:68:1e:b7:aa:20:ff:e8:30:2e:10:b3:
b9:5e:50:6d:70:70:f2:f3:7f:73:ba:22:44:42:fa:
b0:ce:e7:8d:5a:f7:76:5c:cc:77:dc:e2:a6:ff:21:
19:d3:f5:45:37:98:f9:b6:7e:6a:db:8d:7a:f1:70:
04:62:5d:d9:6e:47:69:01:f8:63:e8:8c:62:c5:1d:
ee:c6:8d:bb:72:c3:a6:96:11:d8:44:a6:0f:0c:9f:
a2:d4:10:63:d3:90:80:29:5b:1e:a4:7f:7c:d6:6a:
cc:7c:b4:20:f4:f1:0d:77:0c:33:fa:cc:e0:43:23:
32:1e:98:18:38:88:e9:83:22:2a:08:87:94:ed:91:
14:6f:f2:df:99:3d:6b:d9:ba:a5:20:d8:97:46:15:
e3:a4:cd:96:34:ab:d3:a3:20:98:50:96:bf:96:eb:
a7:47:52:5a:8c:f4:df:0a:49:b3:2c:14:54:00:d7:
37:fd:74:ab:17:93:6c:0c:c0:58:9b:92:44:ce:9a:
d3:28:8a:61:87:b2:10:16:42:1d:94:bb:58:8b:ba:
61:77:69:a3:e6:3f:e2:92:a1:fc:59:4f:d4:2f:d9:
54:9a:24:0b:05:ef:60:62:83:6a:46:a2:dc:68:bd:
cb:ec:aa:e7:b2:b6:3d:54:24:92:15:bf:d1:27:35:
2f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:90:7B:3A:DC:47:C5:1F:06:A7:FC:FC:8F:A0:98:0B:C1:83:61:B6
X509v3 Authority Key Identifier:
keyid:B1:F5:BB:AA:05:19:80:BD:48:11:B6:65:5A:0F:95:DB:36:12:78:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sfW7qgUZgL1IEbZlWg-V2zYSeAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:8a:fd:89:43:e7:e3:68:d4:00:e9:3a:cc:19:f1:7d:35:c4:
91:74:4b:c5:50:34:22:b4:cd:4c:36:a6:e1:5e:bd:22:77:01:
39:06:71:03:c2:00:68:df:65:ae:29:e3:ba:95:b9:b6:b8:97:
dd:44:ae:61:25:b2:04:60:9a:7f:ff:8c:21:bc:56:d1:f2:9b:
eb:65:65:9d:36:9e:f8:71:95:11:71:fe:11:16:f1:7c:50:f5:
b9:a8:7f:67:e6:c5:b3:ce:c3:59:6c:ca:e4:7f:f4:9a:6e:76:
b8:b2:55:e3:23:be:c2:e2:ad:22:ee:7e:e6:b7:dd:35:9c:a0:
7d:1e:8d:6f:84:95:4c:14:d2:a6:24:e3:73:8e:a6:fa:2f:e9:
75:56:db:44:9d:13:3d:dd:8d:48:7b:b4:27:e8:80:89:cd:eb:
f8:f8:c8:9c:97:32:f9:3b:5f:7d:cf:62:62:a1:93:54:bc:09:
54:cc:4a:47:5d:ca:58:70:a2:f3:6c:18:41:46:7c:7d:96:f0:
3c:d3:f1:ec:bd:38:7b:41:a5:41:c6:02:e6:b9:77:60:82:3a:
0c:3c:f0:77:8d:e8:10:a8:9e:9a:20:14:17:43:af:0e:81:d9:
39:03:26:51:2f:24:a4:aa:c8:b5:d9:bf:f1:a2:53:1d:1c:3a:
52:fa:0d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 03:44:34 2025 by rpki-client