Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
File: sffQCUrcmNmwMnIOgePbWqdYHHQ.mft (raw, json)
Hash identifier: uc7c2knr01fj2zkl1qzbqtwt7oPit6NgSMIC2UhTsRA=
Subject key identifier: 99:38:13:40:3F:39:92:C0:24:98:F9:C7:DD:79:00:27:44:2E:2A:8C
Authority key identifier: B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74
Certificate issuer: /CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74
Certificate serial: 0198790837C391366C1C547E092962D10145
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
Manifest number: 0BA1
Signing time: Tue 05 Aug 2025 07:00:38 +0000
Manifest this update: Tue 05 Aug 2025 07:00:38 +0000
Manifest next update: Wed 06 Aug 2025 07:00:38 +0000
Files and hashes: 1: sffQCUrcmNmwMnIOgePbWqdYHHQ.crl (hash: XQpwPDw3kYcXmlp5YQHJASh9DjjJcImzarB/LOaeo8o=)
2: tkngR5wwQ6qh3iGid8LqkeZO0Sg.roa (hash: XAoboSbFoG6N+OZ4mfDqaXa/N9sFsWbZUGbRzqL5oH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 07:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:08:37:c3:91:36:6c:1c:54:7e:09:29:62:d1:01:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74
Validity
Not Before: Aug 5 07:00:38 2025 GMT
Not After : Aug 6 07:00:38 2025 GMT
Subject: CN=993813403f3992c02498f9c7dd790027442e2a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:cc:1a:ae:37:3b:3e:b0:da:1b:ad:8b:8a:8a:
63:c9:de:c1:12:08:a9:f6:55:18:04:21:93:20:8a:
18:6e:0a:01:d4:b1:83:c0:dd:1d:3b:d9:6c:f5:d0:
0c:2b:06:05:a5:8e:d9:eb:32:df:45:b3:37:01:a4:
d7:56:bf:4a:be:84:ea:78:6e:97:8b:0b:8a:a6:d9:
c3:15:7f:64:71:33:a2:17:0d:6b:a5:ae:f4:11:66:
03:b9:ef:7d:fb:ac:72:33:67:59:10:da:df:f1:4d:
62:68:fb:83:e3:b6:52:fd:a8:5c:ac:f0:f8:77:67:
20:c0:4b:ee:d0:d9:42:6f:1d:a4:4e:22:c8:fb:cc:
7c:fd:74:53:8f:e5:12:bc:f7:8b:b4:a4:3b:b7:6c:
7e:3d:47:86:85:d9:5c:af:ed:93:a8:7b:a0:f3:3a:
6e:61:bb:e8:9d:ff:b9:2e:54:3d:44:b8:27:fd:be:
35:9a:97:18:08:05:2b:53:50:d1:ae:6c:12:a2:6e:
bb:44:e2:1e:f9:98:c8:b0:f4:8a:93:da:e6:e2:d3:
39:e9:be:c6:c6:cd:fe:6c:eb:c4:b5:42:1c:d2:73:
18:b5:d8:12:f4:b5:74:92:af:95:0a:f5:e6:4d:a3:
7b:fb:f6:78:e6:7c:d3:4f:14:3c:b6:86:8d:16:87:
cd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:38:13:40:3F:39:92:C0:24:98:F9:C7:DD:79:00:27:44:2E:2A:8C
X509v3 Authority Key Identifier:
keyid:B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:69:72:e3:fd:2c:68:5a:63:69:d4:c6:fe:1d:e8:90:63:0d:
0b:e8:17:0e:32:b5:26:60:17:88:54:e3:63:50:20:fa:f9:05:
7f:02:e9:54:c7:99:0e:1e:d9:6a:30:15:92:e5:37:a8:40:63:
f7:c6:07:89:30:77:2c:19:ad:bd:49:74:b2:3c:dd:9a:46:f0:
53:e0:26:4c:8f:9e:40:53:04:14:b9:43:23:4a:62:45:59:ce:
c3:cd:eb:bb:c4:92:3f:51:f7:ab:78:9a:a8:2b:44:ef:e3:fc:
5b:57:63:00:19:7a:d3:6b:66:8e:f1:b7:85:ac:64:b6:ce:2a:
37:b2:d6:e2:73:2b:e9:8e:d0:b3:14:2a:c4:50:41:70:88:f5:
5e:7f:ec:75:68:f2:13:b4:8a:21:ab:b4:94:08:74:7e:22:1a:
7d:07:7f:44:36:78:88:01:26:bf:79:61:8d:80:fe:be:62:28:
d7:77:47:45:ee:43:a3:9d:a9:b6:e5:df:ea:b9:7a:95:14:da:
7e:f6:a5:4c:ed:07:f9:a1:6f:fb:62:00:ce:0a:7c:6a:ad:92:
ed:4c:ac:de:d9:7a:43:9a:4c:18:61:17:87:b4:49:4a:74:c9:
cb:bb:ed:b7:6e:0b:4e:92:20:db:a5:fd:87:78:98:7b:c8:43:
a5:9e:eb:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:08:50 2025 by rpki-client