Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: fLsVXbdDzuH89zmISqe2bg3Ywzb8ukPDMRWFZJd9oCQ=
Subject key identifier: FA:2C:0F:02:E1:FE:E1:3A:93:7F:D3:AD:25:96:25:C2:7D:AC:25:9A
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 0198820BFEF0A178A5FE8C4F0653FF0BDE3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 161E
Signing time: Thu 07 Aug 2025 01:01:20 +0000
Manifest this update: Thu 07 Aug 2025 01:01:20 +0000
Manifest next update: Fri 08 Aug 2025 01:01:20 +0000
Files and hashes: 1: OgYJc9A280CynujJhuzMa0BI-4Q.roa (hash: MiNQpI1WP7M4DChXTEl99hg+v/DrVYZq8o6Yc8vjTOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: uerMW3S0PaXEWFzxXAu8R+xCWcnCaab3/J2F5mIa94M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:0b:fe:f0:a1:78:a5:fe:8c:4f:06:53:ff:0b:de:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: Aug 7 01:01:20 2025 GMT
Not After : Aug 8 01:01:20 2025 GMT
Subject: CN=fa2c0f02e1fee13a937fd3ad259625c27dac259a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:21:ef:75:9b:6f:48:ad:20:e7:45:3b:fd:6f:
88:0f:04:43:09:32:db:06:54:f3:66:da:18:b5:96:
1a:c2:26:27:f7:9b:74:30:85:08:e1:47:7c:a6:c7:
ed:ef:de:26:63:be:1a:25:78:f6:b6:ea:6b:24:c7:
10:8d:c0:7e:ab:34:2d:f1:cf:79:7d:af:64:36:e3:
28:54:d3:91:4b:51:c4:0a:8a:98:b0:f7:aa:e0:32:
ff:34:38:df:e3:6c:62:71:db:4d:08:2f:f2:be:52:
b5:b8:ba:2c:4d:68:a7:fe:26:45:62:ff:5c:29:b9:
fc:2f:c8:6c:98:1d:75:7e:2b:25:35:61:df:bc:a7:
32:e0:9e:f8:b6:88:a5:51:f2:61:ee:36:cd:ad:66:
aa:8f:bf:a0:4c:87:b1:fd:57:c5:92:ab:5b:43:38:
4b:ba:40:ee:da:30:da:54:ac:15:13:e4:30:fa:77:
3f:d0:48:7d:e2:3e:11:d2:e9:c4:74:cf:91:c6:fa:
fb:03:14:71:09:d4:f0:ef:40:9c:42:22:1d:9a:03:
86:d0:79:c2:f3:a9:04:ba:32:fa:1e:89:b0:b2:8f:
4a:31:35:ef:74:2a:af:b6:c9:f7:b8:75:b9:c0:ea:
9b:f0:e6:bc:3d:8c:9d:75:9a:6e:6b:6d:85:8d:6a:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2C:0F:02:E1:FE:E1:3A:93:7F:D3:AD:25:96:25:C2:7D:AC:25:9A
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:fb:e6:73:e9:d6:bd:fb:05:75:83:e1:8a:db:28:ac:2c:94:
ef:fc:a9:ef:9c:5c:15:92:da:82:61:a4:b2:fd:ce:86:84:9c:
79:13:0b:91:79:ce:7d:d3:cc:ba:d4:02:12:b1:69:71:03:46:
f8:f7:ff:4b:78:da:0d:b3:7f:6a:b0:c3:68:09:6c:37:a2:4c:
d2:2b:62:8a:54:f8:d2:8d:f2:a0:94:4b:ab:36:6d:ba:b7:be:
cd:27:d0:97:b7:f8:c6:de:38:1e:61:8b:95:b7:d1:e7:e2:a6:
1f:44:2f:86:11:0d:db:a6:fb:6c:33:15:43:83:d2:31:4d:ef:
5b:39:2a:81:58:06:2b:97:09:15:73:2d:19:d7:12:e2:e2:38:
20:69:d2:7c:45:b9:84:ee:8b:3d:b0:00:17:25:5f:48:b6:c1:
c3:a8:43:80:11:39:89:1b:6c:bd:82:97:b2:45:ec:35:e0:a7:
bc:e7:dc:59:e7:2b:ed:5e:b0:4d:a9:cd:47:80:48:fe:f2:d0:
5c:89:58:03:66:56:e2:01:4f:78:fe:80:01:30:39:8b:6e:2b:
7e:b4:b9:e9:85:06:4d:77:ec:4a:f3:ca:cf:0c:4d:86:61:fe:
32:ba:51:39:05:45:6a:1a:1b:a9:23:00:55:82:87:90:22:01:
55:f1:05:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:28:26 2025 by rpki-client