Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: nzcxaZyE85xn9EurRDEIXDO1/TW6rvdYXgrKxQ2XZfs=
Subject key identifier: 8A:E8:BF:99:00:60:4A:34:DB:5C:D2:0F:6F:89:D3:80:A9:E5:D3:09
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 019896DC0B3851AEAAC7B6C959CA9F7BD5C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 15BB
Signing time: Mon 11 Aug 2025 02:00:59 +0000
Manifest this update: Mon 11 Aug 2025 02:00:59 +0000
Manifest next update: Tue 12 Aug 2025 02:00:59 +0000
Files and hashes: 1: UkqG3VMYAz9uABWF42sKAydGWoA.roa (hash: /dg3EZ5BvktCoE6vyv9z5Q4gql01gT6XeimrmuNAS5k=)
2: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: hus2i1SaxfyZHB1X6rnW5gswU+XwI2Sz0OCW29sdJxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:dc:0b:38:51:ae:aa:c7:b6:c9:59:ca:9f:7b:d5:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Aug 11 02:00:59 2025 GMT
Not After : Aug 12 02:00:59 2025 GMT
Subject: CN=8ae8bf9900604a34db5cd20f6f89d380a9e5d309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:65:aa:4e:08:07:61:06:c7:ff:e3:6f:9a:4e:
23:f6:4d:42:2e:2b:82:38:0c:a4:9b:32:f0:d1:cb:
34:15:d9:fe:11:fc:3a:48:32:75:f3:fd:c2:81:a1:
aa:71:b3:f7:c9:88:38:2a:a3:cb:90:9c:bf:60:a4:
24:d8:75:da:32:0b:ed:04:0b:6e:96:96:8e:c3:17:
84:f9:b3:14:fa:39:2f:2a:37:c2:eb:e3:d7:66:4e:
4f:33:c8:b2:2d:3b:8c:b6:d4:66:da:ca:12:88:74:
0f:61:39:8d:38:cd:5c:ba:09:61:38:ce:ef:7e:4f:
ae:30:92:0b:c8:42:eb:2c:54:f0:d0:d0:8b:95:ea:
f0:72:3a:4a:1a:9d:ae:e8:7d:1b:cc:d6:eb:ed:70:
34:f0:68:5c:3c:bc:5b:48:7b:a4:55:a2:b3:b0:50:
11:06:49:ed:cf:29:b2:1f:d0:8f:74:f5:2d:1a:83:
36:fd:72:9a:d0:37:58:bb:a4:6d:b7:bf:21:6d:ff:
6f:b9:3e:93:42:c0:cd:5b:94:20:de:23:8a:e4:c5:
2c:91:18:22:39:64:f6:b7:18:9a:13:f4:07:59:26:
5b:01:93:41:66:93:d2:20:83:6d:ce:4c:53:e8:26:
18:9c:45:2c:a7:77:35:55:6b:ad:ea:fc:2e:85:89:
e8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E8:BF:99:00:60:4A:34:DB:5C:D2:0F:6F:89:D3:80:A9:E5:D3:09
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:e1:52:85:aa:90:9e:6a:95:e4:2e:16:5e:9a:fa:1f:0d:0b:
8d:6f:7b:a0:0f:47:e7:2a:0f:bd:5c:ff:3a:67:06:a7:42:f0:
f1:1c:72:c4:dc:f0:41:ee:e0:91:52:65:0f:f5:64:ba:82:a1:
db:e1:19:94:99:6d:39:9b:b9:a7:c2:8c:99:f5:7a:e0:44:a2:
d5:ed:62:52:48:67:da:51:64:f8:7b:4a:c9:dc:77:da:9f:9a:
8a:6a:78:bc:c7:ca:a0:08:1a:fc:33:2d:7a:c6:95:1b:72:db:
bb:a4:29:57:50:82:c2:95:b2:18:28:43:3d:6c:89:8c:0a:86:
b1:cb:4f:87:23:f7:62:12:29:be:4f:7f:f9:b5:27:f0:24:eb:
b5:1a:a7:ab:4f:e1:ce:f4:4a:8c:21:4d:bd:cc:ed:52:6f:0e:
0b:a0:4b:14:0d:20:ca:c7:a5:dd:8d:39:06:31:73:80:3b:c9:
3b:ae:ed:23:52:cb:4f:13:66:ad:92:2f:b5:cc:1b:44:60:7f:
d1:4b:6a:13:0d:2a:6b:fb:df:57:25:07:a3:d9:83:ad:6d:88:
58:72:73:70:18:1a:aa:2e:74:2b:f3:73:91:d1:23:f8:04:ea:
94:cf:2c:5f:02:2a:aa:5c:fd:50:bd:ec:65:23:42:4d:97:d4:
4d:23:8a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:29:51 2025 by rpki-client