Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
File: up78qG3qcNPukBgWeMjrMOaRbR0.mft (raw, json)
Hash identifier: 0nDJMVjjyah2SWkzOjBCAJYLXXudnuYFlnAOktAdCVo=
Subject key identifier: D0:D5:CB:87:88:80:AF:52:16:B2:DC:D4:29:EA:BF:F9:C9:36:0B:8C
Authority key identifier: BA:9E:FC:A8:6D:EA:70:D3:EE:90:18:16:78:C8:EB:30:E6:91:6D:1D
Certificate issuer: /CN=ba9efca86dea70d3ee90181678c8eb30e6916d1d
Certificate serial: 0198936D1C65FFD26C596E4ED767AB30E0D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
Manifest number: 159D
Signing time: Sun 10 Aug 2025 10:00:58 +0000
Manifest this update: Sun 10 Aug 2025 10:00:58 +0000
Manifest next update: Mon 11 Aug 2025 10:00:58 +0000
Files and hashes: 1: TcxQ_LIgSlnQjiSbvcx7DOq2_Zc.roa (hash: v9utTlGogD+SmAb7nxAo7ersLZspEGf0TY5tMFbjRB8=)
2: up78qG3qcNPukBgWeMjrMOaRbR0.crl (hash: /KH2e1ifNaE1z+CJmVF3dj6GADJejGDkAvk9JOQTZUc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:6d:1c:65:ff:d2:6c:59:6e:4e:d7:67:ab:30:e0:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9efca86dea70d3ee90181678c8eb30e6916d1d
Validity
Not Before: Aug 10 10:00:58 2025 GMT
Not After : Aug 11 10:00:58 2025 GMT
Subject: CN=d0d5cb878880af5216b2dcd429eabff9c9360b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4b:70:6a:1c:67:51:19:e2:32:16:09:d9:42:
67:af:e3:ac:70:71:5f:d7:56:35:1f:86:d0:22:09:
6f:62:e4:97:63:d3:43:f7:4b:9e:aa:27:49:c1:9a:
dd:66:c0:a7:5f:80:34:ce:35:3b:7a:89:95:68:e0:
d7:b4:a0:74:f6:5a:e1:98:ab:ae:49:ac:00:8c:34:
1f:47:b0:fb:06:d0:97:42:8b:4b:dd:b7:15:96:af:
ae:2e:b3:fc:87:85:86:d4:ad:3a:fb:3a:18:37:88:
9a:18:32:c3:13:98:08:58:ce:21:9e:f5:53:6c:7d:
76:28:da:e4:1b:a7:bd:bf:bc:e8:bd:b9:ae:45:90:
54:7b:47:76:f2:3b:66:b3:a1:b2:85:7b:32:22:73:
f3:3a:91:04:54:aa:e3:04:2a:e3:79:91:67:c3:4b:
5e:28:8a:7d:ee:65:d5:b9:80:89:da:24:c4:e5:03:
58:ea:1b:4b:45:11:cf:93:dd:25:71:88:57:65:ba:
99:b7:53:fe:d8:e4:f1:87:c7:4f:68:be:aa:71:22:
34:b3:e6:21:a1:8b:4e:91:25:86:86:1c:9c:98:8b:
23:5a:22:65:6a:bb:9c:7e:cd:77:c9:79:9b:89:a4:
63:b3:b8:7c:05:fb:cc:bc:f9:71:a1:1e:93:d9:7a:
08:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D5:CB:87:88:80:AF:52:16:B2:DC:D4:29:EA:BF:F9:C9:36:0B:8C
X509v3 Authority Key Identifier:
keyid:BA:9E:FC:A8:6D:EA:70:D3:EE:90:18:16:78:C8:EB:30:E6:91:6D:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:87:25:c7:0b:c8:9a:36:68:a2:d0:4a:98:b3:04:3b:49:13:
a2:51:fb:94:f5:2b:61:5d:e9:89:f8:67:71:f8:27:78:4e:7c:
89:f1:b3:2f:ba:e5:c4:0a:05:c1:1f:62:75:8c:01:3d:c7:af:
0b:e7:f9:15:ff:7f:1a:2a:7e:8c:d0:95:79:ac:94:97:04:1a:
d3:99:b9:9d:07:a7:25:c7:f7:72:34:f7:db:73:e4:ac:b8:f2:
a7:6d:ad:f6:f0:36:5a:55:cd:b7:af:d1:b6:1f:0a:62:81:91:
ca:ff:07:f6:df:29:55:99:d1:53:ed:e7:09:92:6a:c9:90:25:
5c:9b:3d:bc:90:4e:2c:ca:4f:df:8b:98:74:b2:9d:e0:6f:7b:
c2:10:55:05:c6:77:ce:57:0a:41:eb:aa:2d:df:7e:a7:8c:11:
e1:62:52:0a:5b:4f:76:cd:54:59:23:1b:29:06:10:99:d2:c7:
8b:ce:9a:59:9d:f4:be:d1:03:42:d0:ce:02:a7:81:fb:1d:89:
1c:4d:ce:3a:f6:65:0c:6a:5b:c7:42:bc:af:99:2c:0a:87:47:
a3:fd:9b:cb:1c:ad:f4:b1:76:cd:35:69:3c:49:90:e4:5f:cd:
bb:45:3c:f5:78:a5:e4:02:b1:73:c4:c6:94:4e:40:8b:de:83:
56:44:d3:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:45:25 2025 by rpki-client