Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json)
Hash identifier: rKtKX4HUW0emncebmVYzmg8tIHShpXyfSzBCq2N5x4I=
Subject key identifier: FC:8C:3E:83:C8:C8:2E:C0:9F:EC:3E:35:66:F4:82:92:76:CD:B3:F1
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 0198752BD5448CADE689B47532841DBD26E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
Manifest number: 1637
Signing time: Mon 04 Aug 2025 13:01:03 +0000
Manifest this update: Mon 04 Aug 2025 13:01:03 +0000
Manifest next update: Tue 05 Aug 2025 13:01:03 +0000
Files and hashes: 1: 22MFoiE6iwEXKG4ff-0g9Nk9e6k.roa (hash: 8ZAHeiN8JfpnEbf0xNsrPzSUL91MdaXwePhbLZYQBGY=)
2: 63R1CqkRJzCBTqXm_kqr_6UGOC4.roa (hash: QovmpL/thOh4yKhjTn4FNfnRr6OXEgupogya3Oy9KUE=)
3: AqlAoh2mHTGBQZiQ4Qu8bU198w8.roa (hash: QPQqaQ0W7/zxzqNuDuEf1YEVzGuiOziERZ9FXquvCOY=)
4: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: YeMoTrSbM+T3aDo1GIn+xohW/NQfpCG4e7fMq2wofMg=)
5: JaRJ0VkgZY-pAOHUpfAksmRNPT4.roa (hash: uuAowSkk49o7aPUMDMEAR0rCVXNjJkNtV+Ttn8WfvGo=)
6: kGkGzImsb5Dv_nGgCWEXgWNc7do.roa (hash: x9SmJ5GmGF/t3I5NSMgnwkUR+oRC+nVpi/mDc40npw4=)
7: mpy8rjwhUPGfrwU4aNyK-9x9FBA.roa (hash: LExOCoVzbGwBygx3rcSIfApEZE8wTyOT0YOXpiy9v1U=)
8: qF-2BgBNvB9Rp0K_VFhuwpTNLrY.roa (hash: h4z+iViHaDAdXrYk5TZebHBt4+M5KGpzETHGgdp4Ztc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:2b:d5:44:8c:ad:e6:89:b4:75:32:84:1d:bd:26:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Aug 4 13:01:03 2025 GMT
Not After : Aug 5 13:01:03 2025 GMT
Subject: CN=fc8c3e83c8c82ec09fec3e3566f4829276cdb3f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:87:2d:2e:59:c3:4d:34:18:25:01:7d:33:20:
4d:f4:d9:f8:9e:a1:ad:c1:e6:14:8c:69:61:16:29:
50:82:52:c5:77:c4:5b:40:39:e9:2c:4e:1c:0c:48:
9d:85:d2:d8:a1:b5:73:86:6d:9c:13:42:42:d8:28:
50:49:5c:4c:d6:1d:2d:d5:8b:09:f7:b4:80:f9:4b:
5e:00:12:a2:00:1d:2e:11:3f:c1:7e:93:e4:fb:60:
8b:2e:3f:55:c8:37:9d:31:37:0a:95:8e:b8:40:44:
1b:6e:20:91:be:9c:58:b0:e8:44:f7:63:7e:86:58:
60:1f:5c:57:ba:c6:46:a7:f8:8e:b7:34:f1:e3:0c:
f7:07:14:66:a5:1c:38:96:52:94:92:ab:10:f7:60:
5d:c6:dd:49:36:19:27:1c:b6:b2:d9:c0:12:bf:d7:
d9:e5:10:55:73:b0:63:b5:9f:20:e8:e6:9d:f1:73:
f4:ca:4d:d2:96:aa:fa:2a:6b:aa:a3:17:e9:48:e6:
ff:a2:45:31:e4:fb:7c:a3:5c:27:f7:eb:ee:a0:c9:
37:51:b9:7c:77:30:be:e6:c2:c1:8a:44:1b:b1:57:
95:65:83:f1:a7:a4:a6:60:ec:d3:a8:19:5e:0f:23:
36:60:1d:9b:1b:7d:32:9b:69:a0:f6:28:a4:0f:e9:
88:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8C:3E:83:C8:C8:2E:C0:9F:EC:3E:35:66:F4:82:92:76:CD:B3:F1
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:d5:10:f0:d4:a0:54:78:7b:ce:f0:79:8c:54:b5:8a:74:37:
ee:5f:31:85:6a:0f:68:24:09:75:ad:c1:f0:6a:ce:09:bd:be:
98:45:d4:a7:12:80:63:58:b9:df:4c:a2:cf:12:17:bb:b6:54:
0a:25:12:99:7d:73:e1:69:a7:c4:42:1e:7d:b7:9f:d2:2d:f5:
a0:e2:fe:c1:69:c3:1b:35:e9:ed:88:c9:10:c0:ed:08:f1:8d:
7f:9b:3a:3b:c5:e9:f4:41:d1:11:7f:19:b9:0f:c1:18:92:eb:
4d:0c:6e:40:0a:99:36:08:e8:c4:db:c4:7e:d7:c5:94:4e:96:
12:31:c9:31:b2:75:3a:97:cc:03:e5:81:c3:ef:fc:a8:39:88:
8b:ac:f6:13:09:5f:38:14:40:4a:d4:18:6d:0a:11:c9:f4:06:
60:b6:e3:23:55:26:33:6b:c7:e2:c2:30:c5:7a:77:f8:f7:45:
42:6d:fa:a1:14:8a:34:e8:aa:26:75:ec:72:50:6c:6d:d9:2c:
4d:13:74:c7:57:2f:ac:6b:3a:56:d5:f2:02:a3:97:4d:33:10:
08:76:ec:cd:a7:9b:57:7e:5e:4e:d0:71:4c:c7:16:80:24:65:
9f:17:6f:67:e7:67:00:02:cf:e6:6d:e6:de:c0:4c:ed:b7:0b:
56:73:03:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:01:36 2025 by rpki-client