Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
File: S8K4kvLb729UtFNg_rD4QUpahQQ.mft (raw, json)
Hash identifier: 92prZGcuWBUEhUIeO1BlUycbLJg4vTh92nTY+KQSz1s=
Subject key identifier: 97:41:F7:F5:D2:0E:C5:10:C4:39:EE:45:52:63:3A:ED:7C:2F:E8:9D
Authority key identifier: 4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
Certificate issuer: /CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Certificate serial: 01987C092DB261D03E4B04328E9518EC25C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
Manifest number: 1016
Signing time: Tue 05 Aug 2025 21:00:32 +0000
Manifest this update: Tue 05 Aug 2025 21:00:32 +0000
Manifest next update: Wed 06 Aug 2025 21:00:32 +0000
Files and hashes: 1: 8XxbJK1GWPrtjat_Lpe2HKly_9k.roa (hash: 1REGOqOGYIsLrmhSt5pZG4EmBpaR7Cf++uPRynahll8=)
2: S8K4kvLb729UtFNg_rD4QUpahQQ.crl (hash: hApMWkGoNnqrvLTYn6wI9D2QhAzeWKpouiRiY1F31Js=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:09:2d:b2:61:d0:3e:4b:04:32:8e:95:18:ec:25:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Validity
Not Before: Aug 5 21:00:32 2025 GMT
Not After : Aug 6 21:00:32 2025 GMT
Subject: CN=9741f7f5d20ec510c439ee4552633aed7c2fe89d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c6:ce:9a:89:21:7b:4c:37:79:13:81:e0:3a:
5d:1b:4d:30:32:53:be:d5:a1:87:3e:d5:77:12:2b:
fa:e1:7f:07:6f:08:e8:f6:6c:cc:b4:9e:eb:67:06:
40:3d:80:76:2c:4b:c2:04:49:3e:ce:ea:fb:15:35:
80:d4:85:76:c9:b4:5c:f0:33:7f:57:6b:ac:0a:85:
57:9f:67:16:38:0c:12:2c:b6:4e:7a:e4:a4:73:e7:
96:6c:7e:98:06:a2:e8:e9:5c:cb:72:9d:96:96:88:
5a:20:88:11:57:32:23:2e:e3:e9:6d:29:b7:45:26:
7b:3c:aa:2a:40:c1:27:90:fa:e7:d3:48:f2:7d:18:
fd:43:7d:e4:49:fc:1e:98:2b:e7:73:e7:c0:90:e3:
b5:bb:f2:7f:13:1c:c9:aa:61:fa:8e:ba:ea:f6:81:
86:0b:cd:61:09:f9:e1:d2:f3:2c:ef:3b:84:e8:96:
3c:f8:ed:4d:8f:83:e4:e2:de:0b:89:98:33:a0:e1:
8f:6b:fc:96:a0:93:d6:64:18:2b:ec:66:7d:00:7d:
49:4f:5c:27:bc:df:22:f0:fe:dc:0f:4c:50:f9:a0:
e8:41:88:95:f9:0b:0c:29:4c:41:09:7b:fd:b5:7e:
c9:00:3a:84:0e:f4:f5:9e:d0:d1:8e:8c:35:14:4a:
7b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:41:F7:F5:D2:0E:C5:10:C4:39:EE:45:52:63:3A:ED:7C:2F:E8:9D
X509v3 Authority Key Identifier:
keyid:4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:4c:93:60:dd:fd:f5:66:82:a9:f6:a1:05:76:5c:94:ef:4f:
8f:11:f8:b8:00:1d:60:73:c8:83:58:26:9a:65:9c:f3:d1:b4:
c7:7d:77:95:e3:96:06:e9:9d:17:00:87:33:10:62:0a:de:e4:
ba:12:2b:3c:da:ea:49:20:56:94:de:27:7f:99:55:af:32:ea:
e6:ec:d9:91:fd:32:79:28:ba:ec:14:3e:71:b1:86:46:85:cf:
6c:eb:1a:75:cc:59:b5:9e:c8:79:d4:a9:c8:1a:75:30:08:e9:
b4:e5:9d:ce:0a:c8:3b:2f:9d:54:58:95:97:5b:55:2f:be:7a:
e5:31:20:3f:cd:f7:61:3d:e6:5c:42:c8:ef:af:0a:3c:60:ec:
ae:3b:33:0c:cf:27:7e:89:ca:00:4f:48:82:44:00:dc:1c:f9:
a9:04:31:bb:cd:ef:03:8e:c4:08:c7:d4:e8:42:c3:f9:d0:52:
48:25:7f:42:78:2b:53:4a:e0:8d:d1:96:0a:d4:d8:08:1f:10:
27:6f:59:8e:e0:2d:c1:ce:e6:75:c7:0c:f8:00:50:59:39:04:
f9:70:04:ae:a2:79:21:9d:4b:34:ad:d2:84:b8:30:f2:8a:34:
5d:6f:7c:f9:14:4a:9e:10:81:e2:d8:d7:fb:c9:d3:89:d6:96:
66:76:bd:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:41:57 2025 by rpki-client