Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json)
Hash identifier: DLPfpOiEY6cJYiGJfbpp19y9FXi/FtOEsh+BLHN5wyw=
Subject key identifier: 89:EB:6B:34:E9:7D:55:C6:74:18:F8:A6:15:D0:CE:73:80:74:D5:56
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 019874BE433C59E040778E8BA15D2CD7A9E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
Manifest number: 14CB
Signing time: Mon 04 Aug 2025 11:01:22 +0000
Manifest this update: Mon 04 Aug 2025 11:01:22 +0000
Manifest next update: Tue 05 Aug 2025 11:01:22 +0000
Files and hashes: 1: 53yfdczv1so3h7m6p_kJKapwYb0.roa (hash: 8fm3UETmOMmwp3oE4jpSkcDNkIYvAEXotF2eKRsyjLw=)
2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: FjnrZWVj0Ojn7N+R1UVePmTb+F+QbbDfuoPiG0o6Nnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:be:43:3c:59:e0:40:77:8e:8b:a1:5d:2c:d7:a9:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: Aug 4 11:01:22 2025 GMT
Not After : Aug 5 11:01:22 2025 GMT
Subject: CN=89eb6b34e97d55c67418f8a615d0ce738074d556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7f:d9:98:aa:7e:70:b4:ed:7f:50:9f:f3:93:
56:5a:e9:6a:5c:65:f2:00:f4:20:87:a1:c7:02:fc:
21:eb:db:f0:07:d2:44:7a:b2:00:fa:55:b8:9a:39:
75:d2:be:77:79:76:11:34:a8:1a:b2:3c:d7:3c:a6:
0c:89:1d:9b:61:b1:be:1d:68:4d:ec:81:b1:68:78:
17:ea:c0:fd:fb:0a:c9:4e:36:f0:6e:fc:a1:3f:76:
46:cc:c8:5e:6c:2e:55:fb:9b:8f:2b:72:08:18:eb:
b8:f5:52:10:1e:e5:59:27:6d:a3:21:2d:a5:d8:47:
2f:e1:8a:ea:61:6f:a7:16:34:07:48:dd:b1:c0:28:
f0:3e:3c:01:cb:5c:6f:a2:48:82:73:3d:96:2d:ca:
3e:ef:b1:e0:05:41:36:71:e7:68:19:49:80:e1:07:
02:f6:01:90:5b:78:0e:ba:8e:07:da:81:87:fc:54:
86:d5:c7:e5:01:0b:92:fb:8e:71:8e:94:2f:a4:2c:
df:23:39:d3:b1:ce:8e:bf:60:80:6c:ef:a5:a0:47:
97:33:76:71:f4:72:09:3a:8c:a9:92:73:f0:24:d2:
3d:47:5b:84:3b:43:f4:b6:36:c7:30:c6:43:ff:a5:
93:59:c3:81:3a:14:ca:71:9c:12:50:15:a1:d0:bf:
0e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:EB:6B:34:E9:7D:55:C6:74:18:F8:A6:15:D0:CE:73:80:74:D5:56
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:d7:34:da:d5:82:7b:52:2c:4f:37:4b:8d:ea:38:bd:a1:62:
15:3d:00:70:d0:d9:a2:fe:d0:da:e8:fd:b3:4a:9a:f9:0e:d3:
cd:30:c5:5d:34:bb:7d:5e:df:de:47:69:ba:ba:54:e9:0b:b0:
ad:cb:67:3f:34:3b:45:e2:ed:4e:75:19:d5:ca:d5:fd:e1:15:
fd:86:b3:8f:2a:ce:ed:0c:61:1f:ae:5c:1c:99:4f:e1:39:be:
ef:64:66:16:0b:c0:17:27:b5:47:53:46:3d:ad:6f:27:a1:b6:
3c:5e:c2:6c:f5:c4:39:c4:46:42:c3:b8:f8:8f:70:ee:43:26:
da:e2:84:fa:8e:61:46:df:63:2d:10:0c:a0:b6:f7:8a:ad:a1:
42:92:71:1a:63:b1:1e:87:d4:39:7e:ff:23:e2:aa:08:44:8d:
12:b0:e2:4e:c3:43:48:85:de:34:46:88:cc:32:f8:48:ba:bd:
d7:6e:24:57:b3:ed:de:a5:d7:75:38:01:a9:11:df:91:86:36:
66:23:9d:9b:8b:2a:a2:ba:0e:f2:0d:bd:c2:dc:ad:9b:45:73:
7b:e2:9d:46:ee:01:bb:15:1a:62:18:f4:89:91:64:3a:12:e5:
94:46:07:09:cc:83:7f:a0:a6:7f:3f:01:76:0f:57:65:37:b4:
23:cf:74:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:07:49 2025 by rpki-client