Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
File: r8GT7hHlRxYWn5TI-THq4fyFSSE.mft (raw, json)
Hash identifier: PVWOpGUGrRtRkusVepYqnauAF7YKeqZA1agVLSHrzHk=
Subject key identifier: D4:89:FF:41:47:F9:52:C0:1B:50:B3:11:F2:30:65:0E:15:7E:F5:B4
Authority key identifier: AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
Certificate issuer: /CN=afc193ee11e54716169f94c8f931eae1fc854921
Certificate serial: 01988CFD5C9AC057D88F481EDFE0F5A3CE77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
Manifest number: 0B77
Signing time: Sat 09 Aug 2025 04:01:11 +0000
Manifest this update: Sat 09 Aug 2025 04:01:11 +0000
Manifest next update: Sun 10 Aug 2025 04:01:11 +0000
Files and hashes: 1: AaiQ-SNQmt6l5xOeIk4PwVHWfh4.roa (hash: 6CQTrWnDAV45WpOAHO1NfVL9iDI/ELlZY8vizp+bA9s=)
2: r8GT7hHlRxYWn5TI-THq4fyFSSE.crl (hash: Sb9Axff+Mg/IiBKCNireaf+XMDHP3IjHDRg5QuZx1sI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fd:5c:9a:c0:57:d8:8f:48:1e:df:e0:f5:a3:ce:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afc193ee11e54716169f94c8f931eae1fc854921
Validity
Not Before: Aug 9 04:01:11 2025 GMT
Not After : Aug 10 04:01:11 2025 GMT
Subject: CN=d489ff4147f952c01b50b311f230650e157ef5b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:76:bb:34:97:4e:d1:e1:42:0a:2f:2b:68:2f:
06:e9:0e:56:64:b0:11:d2:14:8b:a2:a4:5e:41:04:
54:de:ac:e9:df:03:f5:cf:f0:f8:d5:6c:f5:40:c5:
05:a7:6e:79:5c:97:1c:2a:61:0b:ea:35:8f:a3:4b:
40:12:6b:de:31:11:72:d9:11:95:28:4c:9c:cb:7b:
df:aa:dd:c8:76:d1:f2:e2:6e:1c:1d:c8:b0:3f:eb:
fa:48:93:63:d1:a0:53:7d:b5:e1:3a:63:56:ca:e0:
1e:9a:b3:6e:ef:b3:ab:05:08:31:40:b6:34:95:21:
23:91:8f:dc:4e:01:45:e6:07:30:8b:f7:62:a8:fc:
83:dc:8f:64:7d:d5:43:b4:14:1d:78:5a:6c:02:13:
2b:6a:00:c7:9f:f3:37:94:4d:9b:53:5b:83:8a:0c:
a9:73:32:be:28:75:24:a3:65:52:50:ca:ac:34:ad:
07:4c:23:e1:b1:d3:5c:86:f0:39:95:60:ef:a0:72:
5b:3d:71:ad:7a:ca:00:d0:8b:7d:d3:04:7c:16:a1:
d8:57:2d:5a:18:d8:04:95:11:c5:07:ef:8d:88:31:
6f:a7:1c:b9:e2:7f:68:35:65:f0:bf:77:1e:a1:9e:
90:97:f7:73:c1:65:cf:2e:62:24:a9:ea:2e:37:a9:
9f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:89:FF:41:47:F9:52:C0:1B:50:B3:11:F2:30:65:0E:15:7E:F5:B4
X509v3 Authority Key Identifier:
keyid:AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:73:aa:17:71:ec:e7:32:7d:a0:dc:23:dd:36:81:40:05:6f:
c5:a6:44:a1:e0:2e:6a:44:eb:b4:bb:4b:d6:07:6c:c6:d8:f5:
cd:0d:16:ab:bb:b7:6a:90:51:96:28:f7:10:2f:46:35:76:8f:
e7:a5:80:09:fe:9b:75:70:74:ac:af:27:d1:44:ba:d1:a1:cc:
12:70:44:3d:8e:26:58:4b:60:db:62:0e:8e:80:9c:f5:b7:a0:
26:0d:1f:87:4a:d4:bb:37:f8:ed:bb:32:33:ef:dc:51:cb:e9:
eb:a9:a3:9e:5c:0c:dc:e1:e0:21:56:ec:57:c7:67:62:0f:db:
50:3a:20:e8:e5:32:15:54:74:43:3d:d5:63:51:78:34:dd:eb:
27:d5:56:32:de:85:61:64:c8:e1:e3:da:78:c5:29:b7:6b:d3:
ac:d1:a7:ea:22:a1:7b:37:82:89:ec:8c:48:32:83:af:43:e1:
82:94:e0:d9:72:d1:e3:2a:de:cd:15:ed:12:bd:8e:29:34:f8:
5e:d3:e1:77:cb:fe:24:50:07:92:1e:87:a2:b6:4c:b4:df:46:
08:12:24:4e:8f:b9:a5:29:fc:75:48:49:97:9d:27:f1:b9:97:
ca:4d:12:68:f7:67:ca:4f:c0:06:48:5e:78:c1:97:0c:27:80:
11:c7:bc:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:35:35 2025 by rpki-client