Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
File: rx7uIsUBU2MRinHSapRj3JN0uig.mft (raw, json)
Hash identifier: 4fD6TCBLbN8HdZSQmNYQoLcSPmudo+4bepYOq2HXHNw=
Subject key identifier: 0F:E0:D5:9F:13:D2:EB:90:39:E7:3E:9E:F5:2A:49:3A:B0:FD:A4:E9
Authority key identifier: AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
Certificate issuer: /CN=af1eee22c5015363118a71d26a9463dc9374ba28
Certificate serial: 01988166EF50133AEB6552702027F3177D13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
Manifest number: 09D4
Signing time: Wed 06 Aug 2025 22:01:03 +0000
Manifest this update: Wed 06 Aug 2025 22:01:03 +0000
Manifest next update: Thu 07 Aug 2025 22:01:03 +0000
Files and hashes: 1: rx7uIsUBU2MRinHSapRj3JN0uig.crl (hash: WgmzHkpsn0/0Y5K+gRUji5Dt1KU8SWqQOHOfQfdOjYo=)
2: vtzVAFS2sSXFMY4pT9LQwpwKXN8.roa (hash: IK29JkUi3ofZEZGY2PidWdMxcE655gfnkWlaKv3tisg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:66:ef:50:13:3a:eb:65:52:70:20:27:f3:17:7d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1eee22c5015363118a71d26a9463dc9374ba28
Validity
Not Before: Aug 6 22:01:03 2025 GMT
Not After : Aug 7 22:01:03 2025 GMT
Subject: CN=0fe0d59f13d2eb9039e73e9ef52a493ab0fda4e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0c:b3:b4:4f:8f:22:38:5e:36:16:37:e1:e8:
57:8d:a6:7d:40:d1:d6:bc:8a:b8:9d:b5:ea:7a:c0:
fd:31:4a:6f:12:c8:9c:1b:53:f3:cf:37:e5:7b:6e:
b2:21:95:27:4b:ed:4a:34:7f:d9:96:76:e4:15:c3:
0b:ef:d7:93:3f:32:dc:d2:65:f5:af:c0:fa:de:d5:
d8:dd:12:9c:28:5e:91:5a:5c:2b:29:df:e0:b9:40:
fc:e2:56:e2:44:d0:b4:3f:85:5e:6c:4c:84:2f:cb:
3c:ce:b1:f6:04:58:c9:47:bd:25:a7:11:42:3d:bd:
b6:b6:34:25:53:15:4b:4d:0f:de:f7:cc:d0:ed:8a:
e9:8d:c2:17:c1:69:cf:53:b9:dc:6c:08:3a:5a:70:
12:16:e1:9f:73:2f:db:b2:8c:fc:ee:46:f0:48:2f:
7f:34:fb:b4:a6:87:28:ae:b4:91:5c:95:53:58:47:
fa:e2:3f:98:47:53:13:22:3d:7e:0f:30:72:0a:e0:
aa:27:69:ca:fe:7e:2a:86:1e:f8:1d:6d:85:c1:7f:
c1:11:be:62:21:b0:5a:f1:9b:1a:d3:84:45:da:4d:
cf:b5:35:68:ea:43:f2:bb:b1:01:ff:91:68:20:1e:
f1:1e:17:bf:58:a3:d2:9f:df:8c:6e:6f:d9:0f:b5:
65:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E0:D5:9F:13:D2:EB:90:39:E7:3E:9E:F5:2A:49:3A:B0:FD:A4:E9
X509v3 Authority Key Identifier:
keyid:AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ec:cf:97:8a:bc:61:34:de:4b:23:76:14:f7:ab:97:1d:b6:
44:15:f1:19:f6:82:44:b9:13:85:61:c7:25:9d:80:cc:2a:94:
a9:06:72:ea:29:8d:ce:7a:9e:2e:62:84:7a:13:e4:12:f8:6a:
6d:5f:cd:11:fe:22:33:1e:35:10:9b:9e:32:49:53:0e:fa:d0:
05:49:b1:e8:57:ea:58:4c:11:2f:0b:a1:0b:af:10:df:82:26:
59:28:20:db:57:a4:f6:30:6f:af:e7:79:9c:19:3b:f5:e9:30:
27:55:a7:79:bb:8c:13:3a:d8:97:68:4f:e2:f0:06:15:07:f6:
4d:fc:63:51:58:5f:f0:e0:5d:c2:20:1a:9a:5c:fe:db:55:eb:
4d:b5:a3:9c:b4:cf:c5:79:2f:44:ef:f8:cd:4c:64:67:f1:a9:
4e:08:d4:b9:93:6f:9f:cd:f0:a3:57:13:9c:ca:06:6b:77:e5:
6b:b9:44:83:d7:9b:a7:de:91:55:11:ab:9b:a8:b1:ca:8e:8e:
df:fa:a8:80:88:02:61:8e:db:bf:c3:9d:62:59:88:49:4d:b1:
ad:70:24:16:bb:35:88:a7:83:89:3e:35:55:0d:1c:96:a4:5a:
5c:a7:01:eb:00:97:cf:f2:5c:8c:e9:61:ea:9b:8f:0f:af:f0:
3e:a7:9d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:01:27 2025 by rpki-client