Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
File: rXz7zh1tOmok8lZSBl0xV1go7bU.mft (raw, json)
Hash identifier: PYhSYjWXCW9XeSa9V5HYHZw7T8w8AxDjCcIrD09wETE=
Subject key identifier: DB:35:4A:4F:AD:79:76:B6:B9:A2:96:1D:0A:C0:54:19:6A:5D:AE:2D
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 01987D8B7597C5CD7F34151EAF57A1290F71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
Manifest number: 0D2D
Signing time: Wed 06 Aug 2025 04:02:28 +0000
Manifest this update: Wed 06 Aug 2025 04:02:28 +0000
Manifest next update: Thu 07 Aug 2025 04:02:28 +0000
Files and hashes: 1: Im3NuoFQdX7egdBojqG76hMiXq0.roa (hash: MBZCzXbY6/6xAtTJ9sYOEhNyw2Jnz8TgfEJHylhcfdM=)
2: rXz7zh1tOmok8lZSBl0xV1go7bU.crl (hash: 8r+NsGkNVo6cYXI29Yh/xNVdxSafoHQELtc4DXyxNxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:75:97:c5:cd:7f:34:15:1e:af:57:a1:29:0f:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Aug 6 04:02:28 2025 GMT
Not After : Aug 7 04:02:28 2025 GMT
Subject: CN=db354a4fad7976b6b9a2961d0ac054196a5dae2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:72:1d:0b:70:25:23:7f:bc:4d:cc:ad:77:20:
2d:e5:4b:a7:26:72:87:3d:d2:f6:9b:34:56:c9:ae:
10:bb:47:4b:a6:45:27:ba:7c:b5:4f:e9:8c:44:36:
76:d3:da:ff:ad:e8:84:50:1b:86:ef:d5:00:4e:41:
b6:7f:d9:7a:0a:25:ad:9e:03:cc:10:eb:d8:60:09:
c9:4c:51:17:7a:ef:e1:cf:9c:90:58:76:c1:f3:9c:
3b:d1:04:80:17:e5:5d:ff:f4:13:8f:8a:a3:03:3b:
df:71:89:0a:b0:ec:94:41:f1:1d:21:50:4e:b9:99:
3c:45:49:f0:2d:db:e9:82:27:50:bf:0a:e1:04:7b:
fe:f7:9c:1c:59:13:26:57:e4:5e:7a:b4:50:04:34:
29:0b:61:3a:79:0d:68:b9:30:b9:a1:77:1b:5a:03:
87:ff:4a:d8:de:48:8d:a8:28:ab:12:f0:6b:e7:42:
09:21:73:4d:25:ab:fc:9c:33:5f:84:8d:75:a4:7f:
83:0a:c0:b5:6e:1d:0c:88:52:8b:78:25:70:5c:3b:
74:a5:bb:40:e1:82:50:a3:b3:52:2b:4f:21:73:f3:
ac:1f:d3:c7:79:7e:e2:c4:7e:85:3b:f7:77:d5:1b:
fb:ec:5c:22:3e:e6:fa:a5:91:f0:e9:5e:e5:8f:d7:
b4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:35:4A:4F:AD:79:76:B6:B9:A2:96:1D:0A:C0:54:19:6A:5D:AE:2D
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:57:2a:c3:3c:eb:70:11:8f:1d:f4:f6:52:0b:18:bc:d4:06:
bd:04:7b:62:03:9c:9e:9d:02:d8:96:80:27:84:f2:e7:a7:34:
1b:f6:cf:5d:37:e3:6f:a5:bc:6a:85:29:80:f4:95:95:29:d8:
8a:d4:51:3d:38:41:3c:4e:67:d4:2d:06:12:38:36:a6:72:9b:
c0:43:b2:aa:e9:cb:ae:bd:77:fb:d7:51:33:04:08:50:75:8a:
35:b9:ca:4f:8e:8e:b6:e3:6f:53:84:9b:87:9c:3e:35:69:5a:
7c:0a:f0:fe:f4:b4:1d:9c:a7:5d:e4:98:a1:fd:48:9e:36:d0:
1c:92:49:88:3a:f5:64:62:d2:79:7f:3c:7d:9d:27:be:9e:1c:
8f:fc:7b:a9:a1:f2:2f:68:21:a4:82:54:12:01:ab:cd:c6:a1:
67:32:e0:0f:00:f8:da:5e:ec:db:2c:d1:5d:4a:75:ec:14:0b:
c2:c0:a5:30:d1:95:7b:ba:54:59:da:27:42:db:3e:23:0d:6a:
43:9f:78:f8:64:c7:ca:71:59:a1:27:c8:4b:02:05:59:e5:80:
a2:d8:62:bb:43:15:e8:13:87:d0:d5:e9:3a:7d:a4:7d:c7:af:
87:b4:64:c5:22:81:8a:c0:1f:54:d0:71:7c:42:87:73:5c:0f:
91:b7:0d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 07:51:30 2025 by rpki-client