Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: HwS5k4rUG4mqvN1LAK0jPWZCmrYvMoK7yTN39JjCE4A=
Subject key identifier: F6:FD:BA:6F:C5:98:38:81:46:66:4F:15:27:85:D7:99:DB:C9:BF:55
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 0198D92B63FAFA3636A19BE02F2B5DA32D12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 02F4
Signing time: Sat 23 Aug 2025 23:02:36 +0000
Manifest this update: Sat 23 Aug 2025 23:02:36 +0000
Manifest next update: Sun 24 Aug 2025 23:02:36 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: 2wT5BF/0I8GplfmVyywtaRSa6uNrutPFb+WQ3Js71Vc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:2b:63:fa:fa:36:36:a1:9b:e0:2f:2b:5d:a3:2d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Aug 23 23:02:36 2025 GMT
Not After : Aug 24 23:02:36 2025 GMT
Subject: CN=f6fdba6fc598388146664f152785d799dbc9bf55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f9:be:b4:a1:fc:01:11:c3:b9:63:10:d3:49:
98:4a:45:b9:4d:c4:15:85:2a:85:98:b8:4c:e6:9d:
c5:24:0e:21:c1:cd:09:f2:32:87:50:3c:45:f1:20:
cf:5d:6b:a6:99:60:46:5c:af:87:a2:a9:10:f0:73:
b9:a9:a4:87:1d:5c:5b:95:81:48:91:65:5f:d4:1c:
36:e2:0a:c8:cd:38:cc:4f:58:5f:79:50:8b:2d:54:
ca:dc:c7:e6:35:f3:80:e9:29:ae:07:5a:22:9a:ec:
08:10:dd:b6:b2:87:99:98:a3:bb:66:06:d6:e8:19:
b3:9a:66:aa:06:fc:38:e8:a2:5d:98:e9:14:82:44:
1e:9f:ff:a1:b1:86:a4:35:1a:a8:ce:74:db:1c:82:
56:cf:b0:e5:b7:a2:a9:9e:b8:4d:60:2b:27:57:1d:
9b:f0:94:fe:1a:cf:c5:7e:66:f6:e3:a7:05:a3:df:
74:9c:3f:b2:f9:7a:e2:30:6c:78:30:90:b3:7b:cb:
c3:94:51:98:31:21:59:66:2c:b7:80:b8:2a:9c:7e:
c1:47:12:95:8e:7d:e4:90:68:59:be:43:bd:de:56:
c3:75:24:eb:e5:8f:ac:06:be:7e:0a:df:f2:5e:2b:
50:79:06:39:c3:73:5d:a7:70:50:a0:65:11:1e:ab:
d1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FD:BA:6F:C5:98:38:81:46:66:4F:15:27:85:D7:99:DB:C9:BF:55
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:81:af:1f:15:c7:cd:c8:c1:35:d5:8e:15:73:c1:c7:df:7e:
0d:23:27:32:c2:f5:38:ce:08:d3:5e:02:1b:b7:80:c5:81:69:
45:30:b8:ac:85:0e:67:f4:e4:97:40:52:f9:51:f1:3d:dc:29:
bd:aa:0e:da:27:16:9a:5e:fe:35:be:99:f4:8f:37:ee:03:a9:
85:54:90:0e:0b:d8:d0:9e:58:77:2c:48:b9:9e:aa:5d:80:17:
c1:6a:42:28:a9:c5:70:f8:8a:08:7e:7e:fa:0c:62:30:77:23:
b5:85:d8:50:5c:0b:16:ff:92:f0:3c:3c:23:fa:6e:fb:8a:9d:
03:65:73:b9:18:20:45:90:e0:2a:56:18:18:ca:28:5a:a8:b1:
da:f3:f7:86:6e:be:b6:b0:9a:f7:c5:36:f1:4d:27:f8:a3:b2:
4c:89:a0:67:da:16:d8:e6:78:f3:53:ee:bb:6a:04:be:df:77:
c3:df:ed:29:f3:5c:38:91:31:6c:ee:4f:40:67:56:61:11:3d:
72:ca:69:74:3a:07:d0:f9:b2:9f:de:bb:66:83:0b:02:fb:d6:
35:b8:db:e3:e7:b4:79:54:a7:17:81:4a:30:0b:26:7e:16:ed:
75:20:96:85:3c:7e:b2:42:f5:df:49:9a:b9:26:e8:5b:65:a6:
89:95:11:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:44:04 2025 by rpki-client