Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
File: B-pSPsf5N3oanl1vqGgX7T1sCoI.mft (raw, json)
Hash identifier: ghiKy7Dt90UbuVytNo7P5ENgZOExE87Rnv1XCf7mnzc=
Subject key identifier: 67:7D:B9:A4:0B:FA:B4:FA:72:E5:EA:AA:F3:14:DF:65:E6:63:8D:72
Authority key identifier: 07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82
Certificate issuer: /CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
Certificate serial: 0198D4A8190AB8DD6B3BE0B06741A3AA3E08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 02:00:42 +0000
Manifest this update: Sat 23 Aug 2025 02:00:42 +0000
Manifest next update: Sun 24 Aug 2025 02:00:42 +0000
Files and hashes: 1: B-pSPsf5N3oanl1vqGgX7T1sCoI.crl (hash: 8cahGx77zhsh8mpL7mZ+GhujKICmkujiIfOF+ug2jjE=)
2: npXHmGXZGuLcOHTCUM12CgHnXyg.roa (hash: 1gC/eDL6k6iHyWBQvbxBWaVuZWHOyh/0XMWrseRbP5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:19:0a:b8:dd:6b:3b:e0:b0:67:41:a3:aa:3e:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82
Validity
Not Before: Aug 23 02:00:42 2025 GMT
Not After : Aug 24 02:00:42 2025 GMT
Subject: CN=677db9a40bfab4fa72e5eaaaf314df65e6638d72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:63:4e:71:8c:5d:3e:30:22:83:d3:e6:0a:30:
c1:1d:17:2a:06:3f:9b:fd:c6:42:f2:77:d9:c3:59:
df:1e:d9:16:37:4f:be:2b:2a:53:2c:2d:3d:dd:f6:
ae:f9:91:2d:af:b0:e1:dd:5b:1b:a8:c5:71:fa:b0:
df:3d:09:d2:98:19:83:52:b1:8e:b7:c8:3c:b9:87:
dd:37:70:4e:7a:8c:58:36:37:df:ee:59:48:57:4d:
58:3a:b8:91:4e:f2:88:8a:f5:ca:77:cd:42:96:3f:
56:70:af:01:3d:0a:15:52:4b:4b:eb:c8:72:60:f8:
84:92:09:86:c7:26:aa:ef:69:24:b0:c7:be:76:55:
6e:d3:df:99:34:74:b9:de:db:01:20:d2:5a:90:23:
3f:c2:13:bd:78:60:30:d0:3b:06:00:f5:1b:f2:be:
0a:2b:de:7a:a7:b9:d6:c5:b1:a9:58:ce:76:b0:e5:
2d:e5:a8:74:18:71:d7:c9:88:0e:62:61:6a:e2:46:
15:0f:8b:25:35:ce:20:c6:a7:f3:c9:8e:00:2a:98:
a5:36:a0:55:2b:a8:e7:3f:a9:dd:98:0e:fe:50:a3:
5e:49:81:13:8c:3e:30:a3:da:23:32:db:bc:8e:a0:
23:62:9a:9e:10:c5:c6:33:1f:9c:ed:39:fb:35:40:
73:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:7D:B9:A4:0B:FA:B4:FA:72:E5:EA:AA:F3:14:DF:65:E6:63:8D:72
X509v3 Authority Key Identifier:
keyid:07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:cb:20:14:f7:1d:f7:15:02:4c:c5:b6:87:48:04:03:b0:8b:
4f:39:3a:ff:10:bb:42:22:3c:a2:79:e9:f5:63:19:43:4a:f1:
b4:41:6a:7a:b1:ff:2c:25:c3:7a:96:72:15:a1:27:e0:85:f1:
80:80:e5:68:cd:4f:ae:5e:c5:b9:4e:64:ed:b6:0c:59:fc:76:
cb:75:b0:1b:cf:71:1d:c2:9c:a1:d8:49:6f:f6:42:11:20:70:
db:c4:d2:0d:80:b3:df:93:0a:9a:40:42:42:f9:50:c5:82:11:
75:de:e2:7a:6e:87:cf:b0:5f:83:c0:9d:cf:bb:75:16:24:d5:
48:90:55:1e:2a:60:1c:f9:cc:6d:a5:bc:ad:22:d0:57:eb:31:
bd:0d:12:a8:92:ec:26:e7:05:01:31:b7:3d:40:b3:f4:81:6b:
fc:6d:74:de:bc:9e:00:bd:b3:63:96:a1:7d:10:79:94:cb:c1:
e7:95:58:27:0b:35:93:e3:13:61:bb:e6:05:06:42:b7:eb:f9:
5a:ae:f5:4f:cb:d5:43:05:47:3e:c9:20:98:f4:db:6b:91:e8:
29:09:fe:1f:6e:ba:62:d5:10:b6:64:85:cb:d6:5c:68:3d:0d:
79:c4:a0:e6:be:33:70:fe:ec:f3:9a:80:90:ed:a0:f1:8c:8f:
23:ca:9d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:36:25 2025 by rpki-client