Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: QDDRyODFfq2apyG+4Rtz2ZiTG+VF5LKUUBhy/kY4WAk=
Subject key identifier: 05:82:8C:E1:C2:A6:A4:E8:7E:1A:4D:29:48:C3:95:A7:49:B9:8E:C8
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 0198D5835B49A68A38E70D293AEB0B1B868E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 02D3
Signing time: Sat 23 Aug 2025 06:00:12 +0000
Manifest this update: Sat 23 Aug 2025 06:00:12 +0000
Manifest next update: Sun 24 Aug 2025 06:00:12 +0000
Files and hashes: 1: 5jBhyCclhjBWCSh1O-0WT6aKzvs.roa (hash: MRjgNDdW46vQb+SgK5+muMmigtF72q9wmhV3HqxuIuc=)
2: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: peLDwbLZs/ZAi4eVhbKK0KI+SJTNAO9irI3CHoHXOu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:5b:49:a6:8a:38:e7:0d:29:3a:eb:0b:1b:86:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Aug 23 06:00:12 2025 GMT
Not After : Aug 24 06:00:12 2025 GMT
Subject: CN=05828ce1c2a6a4e87e1a4d2948c395a749b98ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1a:33:f8:6a:6c:c9:44:91:d1:6b:b2:c8:ba:
bc:ae:7b:4a:c0:90:3b:eb:30:53:b0:3a:4d:e3:f9:
0f:51:27:ba:55:4e:4c:20:51:5e:ff:ba:62:98:c9:
7b:9e:27:88:f4:7d:e7:a4:ed:d2:cf:68:98:1e:2e:
c0:a6:79:cb:ee:80:fd:46:6d:23:ac:25:1f:4c:0e:
a5:b2:74:48:e5:fc:eb:cc:1f:7a:4f:40:12:58:3b:
6b:06:ed:9a:08:d5:87:e3:6a:a3:f7:89:86:12:03:
9e:03:b9:0c:a3:23:47:5c:e9:47:2b:eb:7e:f4:2a:
1a:72:31:32:28:63:a9:2b:aa:90:77:e4:68:47:f1:
0b:73:ca:b0:90:8b:18:ec:8e:bd:66:f2:5f:ec:d9:
23:52:2f:c8:c9:c0:e3:5d:bb:34:85:d4:da:d4:4e:
4c:ec:05:32:ce:2f:2e:ac:a7:60:41:51:1b:17:66:
7d:48:c0:ef:27:5d:96:7f:ce:aa:4a:3e:e9:16:c0:
46:e0:7c:ca:68:e8:3e:3f:a6:f6:e1:32:3d:39:46:
14:4a:02:d8:a1:a1:49:e9:4e:c0:21:ff:48:78:55:
37:88:74:9e:6e:0c:07:bf:78:2a:76:1c:98:52:1f:
e7:b9:fb:09:4e:cc:c3:2f:0e:fc:f4:fc:78:3e:72:
7b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:82:8C:E1:C2:A6:A4:E8:7E:1A:4D:29:48:C3:95:A7:49:B9:8E:C8
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:c6:09:4f:48:65:6c:05:1e:52:57:06:36:60:56:30:9c:87:
c2:54:f9:eb:66:22:bd:dc:ca:d3:42:42:8a:3f:e7:91:55:85:
f0:70:04:44:e5:9a:43:69:84:72:81:52:ed:af:c4:7b:9b:71:
f1:07:f3:db:22:01:38:93:5e:e7:33:cd:da:f9:a0:46:26:3b:
ed:38:b2:9e:3c:57:70:a9:31:68:50:35:53:df:0c:19:2a:13:
db:02:f4:e6:08:f7:29:63:f3:0a:61:3c:0b:50:28:2a:64:98:
b6:12:e2:2c:7d:75:43:7a:df:9b:d1:9c:04:25:c3:30:b3:9f:
db:5a:b5:8d:6e:d6:e8:bc:f5:ec:86:bc:cf:83:b0:f3:53:23:
14:b7:de:1d:8f:bc:67:c5:a1:74:ff:e6:0b:58:a9:ca:71:dd:
ec:f9:ab:3a:b8:bb:30:2a:fc:85:16:03:bd:13:0e:fb:f2:e7:
ef:07:fb:2a:50:6b:0c:77:d8:59:ee:91:20:2c:48:09:5c:ff:
b9:88:06:02:5b:25:93:7c:d7:93:32:d0:20:3d:1d:cc:2c:bd:
38:1e:f5:8c:82:a6:11:6d:9a:dd:bc:ba:a9:1f:56:59:8b:05:
57:08:47:69:52:a8:6b:73:05:a0:4e:83:3d:3f:d3:cf:4a:33:
8e:06:e3:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:38:42 2025 by rpki-client