Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
File: cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft (raw, json)
Hash identifier: m32CpE1ILw+iN66RinCcsjpK+g4s5io9WHWM+lKfGsY=
Subject key identifier: 82:1A:F0:AF:92:3A:4E:A3:74:36:7A:E0:0B:34:DE:9E:CD:D1:49:36
Authority key identifier: 70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
Certificate issuer: /CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Certificate serial: 0198D5F1AAA0ABF0494D3980C966C5FD637D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
Manifest number: 0982
Signing time: Sat 23 Aug 2025 08:00:41 +0000
Manifest this update: Sat 23 Aug 2025 08:00:41 +0000
Manifest next update: Sun 24 Aug 2025 08:00:41 +0000
Files and hashes: 1: 5K2zlrIHADlFytOUhc54zx-uCAw.roa (hash: VJ3nEApsPTUcM1XeIb75bGQ+CbjZ/H8pdnWKdP3UYOg=)
2: cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl (hash: vLWLR6dQ9ZeoBuI/qth1fUC8yBIbGExIjdJnrcTfaGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:aa:a0:ab:f0:49:4d:39:80:c9:66:c5:fd:63:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Validity
Not Before: Aug 23 08:00:41 2025 GMT
Not After : Aug 24 08:00:41 2025 GMT
Subject: CN=821af0af923a4ea374367ae00b34de9ecdd14936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:bc:7a:ea:14:a1:17:ea:da:a7:c2:49:39:52:
a1:fb:25:3b:bb:7d:f1:c2:f5:7a:6e:a7:77:16:91:
8c:b3:8c:f6:8c:b0:69:7f:6e:d0:8a:71:19:85:2d:
89:21:3d:65:6f:b0:5c:07:00:61:15:87:29:03:b5:
ef:7c:dc:ed:d7:a3:e5:55:6f:13:98:d9:f9:37:7b:
20:81:a3:48:d7:9a:53:99:63:96:db:0e:25:bc:b3:
ee:68:99:0a:b5:18:e6:14:30:5f:20:49:51:b9:e9:
68:0c:d6:a5:7b:53:31:d5:3c:2a:8c:83:b9:fe:40:
6a:f1:c5:7b:5d:65:81:40:2f:fc:e9:12:49:14:2c:
64:bf:35:84:02:e2:7e:4e:a5:60:6c:33:0d:db:cd:
78:c7:7e:ee:74:3a:f4:87:80:96:ad:49:cb:59:a4:
95:26:5f:fb:1b:0a:36:57:c5:cd:ea:20:b4:75:56:
fb:d5:da:ee:74:9a:b5:f6:d6:8a:dd:20:cd:26:2d:
55:b3:9c:d9:51:12:9f:15:d6:8c:4b:b4:37:f2:01:
41:3a:4b:1e:b8:91:2c:fe:cf:93:dd:49:80:54:3e:
45:28:06:d2:a3:c7:55:e4:9c:78:35:37:ec:16:57:
7c:e5:21:17:54:c8:07:b5:73:e1:9e:96:c2:0f:86:
d2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1A:F0:AF:92:3A:4E:A3:74:36:7A:E0:0B:34:DE:9E:CD:D1:49:36
X509v3 Authority Key Identifier:
keyid:70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:6d:15:6a:ae:ae:59:8c:09:c6:d4:48:0f:25:bb:77:f3:a3:
69:6d:d9:e7:67:b0:d4:7d:ac:b3:d4:a7:50:fe:34:f3:c9:6a:
97:00:79:f8:47:b3:3d:00:b9:da:49:50:98:4b:85:8f:87:66:
ee:bf:97:b2:6a:6a:bd:ca:44:e6:e1:b1:c2:59:7a:d3:c2:19:
3d:3a:9c:dc:52:de:23:60:70:09:13:f2:25:e2:27:91:e8:b2:
14:19:05:1a:9c:63:43:79:51:98:82:d1:d6:5a:ae:d4:3a:bf:
fc:e3:1b:61:c1:3a:65:37:c4:29:2a:7d:05:74:ae:6d:94:47:
86:0d:84:2b:0b:77:7e:23:82:8e:98:d6:55:9a:6f:a4:88:bd:
98:aa:4f:4f:d8:e6:4d:7e:06:5d:f1:d5:18:9a:e7:7f:51:85:
b2:94:00:b8:fb:0c:e7:8e:52:0c:aa:1f:84:d2:82:23:b5:44:
5b:ae:6f:8e:a0:20:72:65:f0:1f:68:46:e4:87:ac:95:56:3a:
c9:21:5d:0b:ab:eb:eb:1a:32:61:50:3f:a7:5c:ad:01:30:13:
9f:64:0b:8b:40:c6:1d:82:46:2a:a1:61:9e:9e:e8:ad:ae:16:
78:51:41:74:60:c0:4e:c2:ec:e6:68:9c:31:e2:eb:98:ab:95:
e1:5d:15:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:33:36 2025 by rpki-client