Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json)
Hash identifier: 917vVxI46xeKWhk0BwvEf+Pwu5FChIjSLwIaB8ab+Lo=
Subject key identifier: D9:3C:CD:A6:39:A5:9C:2E:5E:C5:97:92:63:D2:34:9C:7D:BF:05:08
Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d
Certificate serial: 0198D583E0D9749A8C3AC6C87969E09CD990
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
Manifest number: 0907
Signing time: Sat 23 Aug 2025 06:00:46 +0000
Manifest this update: Sat 23 Aug 2025 06:00:46 +0000
Manifest next update: Sun 24 Aug 2025 06:00:46 +0000
Files and hashes: 1: 1kPYBeHFqZcRahwRlHXvuPvT0zI.roa (hash: qhycFEi6FwqVVERso5+P+dTV24QXX6z3cT56YMpxbXU=)
2: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: WEd610wRw/PFqC9wRJgvrzyplxQrd8K73/B0fyk4lvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:e0:d9:74:9a:8c:3a:c6:c8:79:69:e0:9c:d9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d
Validity
Not Before: Aug 23 06:00:46 2025 GMT
Not After : Aug 24 06:00:46 2025 GMT
Subject: CN=d93ccda639a59c2e5ec5979263d2349c7dbf0508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:24:65:2e:6a:ce:62:2a:b1:a3:78:40:5f:5f:
85:98:fd:7b:10:fb:7a:b3:3d:70:85:06:e1:dd:37:
6d:4c:d8:d2:ec:44:01:e1:b9:f1:37:5f:f4:18:ce:
cd:c2:48:e3:1e:82:1b:58:a6:52:26:1e:3a:f9:fd:
e5:f8:b9:9d:f5:17:ba:d7:94:33:74:61:4a:1b:3e:
6d:20:f2:d5:13:af:83:3f:38:6a:00:4b:ff:c6:67:
d8:a7:df:3f:ce:85:4e:6d:24:90:54:2e:f6:02:0d:
c1:bb:09:c5:02:8c:04:78:ad:35:b8:b4:1d:3c:50:
cf:80:42:e8:de:17:7c:59:71:30:8a:85:d4:2c:12:
d4:0a:aa:e4:32:15:8e:32:e9:4b:ff:ba:d4:82:3b:
a6:dd:2e:2e:29:4b:59:e0:3d:56:ff:d0:2b:1f:36:
0e:01:4d:9e:21:43:1b:29:7f:37:7f:7f:66:4a:35:
e3:2b:34:8f:f0:87:cf:f8:fe:58:e2:c8:3d:e7:3b:
0e:f9:f3:7a:be:7b:33:4a:97:9c:4b:88:0f:c9:8a:
05:5a:6d:68:93:06:51:51:ac:8b:3c:4a:42:68:af:
fa:5d:89:f6:7b:d6:f0:6b:57:91:30:2e:f8:b7:7d:
99:28:37:89:8c:a2:28:54:5b:46:f6:2b:be:3d:e4:
d6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:3C:CD:A6:39:A5:9C:2E:5E:C5:97:92:63:D2:34:9C:7D:BF:05:08
X509v3 Authority Key Identifier:
keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:7a:0f:f7:48:3d:09:2c:ec:5c:9e:fa:08:22:97:f7:4f:6b:
2b:37:55:05:40:41:ea:7b:ff:bf:d2:8b:db:84:2b:43:d5:4c:
5f:a9:2b:92:36:1d:ba:cb:ef:c5:ba:1d:1e:b7:6c:72:72:17:
d7:0f:24:33:f0:2f:27:4e:22:e2:f3:fc:eb:27:16:cf:3d:b0:
17:9f:f6:fd:6d:91:8e:e7:6f:ed:85:d6:da:95:3d:24:3f:e9:
34:d8:2b:67:91:f8:3d:dc:3d:4c:a6:0e:9c:05:72:d7:b6:8a:
0e:fb:ef:29:38:32:c4:06:44:ec:f5:f9:59:69:bb:e3:74:74:
98:aa:1a:98:83:1f:ea:aa:4a:50:7e:84:87:44:20:8a:d1:9a:
0f:da:b8:e6:98:9e:57:94:df:cf:6f:fb:7a:d3:20:f8:16:d6:
83:d3:58:d2:99:f5:50:6d:04:b1:08:05:55:bd:ed:9d:12:0b:
28:f5:7b:2f:af:29:56:5e:1d:4f:67:d5:9c:99:d2:44:a2:45:
ac:78:ee:0c:d0:fc:cf:69:16:b7:ac:e7:36:16:a6:a7:0a:c0:
3c:be:f1:b0:37:bb:d1:25:61:39:2f:ec:3f:fb:78:f6:47:46:
15:8d:d8:29:45:2b:bd:54:5b:d2:96:aa:3f:43:b8:fb:1e:2a:
ec:39:7d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:29:01 2025 by rpki-client