Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
File: FZjXXo4y1ehH30qho1wpNEyXbiY.mft (raw, json)
Hash identifier: RhpYJ+3/tMRoLsQOxEgKXm3OotAR3AcKXNBfSndCZOw=
Subject key identifier: C6:40:B0:53:DD:7A:02:42:1B:77:54:DC:AC:A1:A7:11:8A:6E:29:01
Authority key identifier: 15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
Certificate issuer: /CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Certificate serial: 0198D7E13FB9A2C4BF56EC1E378A8B36034C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
Manifest number: 101D
Signing time: Sat 23 Aug 2025 17:01:59 +0000
Manifest this update: Sat 23 Aug 2025 17:01:59 +0000
Manifest next update: Sun 24 Aug 2025 17:01:59 +0000
Files and hashes: 1: AIRZFXDpY9mQ7Mvu8kYb8OBEtUo.roa (hash: d5gxdyXpVK75f5B2dssNKeXHA5IUThR6PGmkaU8utQY=)
2: FZjXXo4y1ehH30qho1wpNEyXbiY.crl (hash: 6ky/1OHwLAvtgt2xyEiHTsU/6kvp2e0Ab8n2IOdYGx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:3f:b9:a2:c4:bf:56:ec:1e:37:8a:8b:36:03:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Validity
Not Before: Aug 23 17:01:59 2025 GMT
Not After : Aug 24 17:01:59 2025 GMT
Subject: CN=c640b053dd7a02421b7754dcaca1a7118a6e2901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:97:44:fd:ee:aa:df:c9:5d:80:cd:25:be:0c:
cd:9e:e3:98:d2:ce:37:0f:ed:b4:ca:b8:0b:ee:04:
6c:44:a9:35:1f:96:d8:c3:fd:57:7a:08:61:05:7b:
6c:14:a9:a0:b6:7f:21:10:6b:bc:81:00:ae:d5:e6:
ca:92:7e:0a:9b:84:51:87:8b:48:1a:f8:28:80:8b:
9b:71:ba:f7:14:69:f0:70:e3:91:a5:a1:2c:b5:bd:
06:f9:92:73:cb:27:ee:9f:00:79:43:f3:93:bb:09:
b2:71:9e:c4:ce:b6:ca:8c:28:37:24:67:f3:43:f1:
20:12:3f:91:a5:6a:d7:c3:2d:e3:61:3f:b0:1d:de:
20:9c:3a:b2:08:a2:60:5f:e3:bc:de:c8:95:a5:47:
52:08:88:a1:aa:bf:6b:47:46:0c:c5:f7:54:2b:25:
b6:8f:3c:0f:bf:c8:9f:c1:69:97:27:d8:45:47:98:
b8:2d:9d:5d:02:9d:3d:90:ba:aa:68:9c:11:67:c7:
1e:9e:fb:3c:36:a5:67:eb:27:de:ee:d8:bb:0a:bc:
7c:a1:ee:7a:70:c5:9e:07:4c:f4:6c:f0:81:dc:9e:
33:9f:ba:c3:71:33:bb:96:05:e6:f9:19:6c:bb:72:
0d:a7:53:c1:6f:bd:61:77:73:c7:4d:98:36:c8:62:
18:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:40:B0:53:DD:7A:02:42:1B:77:54:DC:AC:A1:A7:11:8A:6E:29:01
X509v3 Authority Key Identifier:
keyid:15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:01:d3:10:9b:bf:8f:95:e0:dc:67:66:22:96:85:f0:01:e8:
18:51:f3:d5:ff:1a:ff:02:f8:de:0e:e0:b7:1f:09:18:1a:6a:
23:72:2a:f7:44:c9:82:36:bd:3c:bf:79:e1:3d:33:56:43:00:
4c:51:c4:f0:08:e2:fe:b8:c5:5a:74:2c:82:32:ea:da:ee:81:
9b:83:e0:de:0e:fb:66:55:05:14:36:9b:3f:5c:56:75:c5:a1:
73:11:50:fc:14:c5:24:0e:ce:c0:85:db:b0:49:ec:86:42:58:
44:64:37:93:bd:99:2a:0d:37:b0:df:ea:74:47:24:77:5a:14:
e6:0c:79:cd:a5:3b:55:56:e3:5b:c5:c1:f8:87:7f:1a:f1:71:
66:9a:03:4a:56:30:44:dd:5c:3c:1c:19:b6:5d:16:96:85:59:
22:61:aa:99:87:b5:d7:14:04:10:2a:bc:9b:5a:1f:23:d6:15:
93:d1:10:c7:dd:b7:09:0e:82:4a:14:91:05:83:50:8b:0c:f1:
d6:5f:9f:b8:fe:4f:1b:8a:46:b2:24:7e:9f:a8:35:e0:fc:67:
41:e3:d6:3e:de:1a:d0:bf:96:87:11:ac:fb:20:b9:aa:cb:fa:
bf:b0:b7:eb:70:ff:d1:25:42:b4:01:bb:0e:18:7d:83:be:27:
28:c3:a5:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:48:25 2025 by rpki-client