Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
File: EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft (raw, json)
Hash identifier: 3iUueslZwd7LlHxFBtaf48drHE0dgrD/+vmuPCWA4K8=
Subject key identifier: 81:FA:5E:34:59:ED:8A:DA:47:94:26:1B:93:77:84:46:C8:BB:32:29
Authority key identifier: 11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
Certificate issuer: /CN=1170356135adf47ed9708cb0a13680894c2339ea
Certificate serial: 0198D66187E8CFC09E2CF20A25CFA2C05935
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
Manifest number: 15DC
Signing time: Sat 23 Aug 2025 10:02:52 +0000
Manifest this update: Sat 23 Aug 2025 10:02:52 +0000
Manifest next update: Sun 24 Aug 2025 10:02:52 +0000
Files and hashes: 1: 8u57ArQxKO_4JRsiP8ig9E_nJLs.roa (hash: ifzsEyICQHhNmNaBIhgOvnazrnhVrug9jj3mLB5h7cs=)
2: EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl (hash: CO8GUhB1eFmigm9JKmOTHrX67ZK+jBFaWY4uZ9/K7qw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:87:e8:cf:c0:9e:2c:f2:0a:25:cf:a2:c0:59:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1170356135adf47ed9708cb0a13680894c2339ea
Validity
Not Before: Aug 23 10:02:52 2025 GMT
Not After : Aug 24 10:02:52 2025 GMT
Subject: CN=81fa5e3459ed8ada4794261b93778446c8bb3229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6f:db:86:bd:01:a3:6f:d7:a4:18:42:15:12:
38:74:cf:d3:54:e7:27:69:58:99:6f:d4:ec:1e:0d:
2b:37:e7:4b:7b:2a:25:7f:b8:c1:7f:73:ea:66:10:
c0:e8:59:e3:3e:d1:6c:4f:61:06:c7:4c:5a:fd:65:
41:b2:c4:bd:1e:dd:48:ef:26:88:94:e7:04:96:95:
41:97:41:8a:2b:37:a0:b8:83:8a:e6:38:ec:48:97:
8a:08:9f:c9:e6:2d:8a:fe:b8:ff:64:3f:b6:61:6f:
c6:cd:65:37:4d:b3:b4:3b:08:5a:37:8c:1b:79:b5:
f6:ed:40:8b:5b:ee:8b:96:eb:1f:d9:14:c5:25:76:
94:d8:f4:05:76:95:c7:ef:ee:85:50:af:44:b2:07:
af:64:e2:34:24:b9:3b:b5:2c:a6:ba:e0:c7:68:80:
bf:a9:2b:b1:e3:f0:13:20:5f:3b:be:31:83:39:0a:
00:8d:4f:7b:cc:97:ee:d8:4f:33:c5:72:d9:4d:07:
16:e1:08:be:8a:a0:dd:3a:5e:96:d8:95:5d:ac:b0:
0b:62:4a:85:68:99:fa:7b:1b:86:39:f3:2f:30:be:
0a:c6:43:01:db:6a:68:4f:c1:30:c1:ad:0a:54:33:
59:d7:6e:18:9d:f4:24:46:42:66:05:0b:92:80:86:
c8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:FA:5E:34:59:ED:8A:DA:47:94:26:1B:93:77:84:46:C8:BB:32:29
X509v3 Authority Key Identifier:
keyid:11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:60:3d:d2:88:12:20:45:e7:c6:21:7e:7e:66:a3:3f:80:27:
bf:d8:aa:69:12:6e:c9:17:d2:05:47:1b:4c:08:46:6a:7b:ec:
41:ae:55:cf:f3:7c:03:07:4f:f3:af:22:6f:ba:c6:f0:2c:a4:
52:cf:53:ac:8a:b8:30:37:b8:55:7a:99:d4:c9:8f:5e:23:0f:
26:47:14:23:1f:91:6a:35:16:3e:36:9b:78:5a:3e:d1:59:98:
39:16:76:a8:89:67:32:a5:69:e6:8c:57:75:5b:fe:d1:0b:1d:
25:12:30:f9:14:ee:f1:37:20:a3:50:d1:80:3c:66:55:b4:dd:
f9:71:fd:a1:41:a1:65:92:06:0a:11:03:97:84:46:3b:f4:e8:
e2:e2:bc:55:5d:11:c2:3f:76:1b:84:13:1d:93:1c:fe:80:49:
48:3e:2d:01:1b:33:f9:60:2f:06:34:2e:f0:91:ec:a3:9e:6c:
6c:a5:58:72:de:64:bf:56:f8:6f:2b:a7:73:7c:7f:bf:4c:d5:
4e:6a:78:10:83:f3:eb:b5:2a:d7:5a:e0:9e:01:29:3d:7b:f5:
9e:1f:dd:7a:e0:35:cd:a6:26:60:79:88:36:19:ba:6f:38:90:
3f:43:8a:b3:0a:22:2a:51:ae:6c:48:80:38:1d:d6:65:d7:f8:
d4:ea:7e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:37 2025 by rpki-client