Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json)
Hash identifier: p5acNIA7+ZXsJCirtw7Q1jI6rDUC2gTMGGvsO3ODgvg=
Subject key identifier: 3D:D2:12:C4:10:F8:E4:94:46:E5:50:36:76:33:11:76:13:DF:82:7D
Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a
Certificate serial: 0198D58385A670B2F85ACBE88B62BAC0CFB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
Manifest number: 026C
Signing time: Sat 23 Aug 2025 06:00:22 +0000
Manifest this update: Sat 23 Aug 2025 06:00:22 +0000
Manifest next update: Sun 24 Aug 2025 06:00:22 +0000
Files and hashes: 1: 5ZRHOA8DDg_XhJ8JjCvhTOGiC1w.roa (hash: eWpgjaoVJC0L+xFRvzTJa/HrtM2zzM7SykfE1sq9g2I=)
2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: eGZxFQkqyWiwnWAwsSU8DRIaWgmjSXqCqg1slwIfovs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:85:a6:70:b2:f8:5a:cb:e8:8b:62:ba:c0:cf:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a
Validity
Not Before: Aug 23 06:00:22 2025 GMT
Not After : Aug 24 06:00:22 2025 GMT
Subject: CN=3dd212c410f8e49446e550367633117613df827d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4d:93:f0:c2:45:60:49:d0:fe:b8:78:6c:a9:
52:fc:12:4e:a6:e4:03:0d:2c:ad:a3:ec:f5:14:2f:
d7:b5:c1:10:6d:4f:ce:1e:c2:89:45:ef:bf:9d:1e:
89:d7:0a:d7:83:68:28:b8:29:59:1d:75:3e:16:0f:
ba:84:2d:ef:a9:bc:5d:d6:07:8f:ad:cb:28:5d:7b:
58:d1:e9:3f:18:f8:2d:fb:19:49:a0:6c:47:46:ac:
10:aa:b3:c3:5f:6b:39:b0:cd:57:a9:fc:a8:74:cd:
7f:ea:c8:ca:8b:60:3a:27:46:e4:f3:72:f0:28:18:
59:86:e2:dd:5e:bd:ee:3a:d7:59:dc:64:28:a0:38:
ff:e8:3d:17:a3:ea:53:70:ef:0f:3a:0c:c3:25:1f:
9e:84:dc:9d:f1:66:f7:8f:32:97:de:2d:b9:2a:67:
94:eb:a0:dd:b5:aa:4f:79:d5:ff:57:e6:eb:4e:07:
a5:d5:4b:b7:42:89:60:22:ea:f2:2b:4f:39:59:3d:
a9:62:d5:cb:3c:41:71:d4:e0:58:74:d6:34:93:44:
ec:96:64:91:ba:76:eb:eb:e5:4b:9e:65:53:58:88:
7d:06:fb:d6:34:8f:b7:00:1b:8a:b3:07:da:d3:b3:
c9:34:88:ea:e9:ff:27:f2:91:6e:fe:73:82:46:90:
b9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D2:12:C4:10:F8:E4:94:46:E5:50:36:76:33:11:76:13:DF:82:7D
X509v3 Authority Key Identifier:
keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:17:d1:92:c8:20:6c:f3:de:b7:00:d0:80:e6:80:34:b0:bc:
23:fe:ee:cc:3a:fc:22:c3:a5:22:b5:be:dd:be:58:08:84:7f:
11:85:e0:32:cd:23:47:a3:cf:86:4c:17:a6:89:02:95:90:26:
c9:7b:7e:e2:99:59:ad:b2:0d:c1:17:91:30:90:46:81:71:06:
01:81:8b:ad:54:64:b9:31:72:29:58:5e:62:30:a5:fa:c6:d9:
e3:95:14:db:c8:df:05:f5:38:0e:47:bb:73:6f:37:bc:e0:13:
ca:ab:e9:76:8a:36:b4:eb:6e:63:1c:45:a0:b8:41:aa:f3:cd:
e6:e2:56:b6:7b:b8:89:be:ba:e4:81:10:76:07:89:f7:ab:de:
54:ad:49:62:2c:c4:fe:95:4c:0d:a7:0e:30:7c:82:57:dc:05:
eb:ec:25:d3:fd:ee:e5:76:5e:a9:9b:41:e8:75:97:4f:06:05:
e4:b6:ce:d8:5a:9b:f6:45:58:6d:06:4c:5d:61:af:08:61:d0:
1b:c6:3a:be:09:84:d2:2d:e6:a3:9c:93:2c:5a:c1:e6:c9:d5:
7c:eb:4d:60:83:a9:80:f1:95:0a:58:3f:1c:31:52:b3:5d:dd:
ca:c4:db:4b:58:fb:fc:3a:e4:31:21:93:20:91:4e:f0:2d:e1:
84:98:43:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:15:18 2025 by rpki-client