Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
File: n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft (raw, json)
Hash identifier: R52UNgfx6+JGUPyAWo9Jm3dc3rxVJ9Vkf0L58ji7r10=
Subject key identifier: 8E:AC:88:AB:8B:6B:93:84:E0:58:B5:F2:A1:EF:89:33:17:14:53:39
Authority key identifier: 9F:8A:3C:9A:9E:DF:64:47:35:A9:4E:B0:9F:01:CA:B3:98:55:D2:78
Certificate issuer: /CN=9f8a3c9a9edf644735a94eb09f01cab39855d278
Certificate serial: 0197B745421D5DAE95FAEE078657839D2609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
Manifest number: 0A22
Signing time: Sat 28 Jun 2025 16:00:58 +0000
Manifest this update: Sat 28 Jun 2025 16:00:58 +0000
Manifest next update: Sun 29 Jun 2025 16:00:58 +0000
Files and hashes: 1: 9nrkqBfEEEVb2ilynt5HJRxEGWw.roa (hash: 9p3+VvNvFq4rrBtC/Z9UeyBNK7rF8lIsM8oxPtubKQs=)
2: n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl (hash: c3lSmYPPbifQIMqE7X44lYXIrBQ2i21pEmp62afRc7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:42:1d:5d:ae:95:fa:ee:07:86:57:83:9d:26:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f8a3c9a9edf644735a94eb09f01cab39855d278
Validity
Not Before: Jun 28 16:00:58 2025 GMT
Not After : Jun 29 16:00:58 2025 GMT
Subject: CN=8eac88ab8b6b9384e058b5f2a1ef893317145339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f1:77:1c:fb:1a:ce:30:d9:f0:0f:c2:17:42:
ce:ab:57:b9:a9:b3:28:a8:f0:a7:79:59:44:b4:36:
3d:84:fe:32:19:bc:8f:fb:5b:98:8c:2e:a5:e0:e8:
aa:e0:43:b3:4e:b9:6e:04:cb:7c:a6:59:ad:b8:47:
bb:7a:ea:21:e5:d6:0a:ae:2e:8c:42:44:5a:c5:22:
36:2d:b6:00:61:93:7f:a9:e8:b0:f9:c9:28:f3:95:
71:c6:06:ef:6e:2e:34:83:41:97:80:78:4c:30:9d:
6b:c4:13:30:29:35:97:b8:db:1a:a0:96:ae:e1:88:
5b:4d:de:57:0d:de:e2:87:56:dc:4c:4d:80:ae:06:
ca:d4:6b:53:80:65:2a:ef:33:cd:4b:1f:a5:88:cd:
ec:1c:bf:00:32:d8:a3:48:1b:31:c5:ac:cd:85:2d:
b6:2e:39:00:d5:b2:e1:ec:ec:dc:1a:b1:2d:c1:1d:
3b:b7:fd:e8:5d:48:c0:ad:b4:c8:13:c0:58:b3:36:
73:0a:21:7f:11:e7:e1:e7:74:f0:c5:df:04:36:92:
ea:dc:f2:9d:61:7d:14:8d:de:3c:2f:a0:21:4b:b0:
7b:3d:0a:93:55:11:e9:c4:89:2c:cc:04:42:0a:99:
93:86:a8:80:35:43:27:c8:06:89:d3:83:df:b7:f9:
1d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AC:88:AB:8B:6B:93:84:E0:58:B5:F2:A1:EF:89:33:17:14:53:39
X509v3 Authority Key Identifier:
keyid:9F:8A:3C:9A:9E:DF:64:47:35:A9:4E:B0:9F:01:CA:B3:98:55:D2:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:eb:93:91:4b:d3:28:4b:9f:87:c9:91:14:e6:13:c5:0f:56:
64:d6:df:82:10:d6:f3:91:91:7c:98:15:5a:a3:f9:24:43:68:
11:86:1f:19:23:0e:47:5b:07:d8:97:c5:7a:f0:53:92:6f:aa:
d6:6e:86:2b:e9:18:28:2d:65:0e:a8:d8:c8:95:ce:35:9f:c6:
c1:04:23:65:f0:a8:96:15:4a:5b:2c:57:2d:a0:52:91:96:dd:
9f:a8:7b:04:15:21:53:68:26:b9:f7:fd:2f:cd:10:1d:d4:78:
48:96:55:a6:ae:71:28:da:83:e8:02:71:1a:fc:a7:99:72:db:
5d:7d:f7:21:85:cf:95:ff:88:5d:97:93:33:6b:4e:74:fe:42:
28:8f:f1:f8:3e:23:e3:ea:c3:fd:32:46:f5:fc:ce:0e:4b:11:
23:40:c8:5f:a2:66:54:65:b5:6a:7f:34:e2:1e:0c:11:ca:83:
5b:01:ea:a4:d9:2a:6a:42:05:ce:95:56:80:a3:ce:be:52:d5:
0d:91:fa:b0:5a:8d:ad:8d:41:5a:7c:7d:7b:da:8a:b0:6f:ac:
d6:c9:c5:6b:06:8f:24:54:70:ce:a6:35:b6:f5:f4:c9:b3:9d:
d0:27:14:54:08:8b:c5:73:a3:b7:ae:70:27:85:7e:07:8b:b6:
6b:cd:d0:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:48:11 2025 by rpki-client