Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
File: pVB1uOQuRRTvSdP-ovGHJk50-y4.mft (raw, json)
Hash identifier: /dxR8d9i3Q/Lsq25kcWY5M3w23yWThivzhwjUuvVKXU=
Subject key identifier: BB:BC:9B:A1:99:80:67:FE:E1:BF:31:4C:23:65:87:7D:A3:7C:13:A9
Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Certificate serial: 0198D705CED36C1147989040B8139B044799
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
Manifest number: 02E5
Signing time: Sat 23 Aug 2025 13:02:18 +0000
Manifest this update: Sat 23 Aug 2025 13:02:18 +0000
Manifest next update: Sun 24 Aug 2025 13:02:18 +0000
Files and hashes: 1: AHyerdr5uxL6xuyGfsHFNBv_XjU.roa (hash: /uUPID3475V6+DCQHcFaqhePNwogod/B8RgCIUOzHrI=)
2: pVB1uOQuRRTvSdP-ovGHJk50-y4.crl (hash: RxqpvuprLq9utzZvNmDosMmJ1UPf7WPjvycsEWKLiF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:ce:d3:6c:11:47:98:90:40:b8:13:9b:04:47:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Validity
Not Before: Aug 23 13:02:18 2025 GMT
Not After : Aug 24 13:02:18 2025 GMT
Subject: CN=bbbc9ba1998067fee1bf314c2365877da37c13a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6a:88:a2:25:fa:43:65:e1:53:ef:89:83:fb:
1c:d9:37:93:71:db:bf:7e:09:47:8a:bf:1f:e7:14:
64:0b:49:22:5e:a5:b4:65:4d:32:06:eb:d3:b0:d4:
6f:ba:78:2c:b9:bf:a5:02:91:51:c6:45:6c:f7:e7:
eb:93:ea:61:87:78:09:73:2c:4e:e1:85:fa:fd:f5:
48:0c:d9:38:2a:41:f6:3e:70:a5:10:a1:a2:c7:b0:
e6:b4:b5:2a:e9:d2:b9:74:b8:cb:f0:42:43:d8:d6:
f8:74:77:9b:89:a5:a9:80:d0:87:3a:5b:59:4e:a3:
56:26:35:25:4e:0e:66:27:32:eb:7c:7e:c3:57:ca:
2d:7e:0a:c0:ee:a6:0d:6d:94:8b:86:28:d9:34:c9:
fb:07:a0:4f:1b:b6:62:cd:13:2b:e6:1e:59:ee:44:
3c:c1:36:30:1a:ce:1d:4d:60:6c:ed:ea:c6:0e:8e:
5c:e9:ab:be:d0:23:00:8b:b2:94:60:c1:9c:8a:b8:
06:5a:fa:57:60:73:f7:65:f3:cb:36:c7:ef:82:ed:
8d:04:91:7c:dc:1c:f8:f0:a6:1b:a3:99:1a:6b:4d:
35:49:c0:de:ec:2d:85:9d:b5:32:06:43:e4:99:f0:
2a:7b:c4:94:d2:a2:00:cf:a2:c9:49:6d:5e:91:64:
9d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:BC:9B:A1:99:80:67:FE:E1:BF:31:4C:23:65:87:7D:A3:7C:13:A9
X509v3 Authority Key Identifier:
keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:99:de:5c:de:d8:97:e4:05:2a:81:54:4d:cd:84:03:8c:5d:
63:7a:51:87:a6:a6:cf:6b:8d:23:76:b2:bf:80:b0:4b:bc:d1:
86:4d:2d:19:3c:06:18:cc:c1:ae:7a:d1:da:38:5e:bc:77:1b:
46:0a:b6:b7:76:5d:65:1a:a5:25:2d:86:be:7a:31:b5:02:b8:
99:e8:7d:ec:fb:54:62:e2:7a:20:ee:16:46:1f:9a:8f:35:e2:
98:3f:3d:a7:24:de:fa:fd:d9:89:aa:c4:15:f6:6a:50:79:a0:
56:40:d3:d2:01:e5:1d:66:4b:a2:af:c8:08:44:03:dd:42:5d:
66:bf:c1:2c:88:9f:19:0a:cb:42:39:42:e6:e6:16:27:32:e9:
c4:93:cc:de:c7:2f:d9:51:6e:a3:14:4a:19:96:13:09:bb:e8:
e9:e6:59:95:c4:80:19:a6:b5:b0:96:1f:a7:cf:df:70:e7:be:
d5:5a:8f:28:d8:8f:39:91:1a:b7:c4:83:28:7f:53:cb:53:01:
d5:30:93:4e:c8:80:54:95:16:af:6b:41:1d:64:63:c8:fd:99:
09:c3:ab:69:ec:9f:5d:79:41:c6:9d:8f:32:0a:32:90:c5:cd:
ff:96:68:14:3b:9f:0d:c3:82:8b:19:27:60:de:80:9c:f7:90:
a4:f2:db:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:54:37 2025 by rpki-client