Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
File: 0kSCMx_jdh3lOpm9N8j9am-foAc.mft (raw, json)
Hash identifier: J9XNaXKPLkaKOe9YUxdELwTYNVWoNsrzlhqu4tu1YCA=
Subject key identifier: 1E:2F:C9:50:BD:BE:89:0D:2E:BD:0C:B7:9A:AE:7E:4E:40:BD:6D:09
Authority key identifier: D2:44:82:33:1F:E3:76:1D:E5:3A:99:BD:37:C8:FD:6A:6F:9F:A0:07
Certificate issuer: /CN=d24482331fe3761de53a99bd37c8fd6a6f9fa007
Certificate serial: 0198D51631547B62FC67D48B9202B1D14273
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
Manifest number: 7C
Signing time: Sat 23 Aug 2025 04:00:57 +0000
Manifest this update: Sat 23 Aug 2025 04:00:57 +0000
Manifest next update: Sun 24 Aug 2025 04:00:57 +0000
Files and hashes: 1: 0kSCMx_jdh3lOpm9N8j9am-foAc.crl (hash: 3Jzxlvpkp9eHAgd5Hb63IsLWCUIUp9d5uFaB/TIfniQ=)
2: M95FjIFFe7FE8GSWYSZYw7JDajo.roa (hash: NrgUx/KwCI45z+00qu3mq53IxB/PSBwR22i9a5VwK5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:31:54:7b:62:fc:67:d4:8b:92:02:b1:d1:42:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24482331fe3761de53a99bd37c8fd6a6f9fa007
Validity
Not Before: Aug 23 04:00:57 2025 GMT
Not After : Aug 24 04:00:57 2025 GMT
Subject: CN=1e2fc950bdbe890d2ebd0cb79aae7e4e40bd6d09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:7f:92:9c:6c:b3:a5:2c:4a:ee:b2:28:6f:0c:
f2:45:e9:37:cc:64:63:dc:3f:da:ec:07:50:2b:85:
fb:56:58:5f:0e:9d:44:c7:6d:72:fd:bf:c1:29:d7:
94:0a:76:3d:ca:ea:3a:47:a3:1b:a6:6e:83:79:9b:
a2:16:e5:56:be:9a:77:a9:d4:eb:a9:63:f9:f5:05:
7b:d0:51:ce:3f:11:a4:7e:64:26:e1:a1:77:88:c3:
ba:b2:a6:37:90:d9:56:95:d0:f9:a9:4b:71:2d:6e:
40:d4:43:5d:bf:40:55:ea:a3:b5:44:b6:49:15:62:
8f:22:58:c4:65:69:75:ea:0e:7c:1f:5c:dc:c9:b6:
7c:21:92:a3:52:5e:71:55:75:7f:c0:14:8d:04:31:
83:24:c4:70:20:d7:87:6c:d1:5b:13:76:3a:ad:86:
d7:2f:c3:fd:b5:96:e2:ad:6c:e3:00:7e:3c:4b:e3:
da:b6:e9:88:12:b9:c7:2c:79:22:39:27:37:ac:92:
46:21:89:65:c0:f2:4c:f3:04:24:6e:3e:d2:b2:b8:
79:1e:ce:2b:a5:3a:6d:32:84:59:27:5c:33:36:39:
e3:00:ec:2a:0a:5a:c0:07:3a:6b:8e:0c:a1:65:20:
75:93:c0:90:fa:bc:b7:40:15:28:10:24:d9:b4:a3:
69:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:2F:C9:50:BD:BE:89:0D:2E:BD:0C:B7:9A:AE:7E:4E:40:BD:6D:09
X509v3 Authority Key Identifier:
keyid:D2:44:82:33:1F:E3:76:1D:E5:3A:99:BD:37:C8:FD:6A:6F:9F:A0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kSCMx_jdh3lOpm9N8j9am-foAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/25b61b-37e9-4408-acc1-87c03cdd7f9f/1/0kSCMx_jdh3lOpm9N8j9am-foAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:4f:8f:08:a3:95:ab:a7:66:fa:7f:45:fc:8a:fd:b0:28:44:
0b:e7:fc:97:be:70:81:29:2d:95:fd:35:10:fa:e3:9d:5f:b2:
f2:35:5b:b5:74:64:60:ef:a1:f9:a2:ff:74:ad:00:d4:57:21:
18:eb:2b:96:ce:5d:d6:1e:f5:eb:29:ea:57:cf:4a:cd:03:42:
9b:e1:65:e3:8f:5d:f3:2b:4a:0c:56:0b:b8:cb:e8:aa:f8:04:
46:7d:69:99:23:0c:08:52:62:56:26:cb:3f:dc:87:0d:b0:62:
64:bd:89:71:fa:96:66:dc:04:37:66:c4:f0:58:08:d0:68:2c:
4e:0f:3f:53:db:18:b0:fd:6b:0a:7b:38:df:e7:7d:c9:aa:b8:
3e:e8:63:69:f6:b0:79:9d:fa:d4:22:38:35:fe:50:9e:4a:cd:
cb:8a:37:15:01:62:fe:c9:0d:65:ce:a9:62:23:77:7c:da:4a:
4a:aa:47:05:6b:c9:4e:f6:71:dc:05:a9:c1:6d:54:2d:bc:0c:
62:29:71:fc:26:2d:54:60:a7:7f:2a:7d:66:bf:63:98:dd:af:
31:74:74:46:4e:fc:01:af:c4:e9:c6:89:ad:b6:5a:f9:33:69:
be:fe:6e:d1:d7:8c:55:71:4a:c8:43:e8:ba:45:57:c8:0d:dd:
d0:5a:9f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:22:23 2025 by rpki-client