Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
File: 7FNfTIaAzg26SgPZXmZck8yZzrk.mft (raw, json)
Hash identifier: Cnc/CUFdJn5WmRptQ8kihulO1ljYaSpzWyNzEMbbiEc=
Subject key identifier: 5B:17:9C:AC:15:83:B3:28:8E:8C:3D:57:C9:74:0A:6E:AE:6F:0F:7C
Authority key identifier: EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
Certificate issuer: /CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Certificate serial: 0198D4724A1039DF55A25A086917134DC748
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
Manifest number: 01BC
Signing time: Sat 23 Aug 2025 01:01:56 +0000
Manifest this update: Sat 23 Aug 2025 01:01:56 +0000
Manifest next update: Sun 24 Aug 2025 01:01:56 +0000
Files and hashes: 1: 7FNfTIaAzg26SgPZXmZck8yZzrk.crl (hash: jnC5bbj0bGPQbOTpSYxjhMpGmhvX2H7j1RhBQvQsqBY=)
2: xmQ5skD8YtPqUxW5yzoA6bHhREg.roa (hash: JOTsRiuQWzCXcl+Wr2hE6xVJO7LXDTormwzqqmVX6eE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:4a:10:39:df:55:a2:5a:08:69:17:13:4d:c7:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Validity
Not Before: Aug 23 01:01:56 2025 GMT
Not After : Aug 24 01:01:56 2025 GMT
Subject: CN=5b179cac1583b3288e8c3d57c9740a6eae6f0f7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f2:60:54:c4:fd:8c:04:c4:65:4e:91:af:cc:
94:3b:27:3b:27:67:f7:19:a1:22:bf:0f:0d:b1:b6:
4b:ca:0d:1d:58:d1:1d:16:66:9d:e3:38:44:c4:cb:
e0:ee:3e:c7:56:11:e1:8a:3c:db:cc:5b:53:80:6c:
89:6f:de:c3:85:0e:8f:9d:c9:b2:1e:01:85:45:76:
71:65:68:84:4e:90:52:ca:8c:a9:e0:77:92:2d:14:
36:e1:08:bb:fc:04:cc:dc:74:28:e8:d4:9f:4e:e1:
8b:70:f7:07:b7:68:3a:11:76:28:4e:39:81:21:4e:
20:04:46:72:08:e0:72:87:eb:cf:f3:45:e2:b4:fd:
af:87:40:cf:b9:94:44:20:b1:25:05:20:91:b0:91:
b0:88:f3:59:dc:1d:61:97:45:c2:e0:5f:47:1b:1a:
18:7f:99:22:1f:8b:24:3c:ed:a5:2b:34:7a:61:6f:
be:e8:d7:1f:8a:30:31:ed:ee:0b:1c:d1:91:6c:ae:
f0:be:9d:a9:72:02:19:ed:73:39:8a:f7:b9:36:5c:
00:c8:2b:2e:88:28:9f:63:2c:4f:7f:a3:a7:3f:7c:
9f:38:e0:e9:03:8e:47:ef:7e:59:6d:8f:fb:21:55:
30:27:e1:29:e1:97:08:3b:48:4a:1d:d0:85:7d:5a:
fd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:17:9C:AC:15:83:B3:28:8E:8C:3D:57:C9:74:0A:6E:AE:6F:0F:7C
X509v3 Authority Key Identifier:
keyid:EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:44:ef:56:e4:33:e2:72:e2:5f:bd:c3:13:ce:61:ac:1e:fa:
e2:8b:e2:a2:81:aa:ab:a0:17:7e:76:c8:00:98:8c:ef:94:2d:
82:00:29:3c:c0:e1:52:6f:ae:a9:8b:95:fa:57:8c:0e:af:1f:
3c:83:f2:ec:bc:97:ac:55:98:c2:55:4d:11:bb:36:b1:6a:56:
d1:77:17:c2:4f:96:9d:b7:22:11:b4:ec:9d:83:53:93:8a:ad:
e3:69:84:76:1e:21:f3:77:d2:32:c5:da:0c:d7:4f:1a:9a:6e:
5f:9e:26:10:ed:ba:19:ff:b1:81:d8:fc:fe:3a:67:10:3d:ae:
62:b4:8d:d3:66:6c:95:5f:64:a7:67:b3:bb:a6:66:19:aa:f6:
15:fc:6e:24:f7:b3:87:13:57:b6:ca:3e:6c:4b:d4:4b:7f:cc:
4e:3c:7d:f0:52:68:21:55:d8:88:10:20:af:2f:82:63:02:d5:
c5:ab:98:0f:f7:01:98:1d:ee:c2:c9:de:2b:34:51:ac:8b:05:
83:4b:29:67:f4:50:1c:38:73:f7:55:48:f3:94:85:97:6d:71:
24:bd:18:4d:2d:bc:c8:20:99:be:a1:52:2b:67:76:66:08:fa:
a6:07:90:28:91:41:f6:e6:9b:32:2f:19:08:34:e2:61:e4:af:
9f:50:e4:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:47:03 2025 by rpki-client