Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.mft
File: Mj4i0VNpL6h29FppimQHCr0puzk.mft (raw, json)
Hash identifier: 0kNMS9o3e/mwybYy5nQyC3hdW6owBYURUtOPmBCk4uI=
Subject key identifier: 0B:48:1E:4E:16:55:BC:61:32:79:15:07:C8:17:A9:56:12:B8:55:9E
Authority key identifier: 32:3E:22:D1:53:69:2F:A8:76:F4:5A:69:8A:64:07:0A:BD:29:BB:39
Certificate issuer: /CN=323e22d153692fa876f45a698a64070abd29bb39
Certificate serial: 0198D4E0127E35CAB28E64B946F7A85A625F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mj4i0VNpL6h29FppimQHCr0puzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.mft
Manifest number: 0104
Signing time: Sat 23 Aug 2025 03:01:51 +0000
Manifest this update: Sat 23 Aug 2025 03:01:51 +0000
Manifest next update: Sun 24 Aug 2025 03:01:51 +0000
Files and hashes: 1: Mj4i0VNpL6h29FppimQHCr0puzk.crl (hash: 2wN/YSVubh6wm4g/GtOfgvK4I6vN64LrO/oGmTxdHEo=)
2: UPOmKS-wCVFYZbdnuQ3DjxycBYs.roa (hash: wDCKtOot6cNGvhctv9YJsxtzSFcNno8Vt28nw8UusF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mj4i0VNpL6h29FppimQHCr0puzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:12:7e:35:ca:b2:8e:64:b9:46:f7:a8:5a:62:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=323e22d153692fa876f45a698a64070abd29bb39
Validity
Not Before: Aug 23 03:01:51 2025 GMT
Not After : Aug 24 03:01:51 2025 GMT
Subject: CN=0b481e4e1655bc6132791507c817a95612b8559e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c4:16:fc:97:e2:81:fe:3e:b2:6e:af:19:ec:
9b:bd:27:4c:81:ff:25:0d:17:84:e8:bb:bf:ca:d3:
e7:72:d0:cf:17:ea:dc:a7:88:6f:15:7c:cf:38:2e:
f3:c1:1d:29:2d:4a:14:e4:31:a6:79:47:ef:73:a6:
2d:8e:06:b9:fc:5e:b9:66:83:ef:fb:15:34:02:8a:
3f:fc:89:7d:91:28:f6:5a:ae:74:6b:99:32:f0:7f:
bf:3b:78:27:ed:03:aa:04:59:bf:7e:16:20:de:d7:
35:04:1c:5c:05:fe:8f:53:3a:18:36:3c:53:f9:b0:
cb:dd:5b:65:15:9a:9d:5b:7e:3c:dd:78:e5:1e:00:
36:ff:24:3b:9d:ac:b0:c2:c9:7b:07:7f:68:a0:61:
8c:cf:2c:18:1f:83:16:c8:e2:cc:75:67:b7:f4:01:
b6:d4:96:b4:10:25:37:23:0b:48:72:36:ef:b8:49:
8c:c2:f4:cd:4a:10:29:09:ce:31:53:32:ab:90:9f:
cc:65:f4:05:ac:33:9f:8a:62:2b:40:90:cf:9d:79:
8a:58:9a:5c:35:db:2e:76:ea:ef:57:76:c5:68:d9:
d9:35:4d:12:6f:5c:7f:57:42:96:9c:2b:89:9a:33:
6b:18:37:b7:dc:fd:29:5d:ae:11:c8:a6:e2:67:8a:
4c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:48:1E:4E:16:55:BC:61:32:79:15:07:C8:17:A9:56:12:B8:55:9E
X509v3 Authority Key Identifier:
keyid:32:3E:22:D1:53:69:2F:A8:76:F4:5A:69:8A:64:07:0A:BD:29:BB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mj4i0VNpL6h29FppimQHCr0puzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6ecfca-feb2-4af0-aefe-799509d19ac3/1/Mj4i0VNpL6h29FppimQHCr0puzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:71:87:42:62:ba:28:89:91:2b:66:ee:34:65:f4:4f:12:a3:
6b:c7:50:7e:e8:11:66:08:b7:af:20:9a:7a:e4:a2:1e:2e:5e:
0b:23:3d:ea:e8:b7:25:8c:33:25:71:6b:8f:7d:e0:1d:4b:d3:
b2:e3:9f:35:7a:31:f1:f8:a3:b6:63:24:2d:d5:36:3b:ca:49:
e3:93:e9:e4:c1:51:11:60:00:d8:af:2e:1a:80:66:bc:ba:bb:
47:e6:30:9b:e7:4a:85:52:b2:01:02:33:ed:81:ab:cf:b9:b7:
d3:0c:8c:3a:1c:9d:75:91:00:a0:52:cf:b5:16:37:85:38:d1:
24:08:89:b2:82:44:87:da:6f:b5:67:18:1d:91:7b:5f:00:78:
f2:05:d2:eb:a0:8a:00:06:02:09:f0:07:29:89:59:40:50:5c:
e5:f2:91:46:e4:a4:6d:0e:d2:e5:19:8d:69:a1:fa:3d:8b:e7:
db:00:eb:32:12:09:b1:e8:01:70:b3:6c:c9:ac:c6:9c:7f:9e:
ef:07:1c:7f:f0:61:a1:d2:15:13:8f:18:04:7b:d9:62:2d:9a:
36:0b:88:15:1b:b1:36:9e:5b:35:61:2c:50:4b:89:b2:07:cd:
07:7e:65:58:20:e3:9b:2c:b1:20:b4:f8:9a:3b:c1:45:b0:82:
b4:1e:0a:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:35:43 2025 by rpki-client