Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
File: 28sc89PzzcNCb7SfCgwz3ATIaBw.mft (raw, json)
Hash identifier: sDtqn9lnzxutGB/5k8ys7NMIZ2MJXaMQQyuIG93YCsM=
Subject key identifier: 69:26:A7:D4:25:61:DD:CD:3A:79:4D:89:DB:AF:46:FD:40:66:8E:CB
Authority key identifier: DB:CB:1C:F3:D3:F3:CD:C3:42:6F:B4:9F:0A:0C:33:DC:04:C8:68:1C
Certificate issuer: /CN=dbcb1cf3d3f3cdc3426fb49f0a0c33dc04c8681c
Certificate serial: 0198D70601A9CB96F4EBE7E1661C0277927B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
Manifest number: 0FE0
Signing time: Sat 23 Aug 2025 13:02:31 +0000
Manifest this update: Sat 23 Aug 2025 13:02:31 +0000
Manifest next update: Sun 24 Aug 2025 13:02:31 +0000
Files and hashes: 1: 28sc89PzzcNCb7SfCgwz3ATIaBw.crl (hash: SprBYCoCJZ7ONol71H8ry/s3wv+LDoICU/tObJTBwdw=)
2: I5ms-9-HDQyJVXC11lx_-uEpynE.roa (hash: +pNOsJjPZEu3zURh4NPSrLLV4Ki6TCXOgrQW5jhS4rs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:06:01:a9:cb:96:f4:eb:e7:e1:66:1c:02:77:92:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcb1cf3d3f3cdc3426fb49f0a0c33dc04c8681c
Validity
Not Before: Aug 23 13:02:31 2025 GMT
Not After : Aug 24 13:02:31 2025 GMT
Subject: CN=6926a7d42561ddcd3a794d89dbaf46fd40668ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:35:32:32:c2:a4:8c:84:78:8d:73:c0:0f:
1a:a3:00:b3:1c:86:51:28:13:0a:38:d9:3d:ba:66:
aa:63:f1:9e:23:74:52:44:b3:17:b2:53:33:05:38:
82:8f:30:72:53:8f:5a:eb:0d:71:49:68:b4:57:dc:
98:d4:81:ed:43:ca:50:66:61:ab:81:82:cf:d6:dc:
25:1b:04:7e:5c:d8:3b:10:18:5e:8c:8e:50:ab:96:
f5:9c:2b:61:a3:08:6b:76:a5:5a:70:d0:9d:76:28:
c8:f2:f3:eb:60:4e:5b:6b:93:b2:f4:27:30:ab:c7:
6b:78:f5:3a:a2:54:48:0a:56:8c:e6:6f:93:0e:ae:
d6:06:e8:04:e4:62:d6:9c:79:91:6b:7f:3c:23:cd:
cb:ce:8f:c4:a8:f6:6f:12:d1:94:35:61:94:5b:d7:
41:38:e8:95:7c:bc:36:43:5e:dc:0b:fb:ba:b7:62:
42:7d:58:9e:22:69:4b:d5:74:72:91:56:94:b8:70:
5b:62:43:76:f6:29:54:93:ef:07:d8:8b:98:f4:44:
35:39:3a:56:73:db:23:28:ba:cd:24:70:54:a9:88:
d1:3d:e1:45:12:a1:92:9c:d9:6b:21:84:f6:42:ad:
33:62:37:2b:83:8b:31:15:06:ba:44:ad:4a:9f:c7:
ef:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:26:A7:D4:25:61:DD:CD:3A:79:4D:89:DB:AF:46:FD:40:66:8E:CB
X509v3 Authority Key Identifier:
keyid:DB:CB:1C:F3:D3:F3:CD:C3:42:6F:B4:9F:0A:0C:33:DC:04:C8:68:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:aa:24:d8:62:ac:ef:fd:64:0c:5c:2e:1b:bb:4c:be:48:93:
2e:b7:3c:69:99:5d:32:e3:d9:94:22:99:6a:2a:fa:e7:b1:bf:
2f:51:ca:93:a6:98:27:cb:2b:1e:b9:4c:9b:ac:76:ad:7a:a8:
6c:10:64:cd:95:8f:ea:ed:20:f9:42:ac:9b:57:14:26:b4:11:
8c:b1:65:94:ef:93:18:9b:22:6c:50:19:c7:79:10:b1:1a:86:
f2:85:e4:ba:e6:92:ed:81:6e:d9:f5:46:52:a9:11:47:0a:14:
7e:ed:f9:5c:82:f0:bb:e7:d1:94:f0:b5:cb:67:98:7a:b0:52:
b1:e3:cb:5a:c3:17:1f:8e:e7:a9:7b:12:a0:cc:5d:f9:ad:1a:
af:68:9e:75:49:4a:41:b5:06:ed:24:a8:4e:dc:9e:ef:ce:6a:
0e:c7:e7:d9:be:a9:c2:28:5e:18:a2:8a:8f:ae:6e:f1:49:3a:
53:6e:1b:e3:b3:5f:8a:cc:0c:fe:5e:68:10:21:3b:80:1f:15:
1f:b6:b0:0f:23:44:db:77:5f:d9:5d:11:fc:42:33:fc:e6:73:
4a:05:0c:48:70:cf:e9:55:7d:98:c2:b0:a9:6b:52:3f:a6:c1:
da:61:31:30:65:d1:a9:53:c8:1b:e7:76:19:57:0f:41:5d:4c:
c8:e3:77:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:29:22 2025 by rpki-client