Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json)
Hash identifier: dBFKJUmqpy2ubxSUzs97e2WLQCu9gGRemLzikAmPzjg=
Subject key identifier: F8:34:7F:5B:61:45:89:FD:09:E0:41:C9:FB:20:ED:B7:9C:FD:64:F7
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 0198D54E22811E4768A26F31EEFBEB20589F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
Manifest number: 14FD
Signing time: Sat 23 Aug 2025 05:02:04 +0000
Manifest this update: Sat 23 Aug 2025 05:02:04 +0000
Manifest next update: Sun 24 Aug 2025 05:02:04 +0000
Files and hashes: 1: 53yfdczv1so3h7m6p_kJKapwYb0.roa (hash: 8fm3UETmOMmwp3oE4jpSkcDNkIYvAEXotF2eKRsyjLw=)
2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: pUG2dLgLo4JVA62CvFwRw7Cm46cIJZslamHqwsFiEiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:22:81:1e:47:68:a2:6f:31:ee:fb:eb:20:58:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: Aug 23 05:02:04 2025 GMT
Not After : Aug 24 05:02:04 2025 GMT
Subject: CN=f8347f5b614589fd09e041c9fb20edb79cfd64f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:48:5c:9e:1b:32:b8:3f:25:d0:db:50:66:1a:
fe:c0:74:f8:79:2e:2a:2e:a7:d4:2f:25:ca:fd:8a:
1b:42:08:cd:5b:52:44:82:a7:a2:d9:12:06:76:6a:
ca:11:e8:cd:2c:39:8c:02:41:5b:d7:ea:c4:2b:aa:
03:3d:72:ae:aa:c5:14:a7:4e:f6:4f:d2:5b:c5:61:
f9:ff:12:8c:05:94:fd:f2:0b:3d:de:f4:bf:f0:7a:
8b:c1:f7:58:37:db:1a:f5:4b:bf:09:1d:5d:50:45:
fe:87:6a:5a:b1:39:d4:64:fd:84:d5:5f:fe:81:91:
5d:2a:78:8e:de:9a:c8:0a:88:d9:c0:ef:a8:de:96:
4e:04:a8:6e:37:eb:00:34:0b:c6:43:a7:48:aa:d5:
eb:b6:91:db:ce:ee:ad:40:4c:4e:30:15:56:c1:30:
6d:81:c6:eb:da:75:c5:d2:97:55:f6:8e:2b:2d:70:
c9:71:67:74:28:4f:89:02:da:95:51:d8:25:8c:df:
70:20:32:50:02:2d:e7:c6:c6:7e:99:4e:9c:c6:96:
da:99:1a:23:cc:00:2b:db:30:64:86:d6:9e:42:0d:
f1:66:85:62:59:d1:e1:77:80:55:85:5c:7d:e0:85:
fa:b6:bb:5d:29:90:2b:4f:77:25:d5:b1:a2:78:84:
06:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:34:7F:5B:61:45:89:FD:09:E0:41:C9:FB:20:ED:B7:9C:FD:64:F7
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:b3:21:a0:a9:a3:19:16:c5:8d:08:60:69:61:6a:31:07:fb:
ae:19:5e:b2:68:b0:33:98:11:ea:ca:6f:17:da:32:3c:38:28:
9b:ec:1d:fb:8f:ec:0f:02:ef:9a:8b:43:e8:88:1b:c0:0c:c5:
49:00:b6:ca:98:0a:a8:69:cf:04:88:fb:13:6d:94:54:5b:3d:
e5:52:05:17:29:15:a7:57:4d:8e:c2:9b:10:ab:d2:fc:b4:ee:
66:25:d4:1a:92:5a:77:06:8c:a7:87:fc:94:54:f9:32:53:ae:
1f:fa:69:4d:a6:76:0f:7c:90:9f:29:d5:16:84:9b:8c:a7:39:
22:75:7f:6e:35:0d:92:a4:01:84:86:9d:d3:8d:4e:7b:71:f3:
7b:da:7f:31:83:92:57:01:28:14:5e:79:05:8d:7e:cf:ab:ee:
fe:f5:78:0e:59:29:6d:84:1b:13:e1:b6:ab:27:d7:24:d9:74:
5b:c1:c0:01:2f:30:76:3c:3b:2f:40:ac:38:18:c9:ad:e0:fb:
83:63:eb:c9:7b:45:1b:f5:06:d2:fd:dc:02:b1:7f:1d:24:30:
45:ec:73:54:fe:28:bd:a9:c1:46:f6:f2:48:76:2b:04:ed:9d:
71:0b:2a:de:eb:d7:ac:43:fa:f0:5a:c9:19:88:db:4b:92:bd:
d1:68:15:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:56:22 2025 by rpki-client