Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
File: sFcIRcI56ZkcibxcUEMekIeGDE0.mft (raw, json)
Hash identifier: ICK+Go6qvKvEu03zckEZlP1uiwdWc0Zr054c3TEL56Q=
Subject key identifier: BF:DF:2D:5F:8A:B3:A5:17:54:05:F6:B6:06:8A:C2:E0:AD:60:95:33
Authority key identifier: B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
Certificate issuer: /CN=b0570845c239e9991c89bc5c50431e9087860c4d
Certificate serial: 0198D62993600A7795C61376A8E299D55B32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
Manifest number: C4
Signing time: Sat 23 Aug 2025 09:01:45 +0000
Manifest this update: Sat 23 Aug 2025 09:01:45 +0000
Manifest next update: Sun 24 Aug 2025 09:01:45 +0000
Files and hashes: 1: n2C0sjvTrbF7unBNdsXDONkHwzQ.roa (hash: jLl0pdc61DzddqyTuR7Io8Gkj/xajAEL7bTJB3EuzC8=)
2: sFcIRcI56ZkcibxcUEMekIeGDE0.crl (hash: 81FWKmO5kLty2ppo9tW26YCa6GMgZgIvvJ7c+mEK/Gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:93:60:0a:77:95:c6:13:76:a8:e2:99:d5:5b:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0570845c239e9991c89bc5c50431e9087860c4d
Validity
Not Before: Aug 23 09:01:45 2025 GMT
Not After : Aug 24 09:01:45 2025 GMT
Subject: CN=bfdf2d5f8ab3a5175405f6b6068ac2e0ad609533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:39:cc:f2:d5:48:02:f2:e5:ba:50:25:8d:fd:
6a:43:9e:35:27:9a:bf:0a:df:e8:bf:5d:0a:cf:bd:
e5:98:8e:e7:1c:f6:31:6b:93:3b:32:b5:57:14:be:
3a:af:16:ba:d3:61:5b:da:be:6d:56:4e:b7:bf:3c:
6b:81:7d:d9:20:6d:da:9c:50:10:24:89:54:3c:89:
64:0c:13:84:9f:5a:a6:67:57:20:58:2f:f4:a5:d8:
77:6e:83:de:5b:8c:b0:05:97:3c:5b:cf:3c:97:c7:
3e:17:97:f2:e8:89:36:01:35:4d:ed:cd:f6:58:97:
b4:ae:6a:c9:35:c6:5e:e4:8e:54:7a:81:04:cf:49:
ea:5b:42:36:c3:2a:7c:86:33:ae:0d:34:ea:48:97:
e7:6b:89:9c:d4:62:91:a1:9e:d1:6e:d2:68:52:bc:
eb:34:29:e2:56:98:8f:12:73:f2:5e:1d:77:66:a9:
5b:ce:c4:cd:79:b8:92:c9:70:ec:ca:0d:71:20:e0:
5c:7a:eb:7a:2d:9b:a3:02:0e:32:b5:8e:80:e2:ee:
11:0d:84:6f:26:94:31:f6:37:53:d0:b2:d5:6d:45:
13:0a:97:15:29:05:33:da:78:3b:3e:ed:d5:2b:6d:
4c:31:62:a4:6c:cc:d5:f6:94:33:f4:e3:14:25:66:
26:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:DF:2D:5F:8A:B3:A5:17:54:05:F6:B6:06:8A:C2:E0:AD:60:95:33
X509v3 Authority Key Identifier:
keyid:B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:6a:cf:e9:c0:8a:8d:c0:4b:df:ce:ad:54:1e:75:75:4b:6b:
55:a8:c5:35:32:d9:e3:22:ac:ec:03:94:3f:77:e4:f7:7d:1a:
b1:a3:61:54:ae:fb:b2:2c:0d:8d:e3:38:3f:b6:a7:76:8b:d2:
7e:14:0a:30:8f:ad:47:34:2e:b1:8a:74:c0:4a:3c:c2:65:a0:
d4:23:26:f1:90:f1:76:7a:73:dc:c4:8f:f8:58:18:7e:7e:8b:
04:8d:87:46:67:1d:c1:d1:88:35:3a:00:6c:bc:88:6b:7f:d2:
c7:eb:fb:1b:f3:d5:c6:66:b1:1e:df:5d:82:81:6d:cb:96:a5:
4f:ec:54:8f:e6:4b:a3:dc:78:f4:47:ff:29:01:c0:74:a9:ac:
ba:ef:30:02:11:6d:c9:63:96:c8:08:b7:12:46:c3:f9:45:a3:
b1:03:c2:0b:5a:4b:c8:dc:65:33:c0:95:b9:e0:20:7b:c6:75:
c7:25:e9:29:f2:63:90:06:34:6a:35:3d:cd:c2:58:e5:dd:33:
52:1d:10:54:bb:7a:f1:c2:2c:d6:f0:99:6b:4d:3c:d5:d2:66:
fa:71:e3:bc:36:f1:12:31:fc:2d:55:3b:3c:b4:c7:04:91:74:
2f:ed:41:3e:96:b0:a9:29:7d:13:82:fd:7c:8c:a6:46:a8:cc:
7e:7e:9b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:29 2025 by rpki-client