Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
File: sH-v24bTjze_DCbT8nMf3vaxTko.mft (raw, json)
Hash identifier: U5MWo1VhW41Z1bIfhFKBGgIpozhiIqT42mYnoDmvI+E=
Subject key identifier: 63:B8:7D:38:76:8C:FD:09:3F:13:86:26:56:96:97:2F:9C:16:BD:25
Authority key identifier: B0:7F:AF:DB:86:D3:8F:37:BF:0C:26:D3:F2:73:1F:DE:F6:B1:4E:4A
Certificate issuer: /CN=b07fafdb86d38f37bf0c26d3f2731fdef6b14e4a
Certificate serial: 0198D66028A6D4D8D0BF9559BD15DF177236
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
Manifest number: 07A7
Signing time: Sat 23 Aug 2025 10:01:22 +0000
Manifest this update: Sat 23 Aug 2025 10:01:22 +0000
Manifest next update: Sun 24 Aug 2025 10:01:22 +0000
Files and hashes: 1: N75Q0uiaGqKgGJ2k7yeqIONc8k0.roa (hash: Q63lKGUZoNUeD8FAv4eG2ZAxCKPCbVbyxrGYOjEepus=)
2: sH-v24bTjze_DCbT8nMf3vaxTko.crl (hash: PSnI6WrDpq3jMZA/Ye/3tX300eTce+xQUsL7BnlCwjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:28:a6:d4:d8:d0:bf:95:59:bd:15:df:17:72:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b07fafdb86d38f37bf0c26d3f2731fdef6b14e4a
Validity
Not Before: Aug 23 10:01:22 2025 GMT
Not After : Aug 24 10:01:22 2025 GMT
Subject: CN=63b87d38768cfd093f1386265696972f9c16bd25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1e:2b:44:44:8e:23:13:13:57:84:ac:36:20:
b2:52:69:03:a8:ee:35:34:e7:2a:50:ef:5a:0c:cd:
7c:cc:a9:7f:bc:be:1f:70:80:c5:2c:cd:f6:97:89:
4b:b0:38:8f:bf:49:57:ed:1c:d2:17:22:f0:61:31:
5d:2e:e3:b3:83:1c:9e:06:2b:b7:5e:62:9f:11:f2:
ff:54:ba:31:57:4c:a3:e4:53:76:57:59:38:76:98:
33:06:81:6b:6a:24:81:48:cc:a5:d7:3b:15:f8:ff:
96:5c:c5:a1:2e:24:25:33:b2:84:05:91:8e:ca:10:
fb:ac:7c:ae:44:f3:f8:26:7c:70:e0:61:a6:3e:88:
7c:b9:60:1c:08:63:ea:7f:a1:1a:cf:5f:b2:61:ea:
90:5a:83:b9:7b:15:09:f0:64:ea:4d:4f:91:ca:12:
73:31:f0:79:ac:a7:3f:d4:a1:dc:82:93:75:26:80:
fa:bb:02:0e:6d:d6:8a:e5:aa:58:99:af:fb:d0:96:
a9:c9:ed:6a:d1:13:fe:93:0b:3b:73:37:d7:92:2d:
6f:b9:b8:d6:ff:77:9e:12:f5:4d:19:8e:75:ef:a4:
32:58:4b:c5:96:79:e5:ff:db:08:4a:4c:94:79:6e:
bb:3d:17:00:7e:d6:0f:03:33:d2:8f:fc:82:2e:99:
b8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B8:7D:38:76:8C:FD:09:3F:13:86:26:56:96:97:2F:9C:16:BD:25
X509v3 Authority Key Identifier:
keyid:B0:7F:AF:DB:86:D3:8F:37:BF:0C:26:D3:F2:73:1F:DE:F6:B1:4E:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sH-v24bTjze_DCbT8nMf3vaxTko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d6d263-29f9-4613-bb7d-4938b8d0c3de/1/sH-v24bTjze_DCbT8nMf3vaxTko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:cf:aa:ba:0f:60:2d:8c:c5:b6:47:2b:9d:2d:25:78:e7:d7:
13:2b:60:90:67:d8:7d:a5:ea:d4:59:74:ec:05:92:b9:90:4c:
d8:f8:8b:5c:4f:22:a9:f8:2c:ca:69:90:28:f4:f7:eb:a7:00:
55:69:f3:49:1a:65:ea:19:bd:1b:17:a9:8e:63:14:72:e4:6b:
ff:cf:e3:2f:e8:73:05:05:89:d7:37:38:2a:f4:e9:9e:92:0e:
79:8a:64:16:ac:54:10:6a:69:62:2d:41:65:dd:13:2d:76:0c:
63:52:38:20:cb:ce:b8:1b:de:45:c8:bd:f8:57:e7:65:34:ed:
b4:2b:d8:ec:b8:1a:c5:e2:ac:6c:e8:11:7b:9f:af:19:50:ae:
6d:2f:21:70:89:d4:0a:af:19:92:13:89:98:f4:fb:0f:2d:9b:
1a:0f:fa:78:4f:3a:da:47:55:57:c1:28:d9:56:88:74:63:f3:
04:ec:58:66:cc:ae:af:4d:b0:40:f4:4b:46:e2:32:82:b8:ad:
0b:c5:02:06:10:0c:45:f0:6b:5f:af:2e:52:d4:ae:10:c1:3f:
87:09:c5:1c:eb:43:13:a8:8d:f6:52:ee:f0:b8:2b:d1:ee:45:
f1:ed:66:68:e0:cc:ab:5a:8e:b9:03:70:44:58:26:ed:e0:35:
8f:6e:57:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:57:13 2025 by rpki-client