Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
File: MFxE6MlhoUUNCqshLw3scX0d77Y.mft (raw, json)
Hash identifier: cDldM99/6HJWnU2yi+Dw4xZgkTzP7b1xoBNuaPrG/Ms=
Subject key identifier: A0:C3:B1:2D:89:C0:A6:2A:8F:6D:B8:42:4E:C3:13:E0:32:6A:A1:4D
Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Certificate serial: 019921B202F378B5A2B001258C7B929F7653
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 01:02:18 +0000
Manifest this update: Sun 07 Sep 2025 01:02:18 +0000
Manifest next update: Mon 08 Sep 2025 01:02:18 +0000
Files and hashes: 1: MFxE6MlhoUUNCqshLw3scX0d77Y.crl (hash: JTyzjdpPyMb7KoFIysgMUIDCqMIUcpg9cpShBXntPMg=)
2: mJgdj-dzJHYIwfc18P0iKUu6K8Q.roa (hash: BwFiGax6tDOHoiiFhGtxEO6XUIlUJlP+Zm+e5NhOWpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:02:f3:78:b5:a2:b0:01:25:8c:7b:92:9f:76:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Validity
Not Before: Sep 7 01:02:18 2025 GMT
Not After : Sep 8 01:02:18 2025 GMT
Subject: CN=a0c3b12d89c0a62a8f6db8424ec313e0326aa14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1e:75:58:6b:5f:3a:7e:b3:b5:55:e0:ee:60:
ff:4a:83:40:07:0a:f5:e5:07:fe:01:60:eb:75:e6:
25:21:d1:6c:84:2b:ee:0b:44:3a:7f:be:2e:06:34:
e5:1c:08:ba:96:9a:27:cb:3c:af:89:b7:d3:65:1c:
aa:c3:b7:a8:f3:52:59:b0:34:ab:5f:16:3c:f3:fb:
f5:b7:e9:2b:bf:0b:9e:eb:86:8d:c3:86:02:b8:5d:
5b:c5:09:3f:16:aa:db:63:db:38:6d:28:6a:4e:93:
a2:13:1d:2e:61:07:d9:43:47:f3:be:1f:6d:62:75:
52:3c:b9:39:ba:d5:d6:07:36:c6:80:05:73:2a:1c:
fb:1f:4b:01:66:97:2c:91:e5:e7:a0:77:cc:4b:cb:
b7:20:a9:0d:6e:e6:a1:8c:67:dd:82:05:a1:07:f3:
a1:0b:fd:e2:df:d8:54:06:03:a6:00:b7:2f:b1:3e:
79:17:17:c1:2e:09:ca:97:de:ee:0d:55:43:72:df:
39:b4:e8:c4:e0:e2:c8:1c:d8:b3:2f:9b:da:ca:49:
7f:be:b6:f9:21:be:a2:8c:80:0c:65:bf:c9:ab:5b:
a4:73:c7:7f:50:05:b1:79:d5:42:9c:2a:33:43:94:
15:48:90:94:18:c3:86:f4:51:1c:9e:b8:21:f6:25:
bf:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C3:B1:2D:89:C0:A6:2A:8F:6D:B8:42:4E:C3:13:E0:32:6A:A1:4D
X509v3 Authority Key Identifier:
keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:4e:49:42:0b:92:4e:49:6b:e5:0a:54:af:5c:c6:94:08:5e:
ae:3f:8a:3a:bc:bc:ba:a3:25:0e:3b:7a:72:72:96:ca:c0:65:
92:01:c5:2b:9c:fe:83:47:5a:8e:68:06:bd:ca:66:8f:3d:db:
b3:0d:a0:d3:d2:2d:9e:8e:2b:20:f3:e9:78:6c:4e:c4:08:7c:
92:cb:d5:a7:fa:85:b7:32:a0:89:ae:c1:42:fb:94:1a:bd:06:
a4:8f:66:2b:34:f8:72:26:37:b2:e7:2f:ec:c7:7c:b2:98:b6:
4c:78:1a:e1:53:b5:83:b2:fd:1c:14:01:f2:e9:7b:04:6a:34:
26:06:03:d0:36:4e:18:7c:5b:f3:0e:78:ba:24:d9:7a:a1:a1:
31:91:ed:82:bb:da:c0:85:4d:fc:5a:e6:99:72:5a:b8:c9:b8:
d6:b9:af:c3:01:83:cd:35:17:c2:9d:89:05:5f:80:32:4f:2c:
a4:91:ff:69:06:dc:e0:3b:5d:46:00:f5:12:1f:60:05:f1:68:
15:b6:c3:81:39:f7:8b:21:28:80:7c:23:99:62:5f:ef:cf:05:
ad:ce:3c:95:fc:16:6c:67:07:4d:49:07:09:2f:58:3d:ed:d8:
2e:a9:5d:df:cd:b4:83:93:3f:6b:2e:bf:cf:5b:7c:ff:80:81:
d3:76:25:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:52:17 2025 by rpki-client