Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json)
Hash identifier: 2Gn01tNX8TaKoRpXP5Gsxdeap5TVOkfhzRcq4TF4tV4=
Subject key identifier: 13:79:A3:AD:20:29:C1:95:01:C4:C0:27:9F:80:20:99:CF:22:CB:9C
Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Certificate serial: 019922C381ECC9FE5E6F8A7E6D391C708A72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
Manifest number: 06C2
Signing time: Sun 07 Sep 2025 06:01:01 +0000
Manifest this update: Sun 07 Sep 2025 06:01:01 +0000
Manifest next update: Mon 08 Sep 2025 06:01:01 +0000
Files and hashes: 1: H78piGDM9XMhN9ttfDQLjflrGw0.roa (hash: A/U1yMrz8Q8LYte4PciQEyU7L3zVOHn5gKWczBZWelo=)
2: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: yI59lJG/yClNSz/tQABGww+T+BuERyFpp7ZA34Z8YaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:81:ec:c9:fe:5e:6f:8a:7e:6d:39:1c:70:8a:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Validity
Not Before: Sep 7 06:01:01 2025 GMT
Not After : Sep 8 06:01:01 2025 GMT
Subject: CN=1379a3ad2029c19501c4c0279f802099cf22cb9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2a:d0:1a:b3:bd:8c:85:31:f3:ca:71:dd:67:
ef:6d:44:b7:b1:69:6f:6c:69:79:dc:67:d7:84:08:
ae:24:0f:7a:89:71:bf:a8:18:e5:b5:50:cb:5b:98:
8d:31:9c:5c:3d:e4:11:f7:4d:bb:e4:4b:a2:aa:89:
57:a7:68:62:b3:85:b3:98:b4:83:b4:0a:5f:a2:48:
14:ee:5e:99:de:4b:8a:49:dc:bb:16:d4:e0:9e:3c:
a2:c6:2b:77:fa:58:6e:01:a0:1f:19:57:8a:91:f5:
9c:03:f2:a9:b5:96:eb:b3:62:8a:ab:8d:9f:fe:8b:
03:7c:73:6c:cb:af:0f:24:68:24:f8:0f:63:7a:95:
13:82:fb:05:ea:2c:68:31:9c:43:e3:7e:84:ff:68:
01:56:14:ce:5e:1d:7d:f4:b8:d4:1e:3d:ee:86:ce:
64:77:0e:bd:86:f5:e9:bf:71:b0:3a:3c:41:37:a3:
04:30:c0:4c:6b:69:db:c6:93:23:4f:a1:f3:fd:54:
ff:96:89:6e:91:03:8c:0a:f0:56:82:de:2e:e5:0a:
3a:0e:ff:91:76:5a:08:8f:db:9c:db:aa:cd:01:06:
0c:37:1a:26:3a:9e:16:9a:4c:ae:29:5e:c8:25:06:
1d:76:35:85:31:d6:31:de:17:5c:e3:0f:ce:39:11:
2b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:79:A3:AD:20:29:C1:95:01:C4:C0:27:9F:80:20:99:CF:22:CB:9C
X509v3 Authority Key Identifier:
keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:8d:26:32:40:bd:10:e2:08:a5:ce:b1:b3:47:8c:af:35:95:
be:21:8d:87:fe:96:b6:f0:0b:50:71:18:b6:98:c7:88:72:af:
c3:d0:45:dc:86:37:b1:e4:1a:fb:5a:c5:26:ac:4f:34:5f:a7:
71:39:1d:a4:d3:02:b5:ef:0c:8e:c2:87:0c:63:c5:21:65:61:
dd:5a:34:49:2f:ae:db:1d:b1:13:c1:a5:e5:92:e4:a1:31:62:
86:a9:59:5e:d5:c5:de:8f:06:80:f1:21:96:40:cb:d4:30:fb:
6b:c1:c0:58:52:35:d8:f9:9b:db:4d:09:eb:41:79:04:a2:28:
79:c4:74:ff:b2:69:f4:f7:47:01:a2:ec:02:42:1f:5c:e2:50:
38:c8:82:48:eb:52:a5:6c:44:4c:2e:04:db:13:dd:c2:90:91:
b1:7b:f7:ee:36:bb:d8:27:7a:54:d3:ee:4a:2e:6e:5c:24:b2:
e3:a1:d8:fb:5f:98:d4:8f:01:1e:76:86:c4:39:c1:58:03:13:
e9:55:3b:72:d4:0b:41:e7:34:1b:bf:53:27:57:8a:9c:f4:b8:
b5:69:30:05:2d:2c:ab:d3:b1:27:f4:d3:e7:a9:90:2b:12:31:
bb:a3:64:90:b9:75:02:82:3e:b4:0b:85:cc:8a:f4:d9:4f:6a:
95:d9:76:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:11:24 2025 by rpki-client