Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
File: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft (raw, json)
Hash identifier: 1glUWltHA5DwDpZkiOmkV2B06fiBMInYpAMqbvRtQgc=
Subject key identifier: 36:F1:3E:E7:A4:0D:FE:C6:21:4E:FA:76:C5:B4:95:83:4B:8A:72:3F
Authority key identifier: AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA
Certificate issuer: /CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa
Certificate serial: 0199228CD2C7E54428DE0F76C1D10F93DE57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
Manifest number: 0B8F
Signing time: Sun 07 Sep 2025 05:01:18 +0000
Manifest this update: Sun 07 Sep 2025 05:01:18 +0000
Manifest next update: Mon 08 Sep 2025 05:01:18 +0000
Files and hashes: 1: nd2mEoM182MlqnyU97QFBEBtYLc.roa (hash: H4CTJi+dex4a2tP/U9S7boExXOmFzvTZ0iE52ANC1z0=)
2: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl (hash: FIaQ5HwHAiOMZZosX4IxY4VbFS3HwiVSXJ3583cC4cc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:d2:c7:e5:44:28:de:0f:76:c1:d1:0f:93:de:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa
Validity
Not Before: Sep 7 05:01:18 2025 GMT
Not After : Sep 8 05:01:18 2025 GMT
Subject: CN=36f13ee7a40dfec6214efa76c5b495834b8a723f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a9:94:3f:95:64:74:cc:15:c0:1e:14:98:69:
cc:9f:02:d4:6b:6b:35:20:1d:bb:8a:17:0b:d4:24:
18:43:53:46:e3:6f:2e:c2:d8:0f:cd:7f:8a:74:43:
82:61:35:3e:f7:89:cf:9b:82:2c:27:0b:f2:05:d2:
f2:0e:74:0c:b2:eb:5d:aa:16:37:cd:72:50:52:85:
87:d1:25:db:10:4d:b3:b5:0b:ab:55:f6:06:e0:af:
68:5f:42:ca:c8:31:20:29:ea:d4:16:74:14:53:9d:
40:22:fe:62:d7:0c:3e:46:0c:ee:07:31:ab:ee:61:
6a:43:e3:75:72:e6:d3:b6:f5:b3:6f:72:82:f0:df:
41:e3:13:bc:46:ea:c9:75:56:2d:a4:2e:b9:a7:4c:
f3:57:dc:84:48:80:c2:1c:74:35:fb:91:2e:16:29:
83:8c:91:e8:d9:84:66:76:dd:98:f0:ee:c4:8d:49:
77:7d:c3:9e:0d:fd:07:af:1f:17:4e:ae:3e:1c:0a:
c2:1e:a1:00:78:fc:0f:8a:08:d7:1b:a6:28:70:73:
a9:f2:14:ea:06:be:f0:3a:a1:2f:b6:41:4f:2e:36:
6f:67:a5:b7:58:68:39:d3:fa:a5:60:8b:79:55:3c:
89:a6:b6:3d:77:03:0e:8f:7e:ac:ba:db:d1:1f:c4:
c3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F1:3E:E7:A4:0D:FE:C6:21:4E:FA:76:C5:B4:95:83:4B:8A:72:3F
X509v3 Authority Key Identifier:
keyid:AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:66:2a:5d:22:9d:f2:8b:88:f6:82:3f:a2:6c:52:cc:7a:d8:
da:a8:48:0b:ed:e8:f9:c0:51:f2:1f:c2:a0:8e:0d:35:ea:73:
ce:6b:e0:77:69:eb:02:6d:e2:bc:cf:2b:78:ea:f7:2d:02:48:
95:98:ae:f7:25:00:d5:73:e2:91:f6:1a:d9:69:8c:ef:f4:be:
f0:49:70:0b:a7:38:20:d4:b7:f1:e8:ce:29:75:b0:b0:82:95:
d0:91:80:61:f7:4f:e1:70:21:d0:f3:2c:6d:9b:08:eb:ac:43:
9f:96:27:ca:5b:5e:09:f7:57:2a:b6:10:8c:70:c4:4f:41:c9:
9f:59:d7:1f:ee:e3:7a:74:70:0c:d3:41:93:40:e7:e6:ad:4a:
cb:b8:3c:e2:4c:d9:8a:10:38:05:4a:fe:ca:79:4b:c5:ac:71:
1a:86:c6:20:8e:26:d8:b6:1d:03:53:b6:33:88:f6:8d:f9:64:
d1:42:84:82:e8:04:d2:1d:9e:18:87:a8:92:88:f0:b0:6e:c1:
fb:39:70:9a:73:ef:ea:dc:91:91:90:27:07:53:de:58:0b:7a:
0f:af:4b:0b:b1:24:01:6d:83:c4:ec:a8:69:63:7b:de:22:db:
07:4d:70:f7:7d:c2:e4:4e:3b:af:6e:5b:72:64:2a:4d:76:0f:
8f:f7:77:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:29 2025 by rpki-client