Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: 14T5Hn/9kaexFZ8GYuufUOi+4iBFlB/IMtrhlSEy5Jc=
Subject key identifier: 98:3A:48:C6:93:EC:BA:2E:EF:A3:52:A7:5A:58:88:3D:EA:5F:CC:CE
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 0199221E8C6848526BEB27B0E36B4E526634
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 08F8
Signing time: Sun 07 Sep 2025 03:00:51 +0000
Manifest this update: Sun 07 Sep 2025 03:00:51 +0000
Manifest next update: Mon 08 Sep 2025 03:00:51 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: XLMN0b19Xd1G/l1FF69zpq6j4IkB4ilBPoiF5v0JrEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:8c:68:48:52:6b:eb:27:b0:e3:6b:4e:52:66:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Sep 7 03:00:51 2025 GMT
Not After : Sep 8 03:00:51 2025 GMT
Subject: CN=983a48c693ecba2eefa352a75a58883dea5fccce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ad:a0:71:ea:29:43:97:28:f2:7d:4f:38:2c:
89:4d:e6:e0:d7:06:ef:ea:8e:25:8d:b8:94:f7:23:
b2:48:f2:b6:68:8f:28:5c:2a:91:d6:63:28:88:31:
fe:5f:85:18:67:a7:be:71:d2:ca:52:dc:47:ef:d2:
5b:99:45:5a:de:f2:e1:12:db:7e:f1:8c:49:f6:50:
5d:18:31:4d:aa:d5:6a:fc:9b:6a:48:65:61:b4:d9:
51:01:0e:7d:2c:a1:17:ca:ee:a3:e9:9c:8b:fe:4f:
ba:71:d6:f0:ac:2e:30:b2:52:c1:62:a2:9d:b7:bc:
6c:5c:0c:bd:c4:7c:26:fb:d8:62:1a:c0:49:62:3c:
48:c3:e2:6d:d2:45:ae:09:98:cf:4b:f9:c0:aa:e7:
6e:ab:ae:a4:df:dc:cc:1b:92:3d:e0:cc:48:0b:05:
6a:11:bb:b4:19:b6:9c:da:96:85:a1:74:bf:5f:18:
b5:8d:9d:16:7e:7b:3c:0e:20:bc:1d:44:f2:ae:7b:
34:58:9e:a9:6d:a3:bc:b1:e2:4c:2b:cf:21:53:1d:
a9:73:2b:84:9d:4c:db:cb:ea:79:0e:47:c3:4b:65:
65:92:36:9b:7f:ae:97:30:a5:d7:d3:a4:cb:27:8a:
ee:9f:c2:12:dd:7d:78:e3:27:07:32:18:3d:d6:47:
33:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:3A:48:C6:93:EC:BA:2E:EF:A3:52:A7:5A:58:88:3D:EA:5F:CC:CE
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:90:c4:86:d2:19:60:e2:e1:bf:9b:d6:ef:41:9e:67:2f:fc:
36:79:01:d7:4b:1e:ab:b9:db:8a:c7:2d:87:93:38:cf:ae:33:
56:2a:1a:76:f3:30:7f:a8:30:61:a5:45:6d:9f:b6:43:3a:1b:
b0:b9:42:86:42:b3:23:d5:ea:e9:2e:3b:2c:e8:50:b9:a0:d4:
06:62:ee:bc:e4:46:68:97:85:6c:9f:dd:0c:ed:8d:42:f8:f9:
c3:c0:73:7e:19:82:9b:16:d6:25:27:f2:da:e3:34:36:17:e1:
54:7d:64:7e:41:b1:3b:41:db:4e:6e:c1:21:92:85:e5:c2:a5:
eb:7d:df:d4:67:79:81:ab:c0:3d:65:5e:a2:e9:38:7f:fe:03:
38:2f:d0:b1:4b:2f:e4:43:cd:83:2c:a4:05:41:df:51:a6:cf:
c0:86:49:64:32:59:56:71:f6:d4:6f:08:54:79:1d:42:1e:4c:
cc:41:f9:09:0a:1e:21:4f:21:3c:f9:32:3f:94:bb:80:14:2f:
cc:98:1d:0c:ef:c6:9d:1a:79:da:8b:07:2e:93:31:88:90:be:
bc:9d:d1:10:cd:70:bc:46:d9:11:89:53:8b:52:6f:1b:9a:1a:
40:b3:63:fe:05:45:e5:f9:c8:fe:5d:05:f7:e5:74:b7:87:35:
91:3c:bc:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:33:01 2025 by rpki-client