Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
File: 1jND98xsI32j-LgROMBR2Pk8nE0.mft (raw, json)
Hash identifier: jJzXMb4Jo6pf0aVphr49BjRwoVfH4FgQ3FA6U/mWjdM=
Subject key identifier: F3:15:ED:E0:4F:F2:EC:B0:79:11:6B:45:99:1F:E2:FD:04:4E:EF:6A
Authority key identifier: D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
Certificate issuer: /CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Certificate serial: 019921E7D314EF728854E9AB757D009ACFAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 02:01:04 +0000
Manifest this update: Sun 07 Sep 2025 02:01:04 +0000
Manifest next update: Mon 08 Sep 2025 02:01:04 +0000
Files and hashes: 1: 1jND98xsI32j-LgROMBR2Pk8nE0.crl (hash: iv2FzYEHMaSzYPFQZsMkhmRGZxQcL3ovsp1d4Tq64e4=)
2: r8Cx9iv2Us-sXIBLH4ymKtjO_pw.roa (hash: zSG7oRCig4axArTg72yLWZy9j2Lnt0Tay8wTKKxpjxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:d3:14:ef:72:88:54:e9:ab:75:7d:00:9a:cf:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Validity
Not Before: Sep 7 02:01:04 2025 GMT
Not After : Sep 8 02:01:04 2025 GMT
Subject: CN=f315ede04ff2ecb079116b45991fe2fd044eef6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f1:20:50:04:f9:56:59:91:ae:97:a1:31:92:
d7:5f:7d:00:85:2c:a2:e2:47:81:2a:a1:19:ec:6c:
02:a8:36:34:3e:a4:6b:83:4a:09:ae:a4:e5:36:f5:
3a:6a:b0:76:0c:72:23:01:2d:ee:4c:7d:e4:70:f4:
f5:5a:fe:c0:f6:b1:d7:56:f8:f4:b0:8d:ff:90:03:
dc:c7:e2:0b:32:a4:86:f0:dc:d9:cd:86:3c:fd:04:
8b:b2:5d:e3:24:59:b9:6e:ad:53:34:d3:49:08:0e:
a1:e5:5c:db:16:42:57:ec:77:63:4a:c9:e3:87:be:
68:00:3d:91:4c:7c:3c:9c:11:46:da:d1:77:88:58:
80:3f:9f:24:c9:89:a3:61:75:d3:58:5e:66:d8:52:
ec:11:ca:55:18:cc:3d:f2:6d:05:a6:85:44:6c:9d:
ff:25:4b:df:33:48:95:24:c4:0a:27:c9:bd:99:6b:
d2:7b:a1:26:91:89:5c:e5:4a:0f:ae:c0:0e:07:8c:
c3:a4:f9:e9:f5:05:13:27:e7:8a:bc:bf:0f:6e:d3:
ab:67:f5:52:3b:13:ab:b5:7f:d0:46:bd:89:df:f0:
ea:f1:a4:1b:8a:e2:d6:2f:5d:8d:03:dd:9c:70:bd:
19:8a:af:04:d5:87:14:41:d6:dd:fa:51:db:fc:aa:
0d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:15:ED:E0:4F:F2:EC:B0:79:11:6B:45:99:1F:E2:FD:04:4E:EF:6A
X509v3 Authority Key Identifier:
keyid:D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:d1:62:cd:e9:8e:87:91:4c:cc:c7:be:8f:a0:85:fe:31:96:
de:c3:1b:65:4b:dd:20:7f:58:76:f8:06:28:f8:97:37:b8:76:
c4:84:b1:e1:45:66:dc:d9:3e:3f:5e:bb:95:ac:34:05:6a:d8:
39:8b:fd:79:8d:cf:da:28:d3:19:18:99:04:64:2a:3e:89:c4:
34:dc:fa:70:95:75:f4:d4:f5:35:c0:cf:dc:e9:39:b4:4b:56:
5b:bf:81:1a:20:a0:68:e5:88:eb:06:66:6b:93:54:cc:ea:83:
54:20:41:3b:8b:2f:4c:f0:b7:67:51:34:11:f0:fa:65:fe:1e:
b5:69:de:7a:cb:a5:94:a1:af:ee:ca:e0:4a:39:9e:18:82:79:
01:07:ed:d9:5c:53:06:23:68:c6:87:8f:22:01:79:4a:40:ea:
58:1c:ed:26:88:de:c5:60:64:82:72:c0:41:97:de:8d:9c:a7:
a4:e3:c6:cd:87:ff:03:db:ca:36:bc:67:f0:3f:07:a7:94:a2:
e1:db:6f:4a:8b:a4:98:7c:a0:d9:68:0e:04:dc:b9:08:0a:f4:
4a:6f:ea:ad:9c:67:4e:78:c7:a6:51:45:29:32:07:f8:6b:94:
c6:70:1a:50:08:6c:4f:f4:05:f4:0f:52:c5:57:92:8d:9e:33:
56:cd:c2:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:29 2025 by rpki-client