Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
File: rFPL63FQhLMioaFJyW4JxA7W2IM.mft (raw, json)
Hash identifier: is8A8pnUPVupS5o2ySNLSSKLPUtEfUdIJ8Deo2dOZAc=
Subject key identifier: 90:BA:AE:A3:2C:E3:3C:F5:BB:9C:47:9B:FB:30:B8:F6:5D:05:EF:F7
Authority key identifier: AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
Certificate issuer: /CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Certificate serial: 0199228D09B3955F8C47C32754FB73F3D726
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
Manifest number: 1298
Signing time: Sun 07 Sep 2025 05:01:32 +0000
Manifest this update: Sun 07 Sep 2025 05:01:32 +0000
Manifest next update: Mon 08 Sep 2025 05:01:32 +0000
Files and hashes: 1: Wfce3ZtHFc99tmFyN64Q-vZ2RpA.roa (hash: Y3X9Ri7kJ6o/ebs+JUXNiJ+ZA7lhHw1uv9ydtQHMGRI=)
2: rFPL63FQhLMioaFJyW4JxA7W2IM.crl (hash: NV3F+LOUX4fouLpGRtn5ctdBmdWQ3stRP3jv2CKCkc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:09:b3:95:5f:8c:47:c3:27:54:fb:73:f3:d7:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Validity
Not Before: Sep 7 05:01:32 2025 GMT
Not After : Sep 8 05:01:32 2025 GMT
Subject: CN=90baaea32ce33cf5bb9c479bfb30b8f65d05eff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f4:7b:70:b5:5d:da:6a:77:7d:b8:58:b5:ee:
44:d3:af:59:97:28:fd:99:2f:07:d0:d5:34:16:17:
f7:76:a5:6d:86:cf:8f:80:73:81:f3:70:c2:b8:77:
ab:fc:e4:a1:39:52:2c:c8:c4:11:1c:9a:3f:db:6f:
32:4e:74:3d:de:63:37:00:88:43:c6:18:e1:e3:d7:
a0:1c:80:06:29:81:35:04:b6:5c:c9:7a:86:86:a2:
7f:b7:74:5a:2e:c6:4c:e4:9c:6e:0a:c4:78:95:2c:
61:a2:75:a0:d4:f2:ae:60:8f:12:2e:28:b9:8b:d5:
d1:89:a8:2c:f3:20:6d:3c:51:35:96:71:61:70:96:
08:76:53:cb:d6:7e:c4:9c:63:f5:ba:a9:ef:50:14:
ac:dc:1a:e2:7b:61:4e:f8:be:d1:58:78:91:6d:ea:
83:88:a3:2a:1c:f5:1e:ca:a5:f4:d5:5b:7b:d2:95:
35:13:64:0d:20:bf:a6:4f:8a:63:a2:d8:ea:f4:bd:
72:28:eb:72:66:44:4c:6e:45:f2:f3:80:e3:2a:71:
87:e2:e8:27:6f:be:f9:37:55:03:9e:57:02:0f:e5:
1d:1f:02:ec:80:d5:54:7c:59:aa:2a:77:71:1f:14:
22:e0:42:56:85:5c:ce:4a:e7:99:66:0e:41:2d:55:
b9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:BA:AE:A3:2C:E3:3C:F5:BB:9C:47:9B:FB:30:B8:F6:5D:05:EF:F7
X509v3 Authority Key Identifier:
keyid:AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:54:91:0d:cc:0e:2c:e2:4d:6c:1a:33:f1:7c:56:cd:31:dd:
f3:3c:6b:98:81:42:b3:17:10:1c:5a:53:13:93:2a:04:79:06:
db:2b:22:f2:af:4a:2c:0a:0b:ca:70:2f:a0:1d:17:89:98:d6:
00:2d:d1:9a:16:95:45:ff:b0:90:31:f1:de:94:67:b9:ea:43:
9a:7e:07:62:83:d9:16:82:5d:d8:0d:18:45:0f:70:b1:9e:ad:
19:70:71:b1:bd:90:9b:d2:17:72:42:57:2c:e0:f5:84:9f:46:
c1:b0:b7:e1:a6:37:9b:d1:6c:01:2d:b7:c8:b2:a8:14:f6:98:
29:86:f9:0a:1b:65:5f:b6:e8:49:0a:46:2a:38:38:d7:5f:8f:
27:86:58:d9:a5:fb:ee:7f:43:5d:a6:78:66:8e:89:c4:97:10:
fa:32:4b:83:ac:0b:0a:65:a6:41:49:d9:fb:e8:00:23:5b:9d:
b8:51:ac:c7:af:5a:5f:c5:84:49:34:1e:59:03:5f:ce:dc:81:
f5:58:48:81:1e:42:40:f3:6c:12:4b:71:4c:f9:8b:d2:34:9f:
7a:c5:f5:c6:51:9a:6a:1a:b2:d8:c3:a5:f1:08:72:32:12:f6:
a3:e4:be:3c:6b:72:52:e1:e0:74:41:95:65:bc:1a:60:90:28:
6e:d3:84:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:37:03 2025 by rpki-client