Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
File: J83PK9CaINK63Tq2yMft-h_Vwsw.mft (raw, json)
Hash identifier: rwNmT/alkH38uMLEpSoKAVE1KQbiUgAmyGZvzJc6Do4=
Subject key identifier: 56:9B:45:C7:65:F3:FB:4C:E3:FB:DB:C4:59:D5:32:12:B3:ED:7E:AC
Authority key identifier: 27:CD:CF:2B:D0:9A:20:D2:BA:DD:3A:B6:C8:C7:ED:FA:1F:D5:C2:CC
Certificate issuer: /CN=27cdcf2bd09a20d2badd3ab6c8c7edfa1fd5c2cc
Certificate serial: 01992AEA809015D80A130C206FDB9FEE70D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
Manifest number: 038F
Signing time: Mon 08 Sep 2025 20:00:35 +0000
Manifest this update: Mon 08 Sep 2025 20:00:35 +0000
Manifest next update: Tue 09 Sep 2025 20:00:35 +0000
Files and hashes: 1: J83PK9CaINK63Tq2yMft-h_Vwsw.crl (hash: TDSGwvSgOD8/t/5Ul2pej7xzv6KiHrQQz/w8ul3NE2w=)
2: kxpaHhhuxaN-Jg9For9SY2Nccrk.roa (hash: Q31rgNDFAzRPHBiMS/f4s6A4eZqCkoNUT9MdgG2F6C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 20:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2a:ea:80:90:15:d8:0a:13:0c:20:6f:db:9f:ee:70:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27cdcf2bd09a20d2badd3ab6c8c7edfa1fd5c2cc
Validity
Not Before: Sep 8 20:00:35 2025 GMT
Not After : Sep 9 20:00:35 2025 GMT
Subject: CN=569b45c765f3fb4ce3fbdbc459d53212b3ed7eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9b:55:af:5d:6a:c4:a3:60:ac:59:4c:9d:8b:
16:b2:c9:f6:01:32:b5:e2:03:51:2d:20:c4:42:63:
84:32:d2:0e:a6:74:3f:2b:b4:78:13:0e:0a:2b:f1:
d2:5f:64:11:02:4a:35:65:7d:f3:a1:65:d2:da:17:
07:f0:5b:a6:dc:13:e8:e3:e6:22:01:a8:6c:85:c6:
32:d7:c9:39:8e:84:c3:b6:fe:d9:c1:07:7c:03:61:
9b:f7:b8:44:3f:29:78:de:23:b1:1a:e6:a8:32:f0:
00:88:d6:7d:bd:86:7f:d2:9a:b9:c6:00:bf:7c:69:
ea:b8:7f:79:bf:05:87:43:c0:c6:c7:e8:82:d1:b9:
5f:a4:ad:72:27:fc:94:67:e3:e0:60:d0:1e:e0:e2:
24:b5:37:b9:4c:4a:4a:79:66:cb:6a:1d:04:6b:de:
a3:9e:68:fd:a6:44:e1:69:26:b1:4c:ee:44:e8:76:
fc:64:3e:7d:e3:c3:ab:40:7e:f9:70:9b:fb:8d:66:
bd:47:56:fe:c6:ea:3c:b5:09:9e:7e:3f:d6:6c:4e:
b7:d9:02:27:5d:c3:f1:29:71:ac:ba:d6:1b:4c:0a:
c8:eb:08:cf:f8:f5:b9:84:fc:74:91:d2:98:71:4e:
be:4b:2a:fd:10:0e:0c:27:9c:73:53:b7:5d:68:d1:
b1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:9B:45:C7:65:F3:FB:4C:E3:FB:DB:C4:59:D5:32:12:B3:ED:7E:AC
X509v3 Authority Key Identifier:
keyid:27:CD:CF:2B:D0:9A:20:D2:BA:DD:3A:B6:C8:C7:ED:FA:1F:D5:C2:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:91:aa:72:8d:da:1c:24:70:ed:25:bb:3d:e0:c6:4c:62:2b:
d5:04:a6:76:9e:22:06:c4:3e:67:3d:0a:2d:10:2c:a0:84:5d:
5d:64:18:af:80:25:bc:ff:5d:3f:9c:0c:ad:76:58:ef:2e:99:
2a:f2:a3:95:8e:1f:da:4a:fd:b3:79:44:a6:23:3a:00:0d:68:
7e:fd:e1:6e:11:b9:0d:08:e3:75:51:d9:9c:0a:17:4d:f7:63:
0e:bc:0a:e7:48:eb:d0:89:8d:f6:7c:5b:e9:8c:67:d4:3e:54:
5b:30:7c:1a:0c:82:e6:81:78:5b:4e:3d:54:aa:19:d2:01:7f:
69:d3:59:30:de:7f:76:3f:7c:a6:00:13:c2:ce:cb:9a:5e:33:
90:c9:b3:f5:d8:aa:30:22:b9:84:98:39:74:bb:82:c9:78:9e:
35:35:86:34:84:1b:94:25:d3:1d:64:e6:df:8e:25:38:f0:4d:
e9:8e:4e:83:cb:38:73:a6:52:ca:f7:69:45:a7:e9:84:c3:8c:
51:42:29:f3:eb:3c:98:52:5e:49:bd:20:91:b1:76:e4:fb:00:
fa:19:7e:b6:63:e2:73:2c:22:56:dc:53:8e:4a:43:93:f2:99:
d0:53:42:24:c5:23:c9:29:01:e1:a2:c2:26:da:73:ed:6d:21:
59:93:ca:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 04:22:09 2025 by rpki-client