Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
File: sPiohfd3bSq5m7TyDoTTBuA5SqM.mft (raw, json)
Hash identifier: vfgh1pY/gHW7XRDHxXQtSdkaRguxP7RqsF/FuqVt8b8=
Subject key identifier: 14:94:59:55:1D:11:73:8A:3D:93:88:6E:97:B3:D3:A2:37:02:98:8B
Authority key identifier: B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
Certificate issuer: /CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Certificate serial: 019923317C1CFF6AD6F44B67F9387FE95265
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
Manifest number: 1405
Signing time: Sun 07 Sep 2025 08:01:09 +0000
Manifest this update: Sun 07 Sep 2025 08:01:09 +0000
Manifest next update: Mon 08 Sep 2025 08:01:09 +0000
Files and hashes: 1: SvV3htVhXEPI7wFXdPP_R5R2jOo.roa (hash: ADbpdowWW8HzIQ0XmIe2lqnPixhQxjU2ME36RexdQ8I=)
2: sPiohfd3bSq5m7TyDoTTBuA5SqM.crl (hash: GwoCdcgYfBhpKy4gERqnXZAW6UdpUPh/cZBZ3k7urqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:7c:1c:ff:6a:d6:f4:4b:67:f9:38:7f:e9:52:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Validity
Not Before: Sep 7 08:01:09 2025 GMT
Not After : Sep 8 08:01:09 2025 GMT
Subject: CN=149459551d11738a3d93886e97b3d3a23702988b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:36:af:3f:cd:01:b2:34:0d:d3:15:02:7d:35:
28:a2:bd:83:d0:20:64:11:57:80:fd:0c:97:50:eb:
12:b8:ab:a4:85:b1:70:28:ef:ee:1e:fe:d6:86:c4:
9a:fd:fb:56:6a:05:03:75:63:bf:f3:4b:ab:f4:0f:
a3:ea:2d:bd:88:bb:0a:17:fd:dd:cc:54:d2:ba:e9:
75:68:d7:53:23:24:76:96:a0:b4:0a:e4:9b:2c:9c:
51:5b:92:54:70:8e:e8:07:e7:a2:59:39:3d:08:a2:
e1:e7:0b:72:3d:7b:5d:d1:b7:5b:9c:de:67:64:9e:
01:74:90:08:d0:e0:17:c6:f7:eb:41:c4:08:e4:7d:
e5:6c:e6:e6:2a:7c:cd:23:8b:98:20:15:d8:d1:d0:
0a:c5:8c:1d:5f:fa:c0:77:6b:91:68:c4:dc:3a:6c:
66:17:f6:94:d7:a4:9b:32:0b:db:e4:7c:ef:52:b2:
9d:d8:c5:b5:bb:4a:42:a0:ba:4e:9e:d0:a0:95:88:
c6:00:50:e3:0a:74:10:d1:0e:e0:7a:6a:f2:73:87:
57:27:5a:24:46:72:9e:ee:02:ad:f3:14:8f:9f:4f:
2e:65:3b:8c:7e:dc:4c:28:f7:4b:8e:00:a2:11:75:
d1:94:55:b5:59:fa:b0:2b:90:f4:f2:71:6a:6c:7f:
85:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:94:59:55:1D:11:73:8A:3D:93:88:6E:97:B3:D3:A2:37:02:98:8B
X509v3 Authority Key Identifier:
keyid:B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:b5:ae:b4:18:8f:f9:62:e4:79:f0:65:0b:07:92:14:7a:e4:
0e:18:c2:7e:fc:b8:6a:e0:d5:d2:ec:f8:41:32:b8:0e:0d:f3:
fd:0e:f1:7d:85:63:58:f2:95:e2:0e:1b:9a:72:c0:6b:21:74:
da:93:8b:00:46:2c:c0:24:ed:47:0e:66:36:0f:11:b0:98:0c:
dd:59:38:06:e4:ef:4e:4b:82:56:e9:b9:ff:fe:b8:96:86:64:
52:69:b2:b3:78:79:e7:67:9c:d1:96:9f:e7:e3:94:94:f6:7e:
ba:a5:3e:01:78:b0:b5:76:7a:45:e8:eb:35:55:91:39:33:b6:
13:be:0c:fb:b6:de:16:df:43:f7:2c:f4:a5:79:da:7c:61:8e:
4a:8e:60:61:15:75:1d:17:45:b2:a3:6a:a9:b9:2c:e6:c7:28:
56:d0:68:c8:ec:af:64:09:57:d3:e8:cc:9f:51:42:d9:ee:9f:
bf:a6:72:c2:ed:3d:16:dc:35:a1:79:01:e0:32:79:24:48:7c:
92:43:ae:f6:45:64:0b:bf:63:e8:1c:06:21:b1:23:e5:db:fb:
0e:3c:3d:2c:be:d6:81:4a:8a:2c:8f:3a:7c:e9:52:e8:77:8a:
61:87:90:43:92:e1:1f:8d:c4:00:c0:99:09:59:4a:be:e7:30:
d3:4c:5c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:50 2025 by rpki-client