Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
File: s90R00a2O7HrIqB8JswSkaKgaJU.mft (raw, json)
Hash identifier: cfhCMliGZnBX3hmmZ9Thdh7MHVISTQQvVeP7UJ88F90=
Subject key identifier: 46:69:E7:1E:A7:0F:EE:E4:DF:4D:D7:D1:B7:84:1C:DE:FF:62:73:F6
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 019922FA3D942281AAB934E7B38EB65FE272
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
Manifest number: 0E7D
Signing time: Sun 07 Sep 2025 07:00:49 +0000
Manifest this update: Sun 07 Sep 2025 07:00:49 +0000
Manifest next update: Mon 08 Sep 2025 07:00:49 +0000
Files and hashes: 1: DUVtp5rmZWhjlPTwXejQEd3V8J4.roa (hash: qTcPo/VJaQTji8d15MDDjiWvnKJ389xtHOegN0VgXp0=)
2: s90R00a2O7HrIqB8JswSkaKgaJU.crl (hash: e2NlM5zgUKC5xxFXNwtzYgFLEAgXOCO3Ychs2UoCdCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:3d:94:22:81:aa:b9:34:e7:b3:8e:b6:5f:e2:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Sep 7 07:00:49 2025 GMT
Not After : Sep 8 07:00:49 2025 GMT
Subject: CN=4669e71ea70feee4df4dd7d1b7841cdeff6273f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:cd:85:d2:d6:8d:40:27:3d:c8:d6:8d:26:9e:
f5:ca:d7:2a:ac:04:d8:b8:f4:f2:d0:3b:8a:58:8b:
a4:e2:8b:75:a9:7f:13:88:7f:c2:74:57:05:f7:ac:
2e:c2:9c:e1:0e:83:5f:4c:72:10:bd:5f:7b:10:72:
01:18:2d:bc:51:37:26:5f:96:63:5a:03:db:2a:d7:
e0:90:13:20:3b:1d:3c:3d:77:b1:93:72:78:c7:74:
0e:d6:3f:38:c9:5a:b9:73:61:96:df:d1:58:47:8a:
1e:97:e3:20:cf:80:87:05:27:73:eb:72:d0:c6:75:
8c:f7:82:60:53:47:61:2f:96:31:b0:ed:2a:c9:92:
39:01:a3:b4:2b:cb:13:d4:26:6e:ae:1f:3e:13:58:
9d:b9:8a:47:02:ce:ae:94:e1:b7:df:ff:17:c9:0c:
3c:39:57:44:0a:81:c6:a7:6e:b7:de:81:77:12:1d:
6a:98:2a:b0:f5:f7:26:da:5d:ac:b6:32:a3:6f:44:
20:81:5c:33:98:61:4e:5c:7c:99:54:83:47:35:98:
26:aa:de:f5:90:7e:8c:fe:d7:33:3d:d2:bb:5c:d8:
de:b4:1f:c6:97:8a:2a:9b:0d:4f:46:b1:18:32:b7:
ce:5c:e4:7c:a9:c8:ae:d7:cf:a2:66:52:cd:4e:30:
5c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:69:E7:1E:A7:0F:EE:E4:DF:4D:D7:D1:B7:84:1C:DE:FF:62:73:F6
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:6f:b6:11:2b:8b:90:1d:12:47:eb:36:b4:a7:cd:13:00:b1:
44:cf:63:3c:23:ed:0d:92:55:70:a6:94:f2:98:a7:60:a6:9f:
cd:fd:fa:0d:4a:72:37:90:c8:2a:09:fe:8c:e7:bb:7d:09:56:
c8:4b:3d:35:52:e0:13:ea:b5:ad:57:2c:2e:d8:06:3d:be:82:
4d:f3:38:ef:4a:3e:68:13:74:d9:46:ef:74:87:53:df:17:48:
76:ba:33:65:21:d4:84:5d:7e:f1:4b:e9:3a:7d:22:cb:1e:7c:
bc:8f:cf:c4:e3:60:b1:64:d0:6e:4b:8d:41:e6:5d:0a:73:55:
01:ea:ea:5d:21:ad:b3:e2:31:6a:4c:87:42:5b:a1:32:53:5a:
dd:df:a5:d6:48:a7:dc:e9:7d:04:19:52:55:57:68:b7:c2:bd:
bd:2b:fe:26:6c:52:80:a2:fa:de:8c:4d:3d:f7:b1:6b:7f:6e:
e6:e7:cc:1a:35:90:1a:48:4f:b6:23:df:e9:0c:31:3d:0d:1e:
6d:dd:59:d6:fc:dc:96:1f:4b:a5:6d:2c:35:ae:1d:e4:54:bf:
da:27:cc:8c:03:ad:10:fb:37:5d:c3:b1:ac:23:70:f1:22:f5:
a7:6a:7f:8c:0a:0a:2a:d1:5b:e9:62:d6:fa:f7:67:7a:a0:ef:
a8:fe:42:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:46:07 2025 by rpki-client