Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
File: u_mPikT9YO72t0nSFOVsgRiXZgw.mft (raw, json)
Hash identifier: zlpwxqS1VFk7exMs+mxx2GyHYnx9kXbUY7gfpASMLYM=
Subject key identifier: 4E:A4:15:C9:72:CE:79:89:87:D2:A8:32:DF:80:2E:45:5C:DD:CE:C0
Authority key identifier: BB:F9:8F:8A:44:FD:60:EE:F6:B7:49:D2:14:E5:6C:81:18:97:66:0C
Certificate issuer: /CN=bbf98f8a44fd60eef6b749d214e56c811897660c
Certificate serial: 0198C792605956C15BCE12926065F1CF5329
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
Manifest number: 012E
Signing time: Wed 20 Aug 2025 13:01:55 +0000
Manifest this update: Wed 20 Aug 2025 13:01:55 +0000
Manifest next update: Thu 21 Aug 2025 13:01:55 +0000
Files and hashes: 1: u_mPikT9YO72t0nSFOVsgRiXZgw.crl (hash: 0rtzm3CrdbMae7EPYBnpmZjtvAjRdwwuMAzKPnEJBgg=)
2: xkzazz831mQOXNGmSz3uWho6Ohk.roa (hash: kcYkLf+1B2AuNTj7vUuf68FA8ProRpgWzdWOYFENYJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 13:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c7:92:60:59:56:c1:5b:ce:12:92:60:65:f1:cf:53:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbf98f8a44fd60eef6b749d214e56c811897660c
Validity
Not Before: Aug 20 13:01:55 2025 GMT
Not After : Aug 21 13:01:55 2025 GMT
Subject: CN=4ea415c972ce798987d2a832df802e455cddcec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ce:ae:ab:af:b3:6f:6e:24:b8:26:a6:38:de:
68:6a:60:19:ca:ad:ae:8d:39:1d:16:79:de:1c:51:
73:f2:7d:36:74:94:dd:b8:05:5a:1e:f7:ac:a6:29:
d2:65:03:1f:3c:be:86:d5:66:9b:f5:24:c3:1b:a9:
4a:fd:52:c9:be:f2:2d:d3:c1:28:b9:26:c4:e1:61:
e8:9b:3a:5b:6f:f3:e7:ed:3a:b5:d4:39:29:39:f3:
24:17:9f:93:1c:96:e2:8a:a1:b1:42:ef:b4:af:6f:
c8:d2:b4:88:60:3f:cb:a0:65:39:5b:6e:02:e1:1c:
63:c6:ec:48:f1:54:7c:a6:5e:3d:1f:50:05:9c:39:
74:2f:94:93:da:23:52:db:e2:99:76:83:9b:db:70:
f2:18:2b:8f:51:60:66:4b:dc:4f:39:41:13:45:66:
25:ff:13:52:51:d6:b9:81:c4:04:33:5b:96:4c:9a:
41:11:e8:cf:a9:83:42:66:7e:6a:da:e0:b0:09:63:
85:fb:fb:a8:80:95:fd:7d:06:82:dc:33:e8:6d:ef:
6c:d8:54:bc:98:a1:8a:e9:a2:b1:15:6a:6b:7d:05:
ce:53:cd:2b:b7:21:7b:a4:a4:20:f0:be:13:ea:db:
26:af:8f:b3:81:f1:eb:ba:79:e7:39:df:85:41:34:
d3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A4:15:C9:72:CE:79:89:87:D2:A8:32:DF:80:2E:45:5C:DD:CE:C0
X509v3 Authority Key Identifier:
keyid:BB:F9:8F:8A:44:FD:60:EE:F6:B7:49:D2:14:E5:6C:81:18:97:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:28:b8:d8:a5:7e:a6:e1:fa:f1:24:c7:cc:8e:98:f2:5a:7e:
27:91:c8:a9:3c:d6:99:e6:60:66:77:ef:51:bd:85:16:d4:bd:
01:82:00:58:2d:46:49:e8:1e:a9:57:2f:6e:d8:4e:46:63:ca:
6e:45:56:d1:00:78:8e:f6:a8:20:c9:e7:1f:0b:ed:ae:21:9d:
0c:3d:5c:84:7b:82:f6:30:7d:4e:a6:59:e0:a3:cc:e1:6e:ab:
8c:81:b6:ba:67:32:ba:0a:46:27:14:5a:c7:d0:f3:b2:77:c6:
b5:e5:65:9e:29:fa:60:d8:92:ed:f6:a2:19:b4:63:9c:0e:cc:
9c:cf:23:f6:13:c9:9f:f8:d5:1b:f5:d2:e5:33:70:a1:5d:7e:
bf:1c:0d:9e:9d:e2:97:63:24:7d:81:dc:f7:1f:87:cb:84:33:
74:a8:04:43:ae:8f:b4:21:f8:10:68:36:d3:f2:b0:f4:7d:ba:
6c:b3:14:37:50:d8:ea:bd:09:c6:83:32:ba:6f:94:c2:29:b4:
f9:fa:1e:8f:02:ae:25:6f:96:a0:78:22:aa:7a:6f:ff:55:94:
4c:19:e1:31:8d:fa:1c:df:3c:b3:88:2e:d4:2a:36:40:93:fd:
0e:b4:88:ee:23:62:2d:b9:20:4a:f4:6b:99:c7:07:6c:b8:8d:
c9:89:3c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 17:22:32 2025 by rpki-client