Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
File: 0fbkNwERz7-WhASFQie4CShRRQ0.mft (raw, json)
Hash identifier: by17kc82ZWw7dZUQXegQggrQ4WaBrvsRh7OPqsLepWo=
Subject key identifier: 87:F8:C3:C6:B4:FF:5B:A5:D7:32:69:08:59:70:C8:22:B3:E8:3D:66
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: 0199326CF5E48CD06529EEB7C15FF3D0FAE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
Manifest number: 0EDB
Signing time: Wed 10 Sep 2025 07:00:25 +0000
Manifest this update: Wed 10 Sep 2025 07:00:25 +0000
Manifest next update: Thu 11 Sep 2025 07:00:25 +0000
Files and hashes: 1: 0fbkNwERz7-WhASFQie4CShRRQ0.crl (hash: CS5QGom8Il1bupFXhnoSjaJtLP6i69IPkExAstp1buI=)
2: w9laCbfNTG9x8SgYBLM8cjfOdmA.roa (hash: WglJOtLwDI5HpNhEnz7a8Exzapc/0A4kuz517Fgs06A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:6c:f5:e4:8c:d0:65:29:ee:b7:c1:5f:f3:d0:fa:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: Sep 10 07:00:25 2025 GMT
Not After : Sep 11 07:00:25 2025 GMT
Subject: CN=87f8c3c6b4ff5ba5d73269085970c822b3e83d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b2:6e:59:bb:e7:99:cf:4c:6b:50:b9:99:53:
bf:32:d2:c4:a9:be:74:04:19:7f:12:3b:2c:61:14:
52:0c:22:fc:8c:d6:16:75:c4:30:96:d0:e3:76:9c:
7b:19:5d:52:9f:24:59:68:05:20:a7:1d:28:09:b4:
a6:23:17:6a:91:70:3a:f8:95:34:ff:a2:ff:b3:79:
17:a6:23:37:fb:e3:6e:aa:09:be:82:38:1b:48:de:
6e:f2:7b:31:60:4e:eb:16:00:f1:cf:b0:f5:3d:cc:
fa:71:52:a4:d8:23:99:3c:3a:8b:9b:ba:c7:7c:a8:
cf:dd:27:ae:c5:c0:73:a5:90:b5:36:02:8e:d4:7b:
bd:ad:d8:da:c8:d6:57:c0:b8:d9:8f:ef:a3:cb:bb:
16:98:0e:a5:1f:38:f2:0e:fa:10:5d:45:c2:c8:6a:
7b:0f:a2:c9:0c:a8:71:1a:37:a3:04:e0:98:fc:04:
fa:ed:a8:4f:04:5c:93:6c:33:26:8d:69:07:68:0c:
5b:8b:0c:3b:06:00:1d:13:18:2a:01:ac:ef:33:b3:
be:d9:55:6c:6b:d7:69:a8:64:c9:02:8d:8c:5f:bb:
b1:0e:09:03:83:cc:45:72:f7:b9:a6:9d:73:61:56:
43:d8:6e:e7:bf:b8:e4:0a:6c:a7:10:ad:92:08:a0:
3d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F8:C3:C6:B4:FF:5B:A5:D7:32:69:08:59:70:C8:22:B3:E8:3D:66
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:ee:a7:49:f7:f0:1d:7b:85:a4:31:08:50:4d:16:9e:84:8d:
e9:48:6c:15:04:85:16:07:43:73:aa:6b:fb:8c:b2:94:d3:32:
9d:31:04:15:88:cd:9e:ac:0c:0e:a3:14:38:75:d6:ae:db:1b:
d0:d7:b0:1f:a0:6a:74:dc:bc:ab:9b:94:59:b6:c8:64:ff:12:
72:59:5b:2b:ca:c8:cd:f8:32:9d:74:c3:e5:85:3a:e9:89:e0:
85:3b:26:8a:6a:eb:2b:9f:84:10:f8:26:62:84:c0:8b:86:66:
fe:49:42:a1:9b:f7:71:b3:0a:bd:9d:0c:62:90:e0:34:ce:73:
34:de:d9:60:03:5f:0b:69:28:cc:1f:42:89:d7:21:96:30:6f:
5e:e7:b5:40:8f:5b:73:a2:c6:f0:f9:cd:0d:96:df:0d:1b:68:
b2:5b:e5:e9:8c:4f:44:96:4c:3c:c3:d3:7b:3b:97:24:27:63:
61:7f:06:b8:ad:54:ff:15:68:21:1e:df:13:34:23:b6:32:b1:
7b:62:3f:0e:de:33:e1:52:bb:0f:87:d2:c7:91:23:fe:ee:75:
7b:4c:d3:86:35:9f:5a:5a:b8:cc:e1:d6:e8:99:47:48:fe:da:
10:e6:15:99:9a:ca:b5:60:81:cb:66:9d:34:ab:2e:1d:ad:a0:
60:a2:1f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 10:21:40 2025 by rpki-client