Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: /ws8slspwy+FLT1MPx7sFrXfEvTuOJGwGP58FDXumLE=
Subject key identifier: B3:77:7C:CE:FD:4C:65:EB:1E:D7:89:63:BA:1E:6F:5C:D0:C9:98:37
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 019923D5D3713CCD6AADAD84A3910BCBB8FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 11:00:39 +0000
Manifest this update: Sun 07 Sep 2025 11:00:39 +0000
Manifest next update: Mon 08 Sep 2025 11:00:39 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: qYFPvdlS2w8ZjXUlFv/QhLD+/8dLuiQmQ/cZ5hslmmw=)
2: xQ3PdmMDye_3ODxtjF3bxTEbrgU.roa (hash: OnYXJU1mRvo0V2FhsSO8D1b8k47DbXdYSrQ7JN4NAuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:d3:71:3c:cd:6a:ad:ad:84:a3:91:0b:cb:b8:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Sep 7 11:00:39 2025 GMT
Not After : Sep 8 11:00:39 2025 GMT
Subject: CN=b3777ccefd4c65eb1ed78963ba1e6f5cd0c99837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a8:c7:a3:22:51:dd:e4:64:23:57:2d:a6:09:
d0:da:a8:07:d3:9b:4d:52:98:c5:0c:34:b8:72:98:
d4:fb:1d:85:0b:6e:89:20:f4:8f:64:30:22:98:96:
c0:1f:aa:80:0e:72:e0:bd:3b:09:11:09:3a:38:55:
c6:cc:95:e2:a2:61:76:a0:1e:c6:35:41:01:a2:56:
3c:f6:2d:e9:f5:af:d5:20:50:61:b4:b6:3c:b4:1f:
c8:d0:69:0f:81:93:86:c4:ed:3c:04:45:97:c9:14:
9c:63:48:c0:75:cc:c6:c5:34:f2:fd:1a:d2:b7:2d:
51:7d:38:e1:b7:8b:d8:7d:49:b7:0d:b4:b7:e2:af:
b2:f8:88:15:43:eb:e0:09:df:3f:65:f2:5f:78:ec:
72:94:3c:47:8b:18:40:2e:05:4e:25:7c:dc:d3:b0:
58:da:50:59:53:20:f0:5b:e3:87:9d:4b:03:94:fe:
f9:62:a2:97:f0:8e:f1:1e:f9:3b:11:da:51:39:44:
30:c6:46:14:4a:ef:87:c9:9c:6e:cf:d3:10:f9:b3:
85:4c:1f:39:6e:33:87:51:8d:5f:39:ff:c7:61:f6:
9f:d1:b1:28:69:64:fa:42:42:0a:ae:45:84:28:b3:
f5:63:d1:79:0c:75:94:5b:a1:61:0a:98:ad:4d:84:
76:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:77:7C:CE:FD:4C:65:EB:1E:D7:89:63:BA:1E:6F:5C:D0:C9:98:37
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:38:4a:6b:78:c0:04:f8:03:2d:dc:76:81:45:93:ee:e9:f8:
3f:8d:00:bc:e2:89:6b:e3:a7:69:89:c8:34:5b:51:7c:17:97:
6b:03:12:6f:61:a1:3f:80:6f:92:63:ab:60:57:7a:3a:28:4d:
73:dd:0a:14:ea:33:c2:ee:ad:63:de:40:28:c9:84:88:66:79:
c3:22:b6:d7:16:db:b7:d4:ce:cb:85:5e:c7:94:f7:d7:8e:01:
05:17:10:fc:60:3d:14:64:a7:cc:bb:a3:ff:4c:e9:9f:47:f9:
b4:d2:95:3e:05:98:4c:d4:c6:1d:45:32:70:dd:da:e0:a9:3d:
8f:c4:6f:bd:43:8c:18:a9:6a:b3:7b:b5:15:bc:18:a0:58:e7:
e0:ec:9c:11:e6:02:5a:71:73:d8:52:12:3c:f1:9d:85:bd:96:
b0:33:9a:9f:d8:14:2f:63:4d:50:34:e3:63:d9:1a:d9:9b:29:
a0:fb:31:05:a4:8f:7a:31:15:61:18:4e:8d:85:6e:d1:5a:aa:
04:4c:d8:30:16:82:84:df:5b:2b:ad:86:1f:51:f5:60:68:ff:
f7:ad:c2:70:26:4f:57:26:24:23:46:e2:8d:96:2d:86:ec:29:
67:ef:01:56:1d:9f:ac:06:e5:81:77:04:03:41:ab:95:98:eb:
5e:d6:62:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:45:03 2025 by rpki-client