Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
File: J0PbfuNKwtTtV49JXgCWy5iv9xw.mft (raw, json)
Hash identifier: TNgJOscYr1EFw68/LaKamaL0bPPAUdWKBr9WR8BEbXM=
Subject key identifier: 70:06:36:FF:B0:51:E3:56:77:F2:50:13:DE:F4:BB:57:08:39:50:AC
Authority key identifier: 27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C
Certificate issuer: /CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c
Certificate serial: 01992DB58C73039454B16B1AEBC19609A4B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
Manifest number: 01C2
Signing time: Tue 09 Sep 2025 09:01:36 +0000
Manifest this update: Tue 09 Sep 2025 09:01:36 +0000
Manifest next update: Wed 10 Sep 2025 09:01:36 +0000
Files and hashes: 1: J0PbfuNKwtTtV49JXgCWy5iv9xw.crl (hash: RxYbXrJcNe7c6OM15z/VXUF2+2PiQaYTs9jcXvEgaDk=)
2: dDAgjd5fwQ3cte1EAxZ7pLJLl0U.roa (hash: 2txr4+GD0XgpxhSLLq5aM5yNR187eckG+kO4tKZmm3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:b5:8c:73:03:94:54:b1:6b:1a:eb:c1:96:09:a4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c
Validity
Not Before: Sep 9 09:01:36 2025 GMT
Not After : Sep 10 09:01:36 2025 GMT
Subject: CN=700636ffb051e35677f25013def4bb57083950ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ba:ec:fe:d5:d1:49:3f:da:dc:ea:35:07:99:
38:04:40:88:af:85:d4:cf:8d:82:8c:86:5e:be:6f:
ad:af:0f:ed:08:c5:cc:5a:86:03:83:f3:20:5e:64:
6e:b4:5d:26:fc:41:c6:17:5c:6e:cf:39:95:ec:37:
e4:29:60:2f:55:ee:05:0d:d7:6e:f6:08:de:8e:f5:
2e:30:fb:31:72:0b:96:9f:6f:c8:3c:a0:70:66:17:
4f:53:92:f2:a6:da:3b:a6:aa:45:82:8b:f1:8c:b5:
bf:2a:86:69:a8:dd:28:61:05:05:c8:4b:0d:fe:6e:
9d:19:35:a3:62:c5:d1:91:75:7c:5b:74:3b:5b:9e:
9a:3b:fd:3c:6f:77:e1:8b:04:86:ac:d5:88:89:29:
b5:ec:49:a0:c7:21:07:f1:6d:9b:59:f5:97:17:9b:
5e:d5:49:2d:9b:9e:d7:72:e0:5c:ac:da:8c:ca:47:
fd:9b:5c:39:00:72:08:f9:b1:3f:8a:98:eb:bf:85:
08:11:f0:24:f1:64:7b:46:42:41:19:88:bf:63:4d:
ce:f5:98:a9:4b:8a:a2:b7:f2:4c:ee:a0:c7:ee:dc:
a9:c5:f9:17:a6:a4:3d:ba:a4:ee:95:4f:56:52:ea:
34:00:ee:40:30:60:ef:1a:69:30:d8:b8:c7:24:82:
97:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:06:36:FF:B0:51:E3:56:77:F2:50:13:DE:F4:BB:57:08:39:50:AC
X509v3 Authority Key Identifier:
keyid:27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:c3:01:29:a2:52:f3:dc:6a:0c:04:1a:31:a5:e2:3f:59:9c:
29:22:16:31:2c:b5:08:46:d0:7d:3b:e1:c8:36:42:c1:6f:f6:
59:58:14:a9:c8:29:3b:23:f1:9a:f3:91:f8:50:3c:e1:cc:6d:
4c:69:8d:7f:cf:47:18:a1:c9:2a:0c:3c:2c:ad:08:8f:1d:22:
60:8b:73:e3:9a:ff:62:84:58:e1:e6:1d:8c:6e:22:de:de:97:
65:c2:0a:d0:dd:aa:0f:dc:32:15:6f:03:55:b9:26:cb:6c:06:
d1:79:e5:78:1d:00:c2:08:39:9c:c6:29:88:66:1c:19:c6:e1:
14:01:e6:55:88:bf:f4:d4:9e:9f:03:24:4a:cf:5d:8c:91:1f:
1a:77:aa:2f:60:28:45:fd:a0:2a:57:4e:e2:80:c3:5a:dd:2d:
2a:56:89:92:89:a7:f8:f3:74:46:c4:e7:29:4e:7f:a6:79:b3:
b0:c9:cc:14:4f:71:1d:18:01:cf:84:bd:26:2e:d1:e3:98:d8:
27:b4:90:bc:4e:c6:bb:88:54:70:8e:f7:e4:0b:47:73:ff:5b:
36:bb:f9:87:cb:08:d9:ae:29:f5:e4:0d:44:3e:d9:2e:f8:8a:
34:25:c7:7f:4e:e6:be:ed:a6:e2:23:f6:0e:29:66:d3:bb:32:
9c:e6:8c:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 17:48:32 2025 by rpki-client