Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
File: rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft (raw, json)
Hash identifier: nhECJQ1bR91HAW24O/9auHbmMP6sEbTH0tmQ6lhrizY=
Subject key identifier: 07:3F:2E:9D:27:24:16:20:FD:A3:BF:90:B1:86:43:57:C8:48:B6:A9
Authority key identifier: AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
Certificate issuer: /CN=acfbbca852b957385909f6bd288cdf363f218b06
Certificate serial: 0197D6D099EE383CBDE3AE21CB9BD1F2DE0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
Manifest number: 129B
Signing time: Fri 04 Jul 2025 19:01:24 +0000
Manifest this update: Fri 04 Jul 2025 19:01:24 +0000
Manifest next update: Sat 05 Jul 2025 19:01:24 +0000
Files and hashes: 1: IsJ0c25oEMcq2hs62WVn3JnR5kc.roa (hash: FVZnWTpWqx/hdTsogFHC4HE54Isaap3vLQprMcgXpZE=)
2: rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl (hash: 5RBRGorf2gnup8BOhrJK/tsncA7s0T8/ss8VlqYmgWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d6:d0:99:ee:38:3c:bd:e3:ae:21:cb:9b:d1:f2:de:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acfbbca852b957385909f6bd288cdf363f218b06
Validity
Not Before: Jul 4 19:01:24 2025 GMT
Not After : Jul 5 19:01:24 2025 GMT
Subject: CN=073f2e9d27241620fda3bf90b1864357c848b6a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:01:48:57:b1:a0:99:46:7a:57:92:bb:f7:3f:
57:f8:84:1a:60:f8:93:58:a5:29:37:73:0e:16:98:
4a:26:bd:3d:bc:7b:59:03:c3:19:8e:0b:fb:54:e4:
3a:c6:32:6a:7b:ca:b8:22:87:4c:9c:73:a5:7d:57:
e0:4f:af:23:d6:d2:ad:3b:23:6e:d0:00:ac:af:64:
51:7b:a9:1c:59:29:39:59:7e:cb:7e:3f:e0:73:28:
dc:b2:fa:66:e7:52:0e:0e:5e:8f:34:5c:69:e2:86:
00:54:2e:69:9b:9a:12:ca:eb:80:3a:d1:c5:dd:81:
51:81:78:42:ec:1f:b4:e1:71:43:ce:d0:ea:95:34:
dc:22:da:06:04:aa:98:ba:5f:66:fa:5b:9d:c0:b7:
62:ff:dd:28:b7:f9:32:42:fa:19:eb:7d:9f:00:ce:
bb:e3:c0:3e:32:9f:64:fd:16:45:56:dd:c2:94:65:
4a:7c:d8:3d:67:fa:74:b3:fc:1e:a6:e0:48:f5:6e:
3f:dd:31:ce:74:b7:98:b4:c7:22:ac:87:99:0a:97:
8d:45:1f:3c:97:22:6c:03:f0:94:58:8a:61:cc:34:
ca:94:f1:29:c1:6d:b0:80:00:4d:65:01:43:1d:d3:
3b:90:4e:5d:fe:f2:4e:85:04:48:77:5a:c7:54:72:
8f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:3F:2E:9D:27:24:16:20:FD:A3:BF:90:B1:86:43:57:C8:48:B6:A9
X509v3 Authority Key Identifier:
keyid:AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:82:b2:19:28:f4:25:93:85:38:19:ce:77:4e:df:a8:58:38:
73:f6:4c:5d:58:fd:90:8e:40:b9:6d:e5:42:21:1a:b2:24:69:
65:4f:f7:dd:93:e6:7e:fb:c4:c6:c7:44:30:d6:e5:a0:cc:2f:
f5:e0:ef:58:9b:d3:4c:ea:b3:d9:45:04:25:89:1f:02:d9:76:
d0:ba:18:73:b5:a6:b7:a9:37:d7:90:09:25:fb:33:ab:27:b4:
1b:87:7e:9e:ab:85:d0:db:48:5b:bf:15:59:49:11:79:37:c2:
a7:2f:d2:87:cb:a1:b7:ca:6b:75:ab:27:d9:da:c1:11:4c:d0:
fd:2b:db:c1:47:ea:23:8a:65:82:23:4c:f7:f9:0a:f3:73:fa:
3c:6b:21:37:9b:96:e8:f1:e0:f2:65:a1:b5:fc:c2:7e:ba:6a:
c2:ea:a2:f6:0c:00:fd:c8:ab:67:27:66:c7:9a:6a:eb:c8:e8:
29:00:e8:b2:55:fe:76:4b:ad:01:59:3b:82:ff:ad:ce:9d:34:
ed:d5:20:7e:d1:dd:03:27:3d:39:89:5b:49:40:51:18:9b:1e:
4f:17:b8:74:9e:39:4c:ad:4d:10:c2:67:ed:de:60:ea:f9:af:
71:00:69:47:bf:52:5c:ad:84:52:e4:ff:1c:57:3b:9b:1c:3e:
62:1a:41:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 23:46:19 2025 by rpki-client