Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
File: rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft (raw, json)
Hash identifier: tQwcQH67BmFICYZvCCI0RIW2Zn4yBVfbnfKbPCKE+QM=
Subject key identifier: D9:73:1C:5E:75:CA:A5:A0:2F:A5:4D:8B:0F:13:D3:09:E6:7F:BF:5B
Authority key identifier: AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
Certificate issuer: /CN=acfbbca852b957385909f6bd288cdf363f218b06
Certificate serial: 0198E71BCE3C45BA52646D8EB595CE30B4F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
Manifest number: 1328
Signing time: Tue 26 Aug 2025 16:00:15 +0000
Manifest this update: Tue 26 Aug 2025 16:00:15 +0000
Manifest next update: Wed 27 Aug 2025 16:00:15 +0000
Files and hashes: 1: IsJ0c25oEMcq2hs62WVn3JnR5kc.roa (hash: FVZnWTpWqx/hdTsogFHC4HE54Isaap3vLQprMcgXpZE=)
2: rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl (hash: 8dBj8pQ1k+Ns4fDzYFTrE1oi7OSrDBkPrWCbYdktIVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Aug 2025 14:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:e7:1b:ce:3c:45:ba:52:64:6d:8e:b5:95:ce:30:b4:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acfbbca852b957385909f6bd288cdf363f218b06
Validity
Not Before: Aug 26 16:00:15 2025 GMT
Not After : Aug 27 16:00:15 2025 GMT
Subject: CN=d9731c5e75caa5a02fa54d8b0f13d309e67fbf5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fd:be:65:e8:3f:2f:17:2e:63:67:c4:ad:ce:
e0:34:69:42:a5:01:6e:8d:a8:f5:e2:26:ba:7c:09:
30:01:c7:13:d6:be:e5:bf:65:b3:c3:b2:c0:af:19:
5c:bb:d9:f2:01:f2:9c:76:d7:d1:c1:59:2b:e4:43:
7a:6a:7d:08:47:0d:b1:73:0f:44:39:62:d4:7d:6f:
15:30:6a:37:d5:bf:95:3b:d6:ef:29:da:09:dd:ea:
50:97:be:1c:a1:f5:8d:cd:45:79:c7:45:8e:59:42:
ce:33:77:15:55:43:d9:2c:db:78:42:e5:29:0d:6b:
91:b1:11:22:a0:76:66:7e:27:da:00:3d:85:db:a3:
8e:f3:7b:2c:98:0e:75:0b:6b:19:4b:82:ae:79:ce:
11:c4:68:97:9e:e6:c4:0e:4c:14:47:69:53:d2:9f:
33:3b:92:7c:a2:ac:2c:0b:73:e8:be:47:a0:f6:01:
fe:48:d6:a3:15:57:da:41:28:0a:fe:ad:64:f4:56:
ac:2f:7b:54:14:fa:b7:a6:53:83:f6:fc:68:a0:b0:
cc:e7:9a:52:06:89:fe:4f:13:d2:14:83:76:c6:96:
cc:76:47:27:06:46:ea:03:b3:df:85:1a:a3:e1:e8:
86:cd:d2:93:d7:35:ba:19:eb:30:c4:2e:11:67:60:
da:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:73:1C:5E:75:CA:A5:A0:2F:A5:4D:8B:0F:13:D3:09:E6:7F:BF:5B
X509v3 Authority Key Identifier:
keyid:AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:16:e0:c3:7b:8f:3b:a9:e1:eb:0b:63:af:5c:a7:7d:07:b8:
41:0a:5b:41:24:ae:e7:b4:8d:78:dc:2c:ef:82:e9:aa:81:06:
3d:6a:0b:e0:8d:be:35:0f:4b:78:07:56:4b:bb:ba:7b:4c:56:
78:34:c4:1a:3b:fb:03:d3:13:df:7f:3e:e7:10:71:0e:aa:70:
f6:8b:2c:77:ec:ff:98:ad:87:08:c4:ee:b3:e9:af:fd:f8:ee:
6a:19:69:6a:b1:50:b3:47:83:fe:d0:ed:4a:b1:ff:d5:c8:1f:
9c:96:cc:80:5e:8b:77:b8:d9:43:59:92:42:fd:4b:27:63:ab:
f2:c4:c4:ad:6e:fa:d5:7a:c7:90:74:1a:58:5e:2a:1a:48:18:
f7:24:de:4e:0e:ca:e8:5c:ef:6d:d0:bb:e9:c0:67:24:13:f9:
f0:14:40:42:9e:91:eb:fd:a6:ae:3e:81:20:04:71:ce:f5:59:
cf:84:2e:dd:2f:4a:e0:23:69:b6:ed:34:00:7d:08:2a:37:7d:
33:2c:f1:b2:02:fa:1f:d6:c0:3d:6f:dd:cc:c0:fd:3a:b8:cc:
1e:a4:9b:3c:6d:e8:08:91:c0:52:fd:4d:b4:2d:a5:e4:e6:33:
b7:c3:8a:74:40:6c:1b:52:e5:27:6c:a1:39:b6:6a:d7:c8:a3:
14:1d:b0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 26 18:51:11 2025 by rpki-client