Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
File: mK_pac8OqToOjlfulYjK9VcrOyI.mft (raw, json)
Hash identifier: pYjfqyT66zAcyVBnmz6aLubtpspHkWaUHgCtmwsN9vA=
Subject key identifier: C0:82:60:AC:B7:D4:C1:01:5D:73:87:F7:04:F7:86:8A:59:B3:8B:71
Authority key identifier: 98:AF:E9:69:CF:0E:A9:3A:0E:8E:57:EE:95:88:CA:F5:57:2B:3B:22
Certificate issuer: /CN=98afe969cf0ea93a0e8e57ee9588caf5572b3b22
Certificate serial: 0199221F33C8D9404CCAA3E0F9A516986FBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
Manifest number: 0496
Signing time: Sun 07 Sep 2025 03:01:34 +0000
Manifest this update: Sun 07 Sep 2025 03:01:34 +0000
Manifest next update: Mon 08 Sep 2025 03:01:34 +0000
Files and hashes: 1: 022L9fV8F1ZZ2EE1EuaAsn4eywo.roa (hash: XmLPJO8dC104vud5SObyJBz1K1qN+7X4uqFqIhLIBZ4=)
2: mK_pac8OqToOjlfulYjK9VcrOyI.crl (hash: LoQqMokGA75WDD4i2n0ioRELowdHCFb8eAT4Q/Zif5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:33:c8:d9:40:4c:ca:a3:e0:f9:a5:16:98:6f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98afe969cf0ea93a0e8e57ee9588caf5572b3b22
Validity
Not Before: Sep 7 03:01:34 2025 GMT
Not After : Sep 8 03:01:34 2025 GMT
Subject: CN=c08260acb7d4c1015d7387f704f7868a59b38b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7e:a3:d4:41:50:79:2f:ac:f6:fc:3e:4c:94:
60:ab:1c:b4:33:e5:71:3c:40:d9:21:ed:a3:fa:7f:
fc:91:78:92:d2:99:ea:c2:9f:48:e9:ff:c4:62:68:
eb:b0:54:00:01:a3:cb:ed:3d:d6:27:80:d1:3d:39:
5d:ab:36:f2:c4:72:38:12:47:e2:39:5c:3b:1a:12:
bb:db:2b:fe:e3:58:fe:97:d3:c9:d7:f5:f5:1b:bb:
39:87:04:6c:7f:61:63:38:f3:de:08:4d:51:cc:a8:
93:64:6f:51:ac:9a:63:50:02:10:c3:96:ab:a5:01:
7d:9d:27:48:6c:bd:5f:27:23:d5:69:b5:ef:7a:fe:
6c:cf:58:7c:ef:9c:ae:6f:05:b1:9b:5e:d1:b9:71:
7f:cf:13:3e:42:bf:6a:4c:ef:42:58:57:9b:1e:b3:
f1:85:25:ac:cb:b2:52:e6:c2:bb:77:d9:38:9f:77:
de:15:e8:4c:44:c3:80:7e:a4:bd:a8:37:27:ae:29:
9d:95:41:ca:71:ed:28:a9:4d:3b:93:4a:05:0b:00:
55:45:07:4a:d5:18:9f:1b:25:04:3b:b0:09:48:bc:
d6:66:bb:fa:26:2c:a1:31:de:14:a2:05:6d:65:91:
4a:24:a7:00:a9:9e:90:9b:15:d5:4a:98:67:74:93:
5f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:82:60:AC:B7:D4:C1:01:5D:73:87:F7:04:F7:86:8A:59:B3:8B:71
X509v3 Authority Key Identifier:
keyid:98:AF:E9:69:CF:0E:A9:3A:0E:8E:57:EE:95:88:CA:F5:57:2B:3B:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:0e:99:1b:85:de:cd:37:b1:c6:69:f3:df:55:f2:62:23:88:
09:95:d0:da:7c:ac:e7:95:4f:c8:62:08:3a:0c:38:a4:2c:36:
c9:61:86:94:7c:6b:74:55:e8:9b:3d:42:b2:f6:c1:83:a2:14:
58:74:7a:66:3a:36:78:b4:73:a5:c1:22:71:8d:8d:5b:a9:dc:
d8:6e:b3:8b:80:12:ff:56:fe:7a:aa:ea:a0:7b:3a:b4:d5:1d:
92:7a:2b:d1:48:89:49:ad:03:eb:e2:27:e2:6e:f6:24:a9:a8:
29:25:e9:2e:0d:c7:c0:80:a3:ce:f9:a2:36:ce:11:c8:cc:b9:
55:16:9a:2e:27:6e:59:42:1a:81:f0:f8:fe:bb:bf:ad:e9:62:
07:39:80:df:94:a8:34:74:3a:8e:60:08:92:39:83:4a:d3:51:
43:34:58:6a:18:2f:b4:af:1e:1f:3d:40:fb:37:33:a8:fa:ad:
be:b3:8f:fb:37:b7:1e:96:e7:5c:2c:18:49:f1:b1:3a:7f:83:
7a:6e:e0:45:c7:23:b0:78:71:e8:0e:a1:a9:0e:06:2c:e8:18:
a8:ec:eb:35:5e:62:3b:24:26:d0:68:ef:ba:a9:c9:22:62:f0:
07:7e:9f:d2:09:d6:bf:85:c4:13:60:69:07:69:04:a3:1f:7e:
74:67:30:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:23:01 2025 by rpki-client