Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
File: j32Qq83eC8bwvKryHOw6TyrPrk8.mft (raw, json)
Hash identifier: uy5mjR9PZD7Y0Y4xnUGxo12E7JNBRGcaK/ucrJfjmmo=
Subject key identifier: BD:F6:27:67:B8:1D:43:78:A2:4D:16:81:92:72:E0:BB:79:02:32:64
Authority key identifier: 8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
Certificate issuer: /CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Certificate serial: 01992255A45CBF218DB0441EC2681B0638D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
Manifest number: 1679
Signing time: Sun 07 Sep 2025 04:01:01 +0000
Manifest this update: Sun 07 Sep 2025 04:01:01 +0000
Manifest next update: Mon 08 Sep 2025 04:01:01 +0000
Files and hashes: 1: Ha4iqiemRVs4K0apcX26aGgxEQM.roa (hash: Y9w0WT6CR9hlG1wNToGxOj1Wt0I5gYiZH++6mqrNiy0=)
2: j32Qq83eC8bwvKryHOw6TyrPrk8.crl (hash: UAbGU9fNNjDux/+peqjztdtupK/QNKr0hVnIjLCawnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:a4:5c:bf:21:8d:b0:44:1e:c2:68:1b:06:38:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Validity
Not Before: Sep 7 04:01:01 2025 GMT
Not After : Sep 8 04:01:01 2025 GMT
Subject: CN=bdf62767b81d4378a24d16819272e0bb79023264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0c:a1:c3:ab:7f:4d:fe:45:4d:0f:1d:54:f1:
03:b9:90:2b:21:30:a0:fc:8c:f2:55:e5:34:ad:50:
d7:41:ac:49:14:f2:da:e5:d0:09:41:40:3f:5e:a5:
8d:8b:d0:d1:03:09:bd:63:1b:25:a2:9e:e7:89:33:
21:b6:b8:b2:b1:7a:29:9e:4d:00:7c:b7:9c:31:80:
7f:8a:4a:17:c5:a3:01:4e:b1:0a:b4:e2:14:c6:46:
6d:62:b7:24:b5:55:41:60:9c:79:35:5b:a3:79:cb:
35:c9:ec:ed:9a:81:19:ba:c7:b5:bb:ab:31:2e:84:
a1:41:d0:c1:05:65:a1:f7:70:e9:31:9b:16:72:ed:
a8:ff:4c:4e:ce:69:c3:10:63:de:fb:1a:ac:7e:ae:
44:ae:28:6e:c2:66:61:9f:aa:26:1d:74:37:0c:ba:
dc:51:a2:a9:8d:b1:5c:10:bb:9c:b7:c9:44:d1:de:
73:1e:df:b1:c1:81:38:fe:a3:f4:64:64:f7:0e:7f:
22:54:d6:4b:cc:1c:63:1b:78:d0:36:a0:76:b6:cc:
94:57:66:1b:a8:cc:c3:32:15:42:48:9f:5a:6e:6b:
67:03:f7:24:c5:f3:34:c0:23:a4:5c:bd:58:da:b7:
8e:93:5c:9d:cd:0c:69:0c:82:f7:af:90:d1:92:e7:
95:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F6:27:67:B8:1D:43:78:A2:4D:16:81:92:72:E0:BB:79:02:32:64
X509v3 Authority Key Identifier:
keyid:8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:52:4d:9e:6c:29:bf:82:1a:5e:b2:2b:ee:ed:d1:ea:25:b0:
a8:46:cc:4f:2e:1d:71:41:28:8d:9d:dd:77:c2:f8:5a:1a:88:
98:57:80:ef:48:8a:dd:5b:f2:21:92:78:a2:d5:b2:e3:8d:c6:
18:6b:e9:b7:92:16:da:1f:91:88:5c:be:9f:d6:9c:c9:f5:e8:
a1:19:41:34:5e:17:d6:12:ce:88:3f:15:d4:03:38:7f:4c:64:
53:a4:76:dc:07:df:35:71:b9:08:a6:56:fe:f9:81:00:93:f7:
a9:e3:16:7f:06:24:75:d7:04:37:65:87:d2:c4:a7:7e:47:33:
6a:61:ed:70:c6:fc:be:9e:33:70:06:9c:e4:87:ab:af:17:62:
e8:50:61:83:37:19:75:1c:91:5d:ee:04:ac:f1:fa:f6:d5:dd:
2d:e4:04:cc:55:0b:94:95:43:b5:67:9b:5a:cf:7c:d4:12:53:
e3:98:e3:1f:30:6c:28:63:08:af:96:b4:9d:fb:bf:92:30:da:
01:2d:53:4f:3d:fd:83:9d:38:0a:8d:3e:cd:d1:12:6e:8d:1e:
a2:ff:2b:12:1a:7b:23:1f:a5:8e:db:13:7b:2e:33:51:6b:f4:
77:16:63:55:1a:87:e9:11:8b:1c:69:8f:bd:55:2b:58:97:7d:
f0:ef:3d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:25:58 2025 by rpki-client