Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
File: 0SIIZtpI4MfP--jHOjUcKkexpNs.mft (raw, json)
Hash identifier: e2gHno0yD/zhMvnwl33T1+bKK8kJit6nSMUCW6MaBwA=
Subject key identifier: 34:3D:07:89:5E:F2:54:01:A5:71:18:56:81:C2:6E:60:0E:7A:75:09
Authority key identifier: D1:22:08:66:DA:48:E0:C7:CF:FB:E8:C7:3A:35:1C:2A:47:B1:A4:DB
Certificate issuer: /CN=d1220866da48e0c7cffbe8c73a351c2a47b1a4db
Certificate serial: 019922FAF4D0F29DD58B408DFA4A66B96566
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
Manifest number: 03FA
Signing time: Sun 07 Sep 2025 07:01:35 +0000
Manifest this update: Sun 07 Sep 2025 07:01:35 +0000
Manifest next update: Mon 08 Sep 2025 07:01:35 +0000
Files and hashes: 1: 0SIIZtpI4MfP--jHOjUcKkexpNs.crl (hash: VI36hrS6k1bYUFOAV4Cn2TIzDMSZT74rPRPqlR3ykZ0=)
2: BtILLkhjQwKc-cBqSY27nFkJu8g.roa (hash: j7KTEXdiX1vJGa7Y4gsoM737n4p+uU95jozk1BXznCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:f4:d0:f2:9d:d5:8b:40:8d:fa:4a:66:b9:65:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1220866da48e0c7cffbe8c73a351c2a47b1a4db
Validity
Not Before: Sep 7 07:01:35 2025 GMT
Not After : Sep 8 07:01:35 2025 GMT
Subject: CN=343d07895ef25401a571185681c26e600e7a7509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e4:c9:7d:d8:e9:95:a0:9c:f9:76:fb:10:a1:
d0:b7:35:3f:9a:f4:9f:de:d0:53:a2:2c:bc:9c:7f:
9d:00:cb:71:a7:04:65:03:94:1c:94:9f:d4:57:21:
02:f4:5b:3d:e3:be:16:fc:93:31:72:ef:d3:d1:91:
1b:88:1c:bb:fd:4b:e0:3a:81:30:34:05:79:5e:95:
3b:24:ff:6e:d4:0b:92:9c:1d:29:1b:c0:89:ed:3f:
c9:a5:5f:8b:54:30:7f:a6:f0:92:0a:73:56:2d:87:
fc:ff:53:37:0d:8c:e0:71:98:c5:1d:68:01:70:0d:
db:11:e1:e7:45:4b:4f:d7:0c:19:7b:dd:86:65:1e:
4b:1b:a2:11:73:8e:a9:03:a1:4a:de:87:50:0e:7c:
49:8d:d6:2a:52:51:70:3b:48:d5:ec:5f:b0:20:ce:
5b:1c:35:ce:4e:f4:18:80:aa:ff:8c:6d:61:51:7e:
40:f1:54:c6:e4:0c:fd:70:e7:7a:29:d5:da:d8:6e:
4e:32:76:da:77:ae:01:4c:63:0d:b4:67:82:66:42:
ac:e6:e1:81:f3:16:1e:6e:d5:5c:d6:02:60:0e:1b:
e6:98:ee:42:9d:dc:cc:29:ad:b0:95:ed:4d:b2:78:
d1:c8:89:b0:88:61:b8:17:dc:bb:4a:db:90:c6:89:
51:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3D:07:89:5E:F2:54:01:A5:71:18:56:81:C2:6E:60:0E:7A:75:09
X509v3 Authority Key Identifier:
keyid:D1:22:08:66:DA:48:E0:C7:CF:FB:E8:C7:3A:35:1C:2A:47:B1:A4:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:8d:da:48:d6:bc:12:5e:0d:c3:4e:1b:b2:b1:0c:49:28:bc:
69:d2:d3:49:37:c7:ca:fb:a8:0e:f9:5d:17:b1:fa:c0:a9:cd:
9f:e6:f9:22:3e:2d:9b:0c:cf:42:f0:cd:d8:7c:47:da:e5:80:
08:a6:5d:f5:68:80:fc:c2:3b:1c:30:8e:f0:21:28:1e:ae:b6:
f9:77:75:8c:f3:d3:bd:8a:c6:78:6c:2b:89:8c:fc:b4:ec:be:
77:55:c2:07:bb:95:d1:86:a5:5b:f4:72:28:11:c9:40:88:a6:
7f:21:c8:2d:03:64:d3:ec:2c:59:62:3c:00:e4:af:29:5a:b8:
29:bc:6b:9c:98:85:0f:35:bc:5d:18:01:30:79:37:58:6c:a6:
43:03:a3:33:d6:39:3f:f5:86:3c:02:48:be:55:ec:f5:cd:44:
d1:88:04:3f:78:b2:20:44:f5:f1:b3:39:ce:de:c4:af:5d:5e:
7f:50:62:e4:69:d1:37:80:4f:39:43:82:0b:aa:b3:b7:f9:24:
b7:c4:1a:56:bd:a0:37:7f:eb:b6:40:46:cf:bb:57:b4:38:e7:
bc:2d:36:10:e2:cb:db:3b:62:8b:89:a4:46:50:31:c3:45:37:
1a:d0:42:5c:47:b3:e7:ea:93:7b:01:8d:be:d4:00:6a:94:ce:
6d:58:a8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:03 2025 by rpki-client