Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File: fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier: U5MH6W412s5gTo1wJfOPu9QRSyhjH5RqsUJuMfgEk74=
Subject key identifier: 39:E3:60:B2:B9:4B:23:67:26:ED:2B:21:9F:A5:FA:F6:0C:60:5D:07
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 01995FEB20292AD1627C52A9794A550CF680
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number: 126C
Signing time: Fri 19 Sep 2025 03:01:08 +0000
Manifest this update: Fri 19 Sep 2025 03:01:08 +0000
Manifest next update: Sat 20 Sep 2025 03:01:08 +0000
Files and hashes: 1: 8L2O5GlhNp_lrqBMRrzhkCl_FU4.roa (hash: MpUCXGi4iU4O/s2W0Ri/evmaR2tEREi873mtgHCWuJE=)
2: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: RapnqlEsFglrbZHHdVwBgWOKKcNQJmg/tX9kvBVb8xI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 03:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5f:eb:20:29:2a:d1:62:7c:52:a9:79:4a:55:0c:f6:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Sep 19 03:01:08 2025 GMT
Not After : Sep 20 03:01:08 2025 GMT
Subject: CN=39e360b2b94b236726ed2b219fa5faf60c605d07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e3:2e:ea:ce:26:35:2b:36:4e:4c:db:3c:6f:
00:8f:fb:c5:0c:e8:df:1a:c8:22:8b:eb:cd:ba:c9:
da:19:63:cd:9e:33:4d:59:08:64:c5:c0:1c:fe:9c:
af:6b:71:a1:41:0a:b1:9b:a4:bb:a5:50:fa:6c:bb:
2d:a6:e5:50:a2:75:b8:b5:f1:71:d9:6a:a8:4b:76:
9f:01:e3:22:10:9c:9b:b4:d6:e0:d8:a5:9c:3c:53:
24:73:0b:94:0e:01:5b:44:49:69:57:a6:37:26:de:
39:f6:47:03:83:b5:18:4c:cc:9e:2b:5b:d1:f4:4d:
84:3c:1c:c5:df:87:4a:ba:85:55:76:c7:01:5a:fc:
ad:f2:0e:09:a7:85:5d:94:5f:02:c8:c1:a8:a3:37:
c2:5e:cd:4d:93:73:62:90:7c:a0:5b:92:2c:47:24:
de:6b:e0:c7:5f:57:42:bf:37:60:95:f4:06:d8:6a:
b1:81:04:4f:c9:79:03:49:7b:4b:e4:ec:67:00:c4:
49:1b:e0:0f:85:91:45:94:f7:95:6e:8d:67:2d:a3:
43:8d:12:93:83:7c:be:27:e0:41:51:39:f1:87:98:
b9:b4:f7:c9:35:60:5b:56:4c:cd:4b:bb:37:c2:d0:
81:7f:f3:56:41:c5:58:e3:0b:8a:6a:b4:80:a5:71:
b2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E3:60:B2:B9:4B:23:67:26:ED:2B:21:9F:A5:FA:F6:0C:60:5D:07
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:99:93:13:b0:f9:81:9f:18:ec:d9:96:e3:1f:d4:74:9a:69:
a6:dc:64:f7:38:95:c6:f1:7f:ea:75:73:47:fc:9d:df:27:83:
95:95:22:25:35:89:57:6d:62:83:20:67:36:5e:71:e3:8c:ff:
a4:a3:c1:7c:86:b8:fb:cf:cd:71:5d:86:74:02:35:89:de:18:
b7:24:19:2a:80:bd:1c:00:8e:1a:ab:9b:af:4c:ab:64:8a:60:
e5:1a:0c:15:5a:66:31:35:d0:23:48:a8:d7:26:27:2f:29:63:
ee:95:30:c5:f6:63:6b:88:fe:bf:59:1f:f8:2d:cc:67:b7:86:
1f:ca:14:4e:02:68:75:5d:aa:e8:e9:08:19:5c:22:58:fb:ee:
67:ce:a6:8e:94:70:0b:83:e5:bf:f6:e2:87:d4:b0:89:32:26:
73:a9:e4:a0:ee:70:dc:6b:97:38:0d:f4:56:73:88:ee:e0:6c:
6d:96:17:59:df:e7:b0:1d:7d:2e:77:dc:15:3d:d4:30:6c:af:
70:96:f5:37:7b:06:10:d2:2f:a4:73:fe:fc:76:41:a2:3d:6b:
5d:fc:d0:94:53:f4:40:42:5f:ce:0a:c6:eb:4b:c7:ad:43:ac:
98:0d:70:28:f9:c0:23:39:da:07:c7:36:3c:4f:22:a7:1c:62:
ad:58:ba:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 13:11:55 2025 by rpki-client