Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json)
Hash identifier: S1H5pPX4SpniRLZIphlRzZgc6OKEWvO2PtaNJZmX+bg=
Subject key identifier: 26:25:46:A9:AE:D4:26:6A:B5:B2:F6:F2:B0:5B:B8:81:C6:86:52:3F
Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Certificate serial: 019922C2F5BC4B4C885282B364D565C5DE63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
Manifest number: 04A2
Signing time: Sun 07 Sep 2025 06:00:25 +0000
Manifest this update: Sun 07 Sep 2025 06:00:25 +0000
Manifest next update: Mon 08 Sep 2025 06:00:25 +0000
Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: Y6mY4JFIP5vGMhokwRldCKJ/nqG5UeQJsScCUTtRODY=)
2: tavXsXu7Wm_kIdKnzfVPzxktMGQ.roa (hash: PDEUyoKVmJLpE4EXJZCm2eA6jcMg8DukO+sjxPMBeZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c2:f5:bc:4b:4c:88:52:82:b3:64:d5:65:c5:de:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Validity
Not Before: Sep 7 06:00:25 2025 GMT
Not After : Sep 8 06:00:25 2025 GMT
Subject: CN=262546a9aed4266ab5b2f6f2b05bb881c686523f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4f:38:88:3f:05:b0:a1:e3:27:8c:33:c7:fc:
fb:3f:70:ba:be:27:6f:52:e0:79:ca:14:0f:ca:3f:
92:04:0f:77:83:8d:5b:08:68:0f:b8:7c:a7:25:6b:
5d:7a:18:89:7f:5c:60:c7:af:96:54:7d:b6:fb:e4:
26:3d:e2:00:98:1e:78:30:d3:12:8f:f3:00:77:84:
62:ba:4b:73:e0:42:4c:3b:b9:03:5b:99:4c:b8:f1:
9a:ad:bf:ba:38:37:d8:cb:b2:34:22:bd:6d:3b:45:
8c:70:51:37:4c:27:91:18:d9:68:bb:0a:65:3f:ae:
ea:ea:68:e4:3a:16:54:d3:31:72:d5:5e:32:c4:c6:
bc:8c:c2:65:43:9b:87:3e:39:0f:29:62:ef:e4:d3:
3b:e2:44:31:87:f0:9f:6f:00:e4:4c:cf:31:77:66:
e4:0f:52:46:31:aa:d2:b7:f5:19:d8:a5:98:f4:bc:
d6:39:5a:76:6e:30:99:61:fa:11:09:0e:32:05:f3:
c3:0d:13:f5:8f:c6:50:37:55:4a:9a:43:13:7f:a2:
46:73:b4:b6:63:c4:ca:38:ec:1c:19:71:ed:f9:9c:
9c:d5:7a:35:e8:d1:97:ff:1d:a9:2f:30:e7:fb:f8:
f8:4f:ab:f5:07:72:b5:52:32:17:7d:75:92:4a:ee:
9b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:25:46:A9:AE:D4:26:6A:B5:B2:F6:F2:B0:5B:B8:81:C6:86:52:3F
X509v3 Authority Key Identifier:
keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:2b:85:c9:5f:62:0a:f9:10:cf:18:58:49:b8:94:b9:b6:55:
00:3f:cd:7a:6b:8f:75:e5:9d:16:cd:47:52:9e:e8:bc:47:60:
a9:47:a1:f0:c1:7e:ce:20:da:2f:18:57:25:e7:cc:31:3a:4a:
36:c6:e2:f9:38:81:86:72:f2:3d:50:54:33:5d:b0:ab:05:0a:
05:b5:41:5f:e2:01:02:61:03:1c:c2:31:1e:4c:fc:66:08:c1:
72:ac:67:bf:47:cc:d6:b3:18:02:8b:5b:4b:38:b9:57:f5:9d:
8d:3b:f4:1c:b3:75:08:3f:cd:2c:c6:59:0a:e1:9e:a4:fd:9b:
c3:29:7d:f3:a5:e2:43:b7:8d:4f:ff:22:3a:73:e3:9c:82:c2:
32:30:e0:8c:d6:af:c6:c0:f5:45:11:a8:0e:8b:ba:a8:cc:e6:
dd:71:e4:ac:96:3b:bb:e1:3f:91:6f:c5:93:42:b7:9e:ca:41:
4d:fa:3b:41:99:55:71:a2:22:c2:b8:9b:bc:07:f1:91:9a:4f:
c2:94:b5:36:74:ef:e3:1e:5a:e3:4a:65:2f:6c:22:08:f2:c8:
57:df:d1:23:99:1f:81:93:13:f7:30:57:ff:98:42:4d:fe:07:
ad:65:4b:aa:93:91:16:ed:68:9f:9f:dc:e0:3e:6e:54:73:a3:
4b:4f:11:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:08:23 2025 by rpki-client