Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
File: m2JkjpE6NkDwMbY6a9krDijhOfs.mft (raw, json)
Hash identifier: +EZbQZvFm+aZaMe7tYwu8PQjk6fOyERmjgaUhKJONT0=
Subject key identifier: 57:F4:76:06:F5:D2:B9:CB:DD:8E:55:54:EC:AA:2A:76:5D:98:38:18
Authority key identifier: 9B:62:64:8E:91:3A:36:40:F0:31:B6:3A:6B:D9:2B:0E:28:E1:39:FB
Certificate issuer: /CN=9b62648e913a3640f031b63a6bd92b0e28e139fb
Certificate serial: 019922C3B1E0E639DF4DAE446CB937275DE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
Manifest number: 020A
Signing time: Sun 07 Sep 2025 06:01:14 +0000
Manifest this update: Sun 07 Sep 2025 06:01:14 +0000
Manifest next update: Mon 08 Sep 2025 06:01:14 +0000
Files and hashes: 1: GFs318vhhs43UeJYStMCcJcloVE.roa (hash: W8/O6hKTgxLPwLzEgTm/PKRsS6eSZm8+16PIQciHYr8=)
2: m2JkjpE6NkDwMbY6a9krDijhOfs.crl (hash: fatemTkRMITci8tzVS4aYTklgClBIx/9Hpt3nZyZFRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:b1:e0:e6:39:df:4d:ae:44:6c:b9:37:27:5d:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b62648e913a3640f031b63a6bd92b0e28e139fb
Validity
Not Before: Sep 7 06:01:14 2025 GMT
Not After : Sep 8 06:01:14 2025 GMT
Subject: CN=57f47606f5d2b9cbdd8e5554ecaa2a765d983818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:09:94:3e:f2:0e:c9:26:f5:6a:a8:f1:85:94:
30:2c:89:63:6c:0f:a8:fb:41:d7:4b:dd:9a:d7:16:
9f:bc:d3:2e:be:16:c7:80:4f:e2:6f:e9:82:4f:a0:
ba:c8:dd:ec:f6:9e:7b:88:03:a2:71:22:99:ac:90:
cb:3e:6f:c7:a8:be:4c:12:68:24:95:2d:5b:93:dc:
ca:07:45:1f:78:be:86:da:7d:2b:fd:4c:73:9e:4b:
6e:c0:89:b2:ef:71:6f:80:57:9f:7b:20:24:f7:a7:
04:b8:a2:d5:ff:90:41:ff:35:67:7e:de:66:97:da:
a3:b0:ce:8e:6a:45:81:c4:10:76:5c:d2:1e:75:63:
79:99:d6:3d:90:b8:99:72:cc:87:64:28:3f:e4:aa:
6b:e4:ec:17:e5:97:b7:0f:34:63:2a:72:46:f7:f3:
65:48:c7:96:47:e5:33:e6:93:42:f3:7f:fe:c1:88:
f5:0b:15:44:51:3f:29:23:4a:27:fe:99:25:37:67:
83:9d:27:21:e8:90:9a:8a:a9:24:0a:c4:ed:7f:65:
37:3a:1e:8a:90:0b:0a:d9:2e:4c:8e:40:35:88:3d:
15:77:08:64:cf:43:81:c0:3c:79:11:e1:88:8d:c9:
d8:c8:4a:1d:65:f2:4b:f1:3e:8f:a3:9a:50:19:14:
bb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:F4:76:06:F5:D2:B9:CB:DD:8E:55:54:EC:AA:2A:76:5D:98:38:18
X509v3 Authority Key Identifier:
keyid:9B:62:64:8E:91:3A:36:40:F0:31:B6:3A:6B:D9:2B:0E:28:E1:39:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:0f:4d:2b:1f:d9:66:46:77:40:7c:5e:93:82:f2:3d:64:86:
dc:bc:a3:19:27:c1:37:70:25:a7:fd:e2:a1:41:2f:11:6a:57:
c8:89:db:11:3f:85:34:04:17:77:7d:b6:eb:e5:74:a8:cf:a7:
fb:4c:ef:5f:5d:3d:e9:83:d0:b8:87:5d:fd:6d:26:30:a7:0a:
33:18:87:cb:a2:fa:67:90:e7:00:d0:21:4a:7f:2a:91:db:b6:
48:3d:08:13:ec:6c:f9:0b:dd:a1:1c:74:58:1e:d7:b6:8d:7f:
c3:53:c8:01:b2:a2:db:71:a1:31:4f:eb:ed:93:e6:79:78:1a:
9d:35:60:28:fd:a2:84:d2:14:6a:84:a6:8c:b9:e8:0b:b7:ba:
85:6e:ea:2e:01:13:5d:5e:41:87:18:68:b1:84:be:c8:4c:7e:
e0:fb:8c:b0:36:ad:3a:d3:7e:99:0a:f1:0e:d2:60:30:32:cb:
2a:f0:71:71:28:50:bd:ca:aa:61:5a:97:82:e9:de:8d:a6:dd:
14:40:fd:41:a7:db:09:a9:ee:b4:75:37:31:00:e6:8b:ff:ae:
7a:c5:f8:13:97:36:6d:64:1f:b9:85:f6:65:89:56:bb:c2:e3:
f7:26:29:3a:1b:8b:7a:a1:70:df:8f:2a:b7:a4:be:61:1a:54:
be:0c:00:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:36:45 2025 by rpki-client