Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
File: FLcYAN3cSX9g-e23gzyUlzq33Bw.mft (raw, json)
Hash identifier: 4J3obT6xQNJhTuK7QP0nR4BKXKPqAgHenbq6NBdT/dk=
Subject key identifier: D1:E7:44:AB:90:82:97:5B:4D:27:C0:D8:DB:3A:57:95:64:B6:FB:F3
Authority key identifier: 14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
Certificate issuer: /CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Certificate serial: 019935377313F700F234FCB9B37B4272D527
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
Manifest number: 1567
Signing time: Wed 10 Sep 2025 20:00:50 +0000
Manifest this update: Wed 10 Sep 2025 20:00:50 +0000
Manifest next update: Thu 11 Sep 2025 20:00:50 +0000
Files and hashes: 1: FLcYAN3cSX9g-e23gzyUlzq33Bw.crl (hash: 3fclf/uRI/5EP5R27lgeUsre/0wBs4xQPCNMtpGUiBg=)
2: jh-TOxpxIUBWeRHqyE_TsQ3xZPw.roa (hash: h4140lmsN13+jNtLubDuYn8kTL6T4/sAQ4MD0yMdaVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:37:73:13:f7:00:f2:34:fc:b9:b3:7b:42:72:d5:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Validity
Not Before: Sep 10 20:00:50 2025 GMT
Not After : Sep 11 20:00:50 2025 GMT
Subject: CN=d1e744ab9082975b4d27c0d8db3a579564b6fbf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6d:93:2a:3d:10:88:fa:b5:6d:1e:eb:b0:f9:
e7:7d:4b:f8:a8:11:01:65:29:4a:26:4b:98:86:33:
65:eb:ad:19:83:4e:c6:97:55:8b:e6:f9:7e:c7:09:
5f:a8:1a:b1:77:46:11:52:e2:20:ce:ca:2d:40:93:
d3:cc:8e:6d:6f:bb:94:e9:8a:34:83:32:55:7b:2f:
30:8b:e7:d1:eb:31:78:bf:6b:27:e1:66:55:5e:f6:
85:58:86:7b:01:56:89:10:8d:60:74:5a:b2:2d:7e:
7c:0d:33:6e:f6:97:79:b7:57:cf:37:16:7c:ec:a7:
06:b5:94:d9:47:6f:b0:21:d1:e8:6f:46:26:45:5b:
d4:1f:54:17:c6:61:b3:18:24:b0:e7:44:75:20:32:
0a:cb:bc:ee:56:9b:78:c4:db:66:e0:34:67:94:18:
0d:1d:07:ab:01:fa:ef:67:cf:f2:b2:c7:f7:7c:47:
45:9c:9a:ac:a8:df:41:f2:0d:2b:fa:a7:5d:a9:55:
39:da:3c:ed:01:ef:cb:7f:4f:17:b3:28:4e:c1:bd:
b1:6f:15:91:41:10:22:6f:c9:bf:de:9a:de:a0:65:
4a:fc:27:cb:81:37:9b:a6:a6:61:33:d4:f6:d4:45:
c9:1c:41:e0:12:95:6a:9b:2b:e3:c7:0e:99:dc:0a:
85:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E7:44:AB:90:82:97:5B:4D:27:C0:D8:DB:3A:57:95:64:B6:FB:F3
X509v3 Authority Key Identifier:
keyid:14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:b9:5d:ec:d8:59:35:7a:4b:4f:b1:a2:62:4b:50:d6:9f:d5:
e3:0c:0c:8d:c9:8f:ef:30:23:aa:0a:57:99:c1:1b:f7:2d:e1:
ba:3b:30:46:dc:c9:39:43:50:48:23:3c:1c:f9:2e:e4:42:a9:
9f:3d:c2:f5:43:16:e7:ab:d8:c7:8b:46:dc:ce:f5:d5:61:71:
d4:de:03:a0:b3:c4:52:18:e4:a0:e6:c0:90:47:51:dc:74:17:
91:be:a9:7c:c6:20:4e:b2:d8:86:3a:da:aa:24:06:d7:1a:ad:
00:35:1d:26:6a:fe:e3:8d:2a:c5:01:c4:8e:8b:d6:5f:7c:cb:
af:e9:e8:45:b8:15:80:cd:61:59:c4:1a:11:53:5b:9a:31:7d:
b7:ed:0d:51:84:e9:ee:26:45:dd:d2:7c:59:ad:94:8b:5c:5b:
15:82:b4:42:fa:e9:4c:22:b4:61:78:75:fe:49:e2:12:93:cc:
ff:2f:13:85:2f:a1:dc:de:3b:0b:3f:f0:7d:06:01:a0:b2:88:
2b:97:b0:86:38:6e:30:fe:a4:ee:c1:40:d2:80:ff:6d:4b:11:
dd:9d:86:ad:04:a4:77:a5:58:64:2e:2a:7a:55:ef:e5:6c:b5:
b7:ab:83:f9:65:31:73:66:c6:77:67:b7:e2:fa:4f:23:16:b8:
8d:c8:40:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 22:59:25 2025 by rpki-client