Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
File: p7He9pWIXq3lzMi0vioCuxYHnpw.mft (raw, json)
Hash identifier: EevT/+VJ5ZEoO7L9FLJftu0H9oRDF6ACYB5iSPYW1QY=
Subject key identifier: 27:22:48:D4:91:41:AE:DD:E5:5B:C7:DD:24:9E:9B:54:72:07:20:6A
Authority key identifier: A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C
Certificate issuer: /CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c
Certificate serial: 0199228C515CA72067379B290836B8A41323
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
Manifest number: 08C2
Signing time: Sun 07 Sep 2025 05:00:45 +0000
Manifest this update: Sun 07 Sep 2025 05:00:45 +0000
Manifest next update: Mon 08 Sep 2025 05:00:45 +0000
Files and hashes: 1: 2ZXONPsq8Wq-C73Y4ZOdG8CP47o.roa (hash: 23qtSB8U1yvtJIhVOx0ex1wgA9IS3rvYP3HTfvaa5cc=)
2: p7He9pWIXq3lzMi0vioCuxYHnpw.crl (hash: DzZhx83l1ENEnT+kllRMLEzEdN6eC5Zasp6EekvOxVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:51:5c:a7:20:67:37:9b:29:08:36:b8:a4:13:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c
Validity
Not Before: Sep 7 05:00:45 2025 GMT
Not After : Sep 8 05:00:45 2025 GMT
Subject: CN=272248d49141aedde55bc7dd249e9b547207206a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b3:05:61:32:26:5f:64:4a:6c:5b:c0:10:8d:
cc:f4:6c:75:f4:f1:5a:63:c3:bd:c6:a5:f4:23:aa:
eb:d8:3c:19:57:f5:3f:97:0e:b1:0d:0a:9d:bb:83:
c9:93:04:4f:65:9b:df:89:40:3e:8b:78:a5:19:e2:
9a:36:19:65:5f:f4:6c:6a:d1:0e:b2:67:56:19:ad:
18:8a:e9:7d:94:6d:ae:d7:c5:f4:3b:0f:b9:ea:ab:
35:ef:93:61:9b:b4:1a:76:31:fd:05:84:4a:f4:93:
a2:22:23:f7:7a:7c:9c:89:33:5e:2a:c5:20:af:bf:
c9:a0:aa:ca:c9:a3:1a:7f:2b:bd:dd:15:52:33:5a:
7e:24:3a:b7:ed:27:04:48:25:26:12:72:03:1a:fd:
dd:68:6d:c7:02:09:b9:b3:bd:2b:aa:c2:cd:24:c7:
37:b0:14:1d:68:e7:12:f4:a6:54:84:37:f6:eb:d6:
13:76:a4:13:62:75:96:6a:c0:1f:13:40:46:42:30:
97:67:40:70:df:69:58:fb:e0:f1:24:fc:4b:ea:87:
c7:eb:be:38:fd:5c:8a:21:08:e2:db:ff:f2:79:5c:
c4:df:2d:6d:01:75:62:e8:86:35:08:64:14:15:27:
9b:d7:c8:3f:df:84:b9:df:37:bd:d7:04:62:10:3b:
ae:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:22:48:D4:91:41:AE:DD:E5:5B:C7:DD:24:9E:9B:54:72:07:20:6A
X509v3 Authority Key Identifier:
keyid:A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:72:c9:58:70:f8:82:aa:c2:8a:d2:eb:04:12:da:b9:cb:45:
33:17:b4:34:67:12:14:43:21:04:f4:5f:de:93:f7:fc:a5:e2:
d5:81:95:70:1a:4c:ba:96:a2:1e:8a:01:eb:1c:76:f0:3a:5c:
8f:5d:ea:f3:b2:74:dd:94:87:48:e3:d1:13:c8:83:85:cb:72:
ea:5b:66:3e:64:26:3a:45:95:a9:f6:74:21:da:39:af:93:2c:
28:58:f2:3c:6a:c7:c6:2a:1d:38:ba:e3:22:24:98:33:73:a3:
bb:1a:e0:b4:00:88:32:24:5e:d8:6f:b2:7a:c3:8c:07:4c:90:
72:73:67:49:0f:18:79:2b:75:af:4e:d4:08:1f:a0:ba:40:40:
47:e9:18:81:c7:ae:18:e4:25:6b:18:62:a3:25:fc:8e:8a:51:
11:9f:ee:cc:c3:77:29:49:20:50:94:4a:f3:e8:05:6e:dc:31:
08:c3:b9:e6:85:09:d0:90:67:d3:1e:e4:d2:0d:75:5f:d4:3d:
1a:f0:ab:10:c2:2d:1c:1b:78:19:38:e8:ae:5d:52:8b:70:29:
d6:98:22:51:08:2b:02:1b:28:4f:d1:0c:c1:ae:d6:25:03:7c:
34:33:0a:62:a1:67:61:56:ba:d1:01:57:87:cb:f3:7a:3b:f1:
8f:e7:bb:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:43:36 2025 by rpki-client