Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
File: 2671wyvqS1TRfiQbXMyvB7wKjuk.mft (raw, json)
Hash identifier: XpVjdCAfonfefdXQZS2ZgDg3XjYAmXBDP1h5l7uTexo=
Subject key identifier: 09:5F:A8:A7:97:51:09:01:AE:41:BA:03:5C:32:20:D1:BB:09:27:2A
Authority key identifier: DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
Certificate issuer: /CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Certificate serial: 019922C3B1FF2018AE76DBFFA76F7B43139D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
Manifest number: 0FEB
Signing time: Sun 07 Sep 2025 06:01:14 +0000
Manifest this update: Sun 07 Sep 2025 06:01:14 +0000
Manifest next update: Mon 08 Sep 2025 06:01:14 +0000
Files and hashes: 1: 1K5S67uusJJll8Ab0hq1pL5liKA.roa (hash: StmRzvzcRi3NdAfCMsQ2aiXFRAlDcm1+BCF0RfR6JW8=)
2: 2671wyvqS1TRfiQbXMyvB7wKjuk.crl (hash: w+4r2wX+1q3soEFAlYK8SkEpBy6AxEgcd1c/UAbjLOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:b1:ff:20:18:ae:76:db:ff:a7:6f:7b:43:13:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Validity
Not Before: Sep 7 06:01:14 2025 GMT
Not After : Sep 8 06:01:14 2025 GMT
Subject: CN=095fa8a797510901ae41ba035c3220d1bb09272a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1f:cc:e1:1a:9b:cc:7c:63:50:8c:74:cb:cb:
14:bc:41:4d:a0:2a:5a:96:63:40:b8:0c:37:81:c8:
6d:37:11:dd:58:7f:e3:8b:05:c1:3c:94:d7:b8:81:
96:a0:e4:8e:b9:ce:25:5b:94:6b:7f:48:70:df:ed:
25:bf:b1:34:63:3b:c5:8a:99:38:38:08:75:54:bc:
dd:de:a4:14:d6:8c:cd:ef:e0:5e:4d:90:87:45:98:
e5:e8:07:4f:4f:15:85:02:64:39:4c:8b:66:34:4e:
11:b9:61:ff:e7:e9:d3:1f:c5:4c:04:43:ea:0f:c0:
5c:a6:ce:f4:2f:22:a7:41:b9:3a:76:79:88:c7:98:
a3:ab:8d:53:e8:f8:32:8a:84:5e:4b:33:1a:b1:d3:
45:ec:74:b5:4d:9a:dd:c6:b1:7b:6d:c2:91:71:ec:
d2:40:5d:e2:7b:a7:1c:ee:4c:5a:0f:4c:44:0c:36:
19:7b:c9:a3:de:de:1d:a7:73:f1:90:b3:e1:b6:3f:
32:7f:9d:54:b0:09:5f:cb:84:57:23:f4:5b:6c:06:
3a:ab:09:e7:bf:01:74:9f:e4:32:8e:ae:ea:30:7f:
c7:ed:3e:9c:ba:82:e5:22:88:df:2e:31:77:d6:ce:
77:2e:4c:77:4b:28:f7:7e:50:ca:21:58:7f:20:23:
e0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:5F:A8:A7:97:51:09:01:AE:41:BA:03:5C:32:20:D1:BB:09:27:2A
X509v3 Authority Key Identifier:
keyid:DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:ae:5f:bf:22:cb:63:a3:07:4e:33:26:42:72:ca:c1:11:ee:
fe:97:fb:f4:81:a3:31:84:b3:e7:98:a3:81:bc:d4:e3:5e:23:
cb:cd:9b:0f:df:2c:55:a9:85:fc:20:9c:ba:b9:33:68:22:b4:
2d:5e:c9:c0:0b:7d:3f:43:48:33:c6:b1:15:fe:b0:a7:c8:dd:
4a:04:fe:35:c4:c4:ea:5d:5d:33:b8:59:c2:b6:d8:9c:91:80:
27:88:06:d8:25:fc:b3:0c:f3:57:0e:fe:99:1a:14:17:b2:7c:
6f:0a:2f:89:af:3d:6b:cd:73:00:6e:f2:64:39:a9:ce:11:a9:
f9:4a:d0:f0:26:c1:c3:4c:60:82:f0:d0:c7:c5:07:9c:77:b3:
69:75:6a:91:b4:e4:8a:1d:de:ab:94:65:1f:56:73:39:ee:5c:
43:e2:cc:35:5e:f7:52:f4:e2:d3:62:1b:2d:3c:55:ef:62:8d:
26:65:2a:c7:2c:03:a7:5d:64:10:9f:ba:5d:da:39:c5:72:fe:
cd:a3:c9:54:83:c5:15:3c:b1:16:4a:fb:b8:d5:ff:7b:0e:36:
bb:8d:14:b8:95:a8:f0:21:c1:f2:a2:72:1c:9c:36:01:78:cd:
c2:4e:17:12:5f:9b:a5:3e:a2:40:10:40:b6:f0:97:d7:e5:3e:
7b:ff:bc:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:22:47 2025 by rpki-client