Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
File: rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft (raw, json)
Hash identifier: evt0TTxNihbRs4chzErN0EllTO811eULuSV77sXSorc=
Subject key identifier: E8:2D:93:71:58:4F:99:EF:FB:F2:1C:D6:82:79:B0:80:5A:9F:58:2C
Authority key identifier: AC:9A:51:BE:A1:B5:70:FF:A7:2D:9C:52:D1:A5:18:C2:4B:C7:8C:02
Certificate issuer: /CN=ac9a51bea1b570ffa72d9c52d1a518c24bc78c02
Certificate serial: 0199225576F269C9F5A18013E04F36AD68E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
Manifest number: 128F
Signing time: Sun 07 Sep 2025 04:00:50 +0000
Manifest this update: Sun 07 Sep 2025 04:00:50 +0000
Manifest next update: Mon 08 Sep 2025 04:00:50 +0000
Files and hashes: 1: rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl (hash: XnrJlarPpPJTDZSFZHDEQ0dv+SNPmSnl+NFkFoehJMg=)
2: w5lUFfISkdR1rbXpw9EFPEpBgSE.roa (hash: aLxhVjIpLB1JtYTTNVzOUaAGXHTvMRlaiMUbkJdp7PY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:76:f2:69:c9:f5:a1:80:13:e0:4f:36:ad:68:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac9a51bea1b570ffa72d9c52d1a518c24bc78c02
Validity
Not Before: Sep 7 04:00:50 2025 GMT
Not After : Sep 8 04:00:50 2025 GMT
Subject: CN=e82d9371584f99effbf21cd68279b0805a9f582c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7c:94:1e:6f:29:93:26:ab:ba:81:b0:f4:1c:
77:5f:55:6b:23:d2:7e:37:46:6f:33:96:e0:8c:38:
2e:1e:5f:92:f8:23:8c:1b:2b:1b:ca:2b:74:3d:10:
cc:45:32:25:f0:1e:80:9c:3b:9f:9d:0b:37:64:b5:
1c:14:e2:f0:63:a5:41:d0:76:91:55:f0:2a:b2:51:
5e:cb:18:11:6f:5a:76:98:88:6c:f0:aa:13:20:64:
9d:c9:6a:dd:40:55:9a:15:c2:8b:2c:5c:37:d9:3c:
8c:81:ce:c0:40:2f:30:f3:55:83:83:fd:9e:62:8f:
77:b3:76:ff:15:8c:a6:a3:59:e1:4b:3b:97:5f:a8:
e2:09:78:8c:8a:41:29:cb:28:d5:91:83:20:34:c7:
37:28:9f:15:13:e2:4b:14:67:e8:f8:37:2e:60:78:
cb:2d:0e:c9:a5:df:35:80:de:53:9f:2d:04:07:0a:
1b:b6:b7:57:3e:60:4f:6f:0c:75:c0:a9:c8:d9:a7:
da:b7:d6:0f:69:ba:af:64:95:da:8a:6b:95:90:6e:
98:1a:67:d1:2f:0e:f9:60:8a:58:4b:6f:60:86:90:
ae:1e:46:66:2d:87:50:ba:c7:83:ee:70:8c:36:af:
e5:71:c4:8b:41:b9:e0:23:50:33:fd:75:66:ef:29:
b4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:2D:93:71:58:4F:99:EF:FB:F2:1C:D6:82:79:B0:80:5A:9F:58:2C
X509v3 Authority Key Identifier:
keyid:AC:9A:51:BE:A1:B5:70:FF:A7:2D:9C:52:D1:A5:18:C2:4B:C7:8C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:cf:5e:87:f5:de:28:84:0c:ce:37:8b:b9:ee:af:6f:7c:ee:
97:e8:ca:c5:73:b8:7c:49:4c:78:bb:9e:ff:e9:e7:c6:ab:d0:
a5:75:fb:c0:4b:cc:7d:32:5b:49:91:53:db:b1:b8:e5:03:da:
7a:7a:28:31:3a:f0:8d:31:ea:b3:c4:50:99:d5:f6:9f:15:4f:
82:58:e1:9c:1d:5b:90:4c:88:a4:14:6c:10:76:a4:c4:ab:b0:
19:66:f7:cc:50:c6:aa:27:96:bb:f9:5f:b1:dc:61:24:59:ae:
b7:8b:e4:96:ad:2d:f7:ae:00:9d:29:58:74:be:11:bd:95:5a:
ad:bf:7c:26:0a:ac:9a:d6:25:9d:ff:93:ed:08:17:95:62:cc:
4f:bb:21:b5:5d:94:38:48:5d:a9:bf:fd:c0:4f:4d:af:1e:44:
42:89:ce:f6:f9:33:3c:90:9e:7b:a6:0c:22:37:c4:d6:21:20:
14:7c:b4:fe:b3:73:c6:ab:d9:21:ae:10:be:a5:62:c4:eb:37:
d8:b9:bd:ea:ab:d4:71:4a:2e:22:90:e3:75:ca:a9:be:f4:81:
52:77:94:ac:0e:29:83:c5:07:a9:5c:7e:af:d8:ec:6d:c6:e1:
eb:94:fc:03:ac:54:57:2d:61:7d:64:b0:f4:63:c4:77:93:be:
a0:4f:3e:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:35:40 2025 by rpki-client