Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
File: srQdL319OFfgdfKk8vnT4ETy5TY.mft (raw, json)
Hash identifier: Ws4LqkJdasClOgLLdhgOwD8oEgDkppsql7zXVBVYQcQ=
Subject key identifier: A8:2E:4F:31:28:62:85:B4:43:C0:14:99:14:7F:07:04:28:B1:C5:C3
Authority key identifier: B2:B4:1D:2F:7D:7D:38:57:E0:75:F2:A4:F2:F9:D3:E0:44:F2:E5:36
Certificate issuer: /CN=b2b41d2f7d7d3857e075f2a4f2f9d3e044f2e536
Certificate serial: 01993B02EC4B25478229194CF117CCBF1956
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
Manifest number: 0673
Signing time: Thu 11 Sep 2025 23:01:11 +0000
Manifest this update: Thu 11 Sep 2025 23:01:11 +0000
Manifest next update: Fri 12 Sep 2025 23:01:11 +0000
Files and hashes: 1: Ypuf3qV0JE2AXfUrk2eNRiGtQN0.roa (hash: AxG4SgT0VS5arc9FHux7pFhrFyFYGK0/0AgX9zPeSBE=)
2: srQdL319OFfgdfKk8vnT4ETy5TY.crl (hash: DqdIsEbI7QsIfCwxEo/IDQqUVGZzVyj0DRARsYpt9+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 21:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3b:02:ec:4b:25:47:82:29:19:4c:f1:17:cc:bf:19:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2b41d2f7d7d3857e075f2a4f2f9d3e044f2e536
Validity
Not Before: Sep 11 23:01:11 2025 GMT
Not After : Sep 12 23:01:11 2025 GMT
Subject: CN=a82e4f31286285b443c01499147f070428b1c5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d5:83:f0:6f:65:e4:b6:9a:ce:98:04:01:71:
8a:5e:0f:46:fd:23:77:f6:e3:66:ea:86:77:76:a5:
62:6b:9a:fa:1e:69:bb:ac:d0:ee:8c:cd:9b:b6:4b:
31:72:56:77:ba:c1:77:bf:da:0c:a4:7e:b2:bb:97:
5a:67:ea:cc:08:48:ab:b3:86:a3:b5:49:0f:bd:66:
b2:53:65:d8:1f:6c:f3:a9:c1:92:9b:59:c1:ac:6b:
e1:85:9e:00:a2:24:26:b3:72:ac:3d:06:09:8c:ed:
96:44:0b:82:a7:4d:3c:ae:67:6d:1d:29:f7:32:fa:
83:f4:cb:f5:13:ac:4f:ad:18:03:4e:38:f4:66:ba:
f1:75:97:f0:22:5d:16:94:88:19:c2:66:0f:77:ee:
f4:94:40:30:fc:45:04:8f:e1:64:61:9c:27:6f:a1:
1b:37:a9:68:aa:8c:63:9c:e7:de:9c:ee:64:c3:41:
ae:bf:df:b6:15:36:35:2b:91:52:6b:7b:f8:59:8c:
e2:0b:02:75:31:ad:a4:9e:74:4e:ca:b5:52:98:fe:
51:32:e7:9d:21:1b:11:20:b0:1e:98:5e:ea:11:bd:
4a:e8:5e:78:2d:04:b6:8f:ae:dd:4e:40:7e:47:2e:
4e:37:fa:ee:34:ef:c5:29:9b:f2:05:d3:ea:60:13:
60:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:2E:4F:31:28:62:85:B4:43:C0:14:99:14:7F:07:04:28:B1:C5:C3
X509v3 Authority Key Identifier:
keyid:B2:B4:1D:2F:7D:7D:38:57:E0:75:F2:A4:F2:F9:D3:E0:44:F2:E5:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:f8:be:80:59:35:2e:7a:c8:a9:f9:4a:75:41:0b:bf:95:e2:
da:f6:4a:d8:09:0d:de:6b:60:e3:ab:0d:8e:3c:c7:bc:60:e3:
57:7d:7d:91:e7:c0:a0:b9:2d:95:ae:8e:a0:fe:a2:73:97:d6:
2c:d3:09:64:8d:ed:f9:44:27:a8:58:9f:50:c0:b4:70:8b:6d:
d6:10:93:54:74:5e:84:66:9b:f7:44:2f:59:4f:1e:3c:21:5e:
97:02:48:38:4c:80:5f:68:e3:b3:52:dd:14:14:a1:4d:f0:96:
81:01:86:2d:f2:60:18:c4:b8:ea:c7:83:3b:29:85:b9:34:59:
72:3a:96:5d:aa:8d:c0:b0:55:2d:11:64:50:9e:6c:ea:d3:d2:
56:44:f4:cf:4c:14:9a:c1:45:04:34:a6:7a:8e:fe:c7:b9:9e:
08:93:8b:73:10:d0:0e:fe:aa:80:18:0d:de:03:83:ac:94:51:
ce:f2:0e:ff:92:e2:0b:a8:6b:ba:fd:51:b7:41:b4:08:ef:0e:
97:ce:c7:82:ff:7b:f3:56:62:ec:64:63:bd:06:85:b9:7b:0e:
c2:c7:97:05:8a:9e:54:fe:bd:f4:ee:ec:89:45:e4:ae:d7:9d:
d3:0e:a6:6b:03:07:6f:3a:1a:79:a0:82:53:22:da:1f:9e:a5:
be:18:50:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 12 03:19:52 2025 by rpki-client