Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
File: sFcIRcI56ZkcibxcUEMekIeGDE0.mft (raw, json)
Hash identifier: DldUPveoe2Wowrr30o2xFxcGu081pMzxOCzMFegWs5E=
Subject key identifier: 1F:A4:E1:95:C7:F9:04:6A:4F:18:AB:E2:24:46:7D:6D:C9:FB:B4:FA
Authority key identifier: B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
Certificate issuer: /CN=b0570845c239e9991c89bc5c50431e9087860c4d
Certificate serial: 01992367BD24894CFFD8DAF08125FD9D9002
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
Manifest number: EC
Signing time: Sun 07 Sep 2025 09:00:24 +0000
Manifest this update: Sun 07 Sep 2025 09:00:24 +0000
Manifest next update: Mon 08 Sep 2025 09:00:24 +0000
Files and hashes: 1: n2C0sjvTrbF7unBNdsXDONkHwzQ.roa (hash: jLl0pdc61DzddqyTuR7Io8Gkj/xajAEL7bTJB3EuzC8=)
2: sFcIRcI56ZkcibxcUEMekIeGDE0.crl (hash: LPSNjaIzzZYhd/RUNa0H0Jmd0cnyeF7irxHLu1iBq/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:67:bd:24:89:4c:ff:d8:da:f0:81:25:fd:9d:90:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0570845c239e9991c89bc5c50431e9087860c4d
Validity
Not Before: Sep 7 09:00:24 2025 GMT
Not After : Sep 8 09:00:24 2025 GMT
Subject: CN=1fa4e195c7f9046a4f18abe224467d6dc9fbb4fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ee:de:a3:20:9a:02:ee:a6:ef:b6:2b:de:46:
e2:97:fd:73:48:d7:6f:ec:05:cf:f9:4e:89:0a:99:
aa:28:46:3e:40:c8:71:07:b2:ff:eb:5a:83:66:f3:
d6:ff:0a:8d:e5:94:62:52:eb:9e:9b:1e:44:50:92:
2f:58:4b:e2:4a:6d:39:34:48:2e:01:eb:db:65:92:
6e:ad:12:20:c4:08:40:5d:41:09:e0:63:90:68:5a:
f9:cb:f5:cc:7e:41:e0:a0:83:c6:be:4e:d0:70:96:
c9:59:e7:1d:cc:46:0f:d3:1d:9f:e7:0f:8f:02:9d:
09:ee:75:15:2c:fa:3f:00:6c:b7:e9:56:65:b3:44:
05:a5:19:88:32:54:30:5d:64:34:46:1c:4b:64:2d:
79:73:d3:e5:f9:50:bd:d4:7c:e7:78:17:3b:0c:b3:
f0:d7:ea:10:d0:7a:bf:a1:3d:f6:78:43:77:0c:d5:
24:64:9c:66:f2:c5:a7:24:ad:16:82:2a:27:1f:75:
84:69:ae:c7:da:86:fb:d6:38:bc:f9:ff:b6:b2:a1:
a6:a7:f6:cf:f4:d6:b8:e9:cf:7b:c5:c9:0e:c9:21:
45:7b:2d:bb:e6:a6:0d:73:2e:f3:9a:d9:8e:0c:5b:
d9:41:e9:e3:0f:2c:6a:bb:4d:ed:19:f6:12:2f:95:
25:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A4:E1:95:C7:F9:04:6A:4F:18:AB:E2:24:46:7D:6D:C9:FB:B4:FA
X509v3 Authority Key Identifier:
keyid:B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:a1:53:13:11:cf:a3:43:f1:22:4f:6a:07:e4:f8:dc:e0:a9:
f6:24:09:87:46:09:65:db:53:43:df:6f:33:96:b5:58:64:6c:
05:62:ac:1e:51:6f:6a:83:ab:54:72:c0:a6:83:3c:09:92:d9:
b2:f6:2f:80:3a:5d:87:29:cb:1b:ac:d8:d5:64:98:55:fe:d3:
2f:69:88:9b:c0:51:0e:12:2b:61:1c:5a:90:5a:3a:ee:fc:a4:
b6:b8:be:4b:05:e5:cc:8a:36:77:ae:0f:43:dc:2f:3b:c4:c9:
2f:9d:6b:4d:71:1d:3b:49:d9:21:73:0c:6a:6a:3e:ad:90:c7:
bb:d8:95:3e:e3:64:1a:55:48:c4:f1:0c:dd:69:77:42:39:19:
35:ce:98:15:9d:df:55:6f:14:83:71:c1:62:d2:13:d3:c9:37:
1e:01:c9:bb:5d:1e:b2:b0:0f:b4:32:9d:11:aa:90:9c:13:61:
0e:86:fd:ae:c7:c3:8b:13:ad:da:9b:c7:e9:4a:c6:09:10:91:
fd:3a:24:8d:cb:b1:28:41:70:54:66:16:d4:51:33:8e:a1:ff:
ad:7a:80:e4:18:f8:7f:1a:ca:e2:13:d6:20:6d:05:47:31:11:
de:2f:55:ff:c8:2e:1a:b5:44:2b:5a:78:a6:1a:17:5a:0e:36:
fc:84:55:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:44 2025 by rpki-client