Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
File: cHdwf2aXiCaodeuNLrMzvthWlmc.mft (raw, json)
Hash identifier: Nq8ywtMC+FzccBLpCrmRG4bDP9tNTsFUM8ukD88/sPM=
Subject key identifier: 3F:D7:63:FA:5D:96:93:75:C4:96:50:34:D4:90:96:EE:0A:4C:65:A5
Authority key identifier: 70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
Certificate issuer: /CN=7077707f66978826a875eb8d2eb333bed8569667
Certificate serial: 01993313F8336A70B10F7A56D17098ADA4A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
Manifest number: 0860
Signing time: Wed 10 Sep 2025 10:02:50 +0000
Manifest this update: Wed 10 Sep 2025 10:02:50 +0000
Manifest next update: Thu 11 Sep 2025 10:02:50 +0000
Files and hashes: 1: ZBqGiL5Lwt5_4rzPo7SO0cTda9c.roa (hash: KELG75sz8Tw2WawKyeiPVA4v+ezxNcK7f4e9XzFuUUw=)
2: cHdwf2aXiCaodeuNLrMzvthWlmc.crl (hash: xbgtVJqpQDyt6euk6OUKdyVLwX58IwfKIh/nXIv0Qbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 10:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:13:f8:33:6a:70:b1:0f:7a:56:d1:70:98:ad:a4:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7077707f66978826a875eb8d2eb333bed8569667
Validity
Not Before: Sep 10 10:02:50 2025 GMT
Not After : Sep 11 10:02:50 2025 GMT
Subject: CN=3fd763fa5d969375c4965034d49096ee0a4c65a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cb:b7:ee:3f:19:59:ee:a8:c6:ff:a4:4e:94:
15:f8:ef:a9:26:f1:d3:fb:bd:be:1c:2b:b5:e1:a1:
44:dc:ca:2a:d7:0d:46:d1:a3:7d:b6:84:8d:7e:66:
a2:60:3d:9f:52:9b:27:c3:88:f1:75:c9:14:59:ce:
93:78:0e:bb:7b:93:75:8d:e9:1f:88:70:80:bb:81:
3d:b0:e5:94:26:90:a6:0c:75:31:1f:b8:a4:ab:5d:
dc:c4:1e:e0:7c:e6:a1:ce:2e:6e:fb:59:d4:bb:e7:
b9:c6:58:7c:71:98:73:f6:d2:70:c3:b5:21:93:c1:
a0:8a:40:2f:36:c0:08:c7:34:53:75:a3:a9:06:e7:
73:63:64:c5:21:f9:9e:39:cd:01:24:7b:99:09:02:
a7:56:ee:48:1b:f8:8d:ab:02:a1:c4:a6:1b:72:80:
f1:49:a7:b3:25:0f:50:74:ce:d9:45:2c:2d:c7:b4:
0f:00:84:7b:37:68:ed:e6:80:29:c7:95:fc:84:5b:
11:ae:59:2d:b7:4b:c3:42:36:c3:c4:db:6d:2e:94:
e3:49:19:f1:87:7a:eb:7e:61:e8:c9:8b:bc:23:75:
2f:06:b8:e2:9e:02:d2:cd:7b:64:aa:6e:ed:f2:60:
f8:f8:4f:46:eb:cd:9e:fa:40:71:d2:86:36:52:95:
7d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D7:63:FA:5D:96:93:75:C4:96:50:34:D4:90:96:EE:0A:4C:65:A5
X509v3 Authority Key Identifier:
keyid:70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:a9:24:c9:b9:73:72:4b:92:4d:05:9f:a6:aa:74:45:f5:f9:
a5:45:08:c2:67:17:b2:8b:7d:d3:2d:d7:94:bc:d6:73:5f:6a:
02:cb:29:34:f0:76:ac:a2:8c:97:5c:87:4b:4a:3e:5d:68:18:
0b:f7:b7:a8:44:6e:7f:16:c0:86:c9:eb:b1:94:d9:94:cf:dd:
3a:29:b2:06:05:e6:66:6b:d4:7e:ca:6e:dd:ab:db:90:61:fa:
9b:9b:d4:dd:c5:f6:6f:d8:f8:a0:eb:cf:6b:6c:68:b9:77:e8:
72:8c:a8:c2:a6:89:8e:0e:61:55:77:e7:db:9f:97:e3:29:57:
d9:f3:dc:ba:71:0e:0d:1f:0c:b8:0e:47:76:63:28:90:e3:b7:
36:2e:69:b5:28:de:90:b6:34:36:c9:79:1e:95:00:fb:42:05:
8e:39:92:6c:7d:b4:81:21:fd:09:ed:37:5a:1c:76:a6:32:aa:
64:9f:bd:0d:f7:55:8d:b2:54:bb:53:90:52:36:1b:47:9f:60:
5e:28:69:29:b0:fc:7c:5a:bf:4c:b6:f8:eb:b5:a4:97:8b:3c:
8c:b2:a0:1d:a3:7c:b0:a1:2a:e2:b8:89:39:96:dc:aa:d7:92:
19:9e:73:cd:e1:7d:1c:52:5a:dd:06:a5:cc:73:0e:50:46:ff:
12:ad:94:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 15:45:20 2025 by rpki-client