Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json)
Hash identifier: jJkvZNpCTxRPlG4CHS58trZQaAnV07MuSERPMzmTvs0=
Subject key identifier: 55:5E:E0:62:E3:42:D6:24:28:43:AE:03:D5:4C:F1:3D:7F:F2:6F:B5
Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Certificate serial: 01992331019E19DDBF7DFBAAA6A42B9FADBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 08:00:38 +0000
Manifest this update: Sun 07 Sep 2025 08:00:38 +0000
Manifest next update: Mon 08 Sep 2025 08:00:38 +0000
Files and hashes: 1: Llrtrof0_CXG6g_18Oyw968ZWEI.roa (hash: X1zaGRl51EQ/u9kK0U1WmdFcDajifODFmk55LESlUmM=)
2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: pDWEgvZMs4AZj6Z51oTkhfkubScI7Y9ModeGaXyj83I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:01:9e:19:dd:bf:7d:fb:aa:a6:a4:2b:9f:ad:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Validity
Not Before: Sep 7 08:00:38 2025 GMT
Not After : Sep 8 08:00:38 2025 GMT
Subject: CN=555ee062e342d6242843ae03d54cf13d7ff26fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:36:cd:04:21:aa:ca:09:e5:95:f1:f3:4b:2e:
c6:e4:2b:23:a2:8a:30:85:36:50:44:bb:2c:5d:2e:
c2:74:20:96:88:2d:3f:1c:b4:76:c0:65:4a:cb:28:
ed:29:0b:9e:ae:ad:48:46:4b:ab:d8:39:2c:1f:52:
70:50:8f:75:92:e9:2f:f9:7d:53:e7:ec:52:44:f8:
66:5a:87:ba:cf:b8:1a:87:7f:7e:7b:c0:3b:06:04:
bb:93:77:97:0d:ef:c1:82:d1:0f:99:9c:2f:c4:e4:
91:07:7d:4e:c4:69:b8:be:1f:7e:0d:90:e6:c9:82:
bd:a0:a2:13:35:6e:ce:03:10:31:42:7a:74:0b:44:
37:02:c0:e2:5f:ce:7f:cb:8d:49:4a:83:1f:0e:5f:
ba:f4:51:ae:d0:18:19:4b:32:66:f7:73:a1:8b:67:
10:95:28:15:36:40:df:34:df:43:bd:4c:d2:41:1c:
a5:5e:f1:d9:bc:bd:a8:a0:ac:b9:d1:42:2c:58:d0:
06:c0:03:b8:e4:cc:96:47:e9:1a:c7:1f:e8:88:01:
fc:52:bf:82:1a:09:ad:b9:3e:26:c6:b9:8e:fb:0c:
36:b9:d2:f4:6a:e5:46:0b:e8:67:d3:81:fd:cd:03:
4b:46:19:84:df:6e:d2:2f:75:7a:77:fd:a2:6b:da:
c0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5E:E0:62:E3:42:D6:24:28:43:AE:03:D5:4C:F1:3D:7F:F2:6F:B5
X509v3 Authority Key Identifier:
keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:82:69:aa:f4:67:4a:fe:4d:0b:77:4b:53:bf:2d:47:58:8f:
ed:11:43:44:c5:22:71:ca:40:6b:53:c9:1d:eb:2f:a8:cb:da:
9f:11:0b:5b:99:e7:af:b9:02:76:32:10:e3:fa:64:90:91:4f:
a9:f2:f6:89:8b:8d:68:7d:03:22:a8:97:07:8a:71:e2:67:a8:
00:00:b6:4c:6a:46:3d:50:42:9f:96:86:a9:aa:1d:24:80:50:
17:13:59:35:02:22:dc:a6:f8:03:c6:33:be:25:2f:7e:09:66:
a7:9b:36:b8:cd:37:b2:11:22:1f:c0:8e:56:cb:79:c7:95:90:
3f:44:21:44:51:bb:c0:6e:b6:f8:65:9c:79:1a:b2:44:93:c2:
71:18:63:36:ed:6d:70:e9:47:cf:18:e1:a7:f6:87:2d:f9:b5:
39:43:06:70:c6:19:a8:3d:45:a4:d2:47:30:4b:76:c1:13:96:
f4:7d:bc:8f:f9:e0:bb:fa:b0:bb:6c:a9:04:03:f4:5b:af:bc:
fb:b4:e3:72:d0:e7:40:70:33:f0:93:1d:ff:b9:42:73:83:ac:
3d:be:31:3a:2f:a8:ce:8d:37:d0:60:36:bb:47:e6:b8:23:2a:
0c:46:b0:2b:2e:e5:58:ab:35:ab:2d:80:d1:3f:e9:46:34:01:
8d:08:77:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:42:35 2025 by rpki-client