Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
File: rONjRGSGG9S_jFvH48m_09JGpN0.mft (raw, json)
Hash identifier: GvQyj/XfWxBcbUXPr2078S0zSgcZFpNj08GEG0U1CmU=
Subject key identifier: 5D:C4:37:6C:95:8F:E9:3C:3A:E2:EF:BC:EC:DF:37:E8:CC:A5:99:63
Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Certificate serial: 0199342559D1DC4FD662BA94243E026C4230
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
Manifest number: 167B
Signing time: Wed 10 Sep 2025 15:01:27 +0000
Manifest this update: Wed 10 Sep 2025 15:01:27 +0000
Manifest next update: Thu 11 Sep 2025 15:01:27 +0000
Files and hashes: 1: Obsiy3NGEoUjL-DLQo0yhLx4KAI.roa (hash: p9j2sVfI93AXLXtc3YNcT/Xcs3W13x3825+kRDw3Ko8=)
2: rONjRGSGG9S_jFvH48m_09JGpN0.crl (hash: siPl+Ccolb1fDEtuBKc0aO1jtejgGKYfdMyuFBgklIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:25:59:d1:dc:4f:d6:62:ba:94:24:3e:02:6c:42:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Validity
Not Before: Sep 10 15:01:27 2025 GMT
Not After : Sep 11 15:01:27 2025 GMT
Subject: CN=5dc4376c958fe93c3ae2efbcecdf37e8cca59963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:95:2a:06:2f:22:20:2b:0d:22:b7:19:79:9b:
b6:92:ca:60:0d:eb:92:3f:dc:35:d5:09:85:91:9c:
0f:00:51:69:8d:be:a1:c9:65:ca:03:12:ba:89:35:
ef:bf:c8:32:3f:bd:b5:9e:63:6b:cb:83:12:f2:e0:
5b:d3:87:e1:8d:31:0d:fa:f0:13:ef:31:36:78:83:
ca:5c:1a:df:6b:20:58:2b:70:53:8d:38:79:57:72:
82:fe:d3:8f:5e:9e:98:e7:08:77:a7:7c:20:de:12:
14:d6:9e:b8:ae:fc:29:a8:5a:54:02:33:e1:63:ba:
2d:e7:42:52:fe:42:4c:93:45:a2:4e:75:49:65:99:
11:74:cb:b9:55:e2:ef:b2:25:61:95:db:ea:17:c7:
d5:13:85:7e:cd:e4:b1:b2:7a:10:ff:5f:3f:28:b3:
18:4f:ba:66:6e:d2:2c:f0:9c:16:ca:5e:7d:60:b4:
ac:a0:32:6a:7c:50:1c:18:b5:92:49:81:7c:82:4e:
5c:c8:67:d6:c0:2b:b3:e0:4c:a8:23:35:e8:43:6e:
5d:bd:04:30:25:4e:c5:3e:49:3e:e5:75:9b:85:be:
72:4c:ad:52:05:e1:d4:c7:dc:68:ea:54:67:76:9d:
57:f0:f5:5e:4a:f4:d2:a6:d0:5c:27:f0:d8:bf:bf:
cd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C4:37:6C:95:8F:E9:3C:3A:E2:EF:BC:EC:DF:37:E8:CC:A5:99:63
X509v3 Authority Key Identifier:
keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:e8:48:a4:61:3f:ef:94:8c:f0:f2:94:6b:ba:41:2a:53:69:
bf:d2:10:9a:69:5f:30:81:b8:88:0d:4d:0a:0e:e5:3b:c4:92:
01:19:a8:1d:d0:db:39:37:18:b3:ee:ee:3f:55:b3:23:fe:e7:
e9:9d:c6:c6:c8:8d:fd:d6:23:d0:ce:85:d5:5a:ad:bf:12:c5:
03:18:63:1c:d0:df:37:57:e8:7a:7b:18:0b:49:ba:0e:69:98:
05:57:e7:94:ae:8f:96:7e:48:bb:1a:39:21:41:8c:a2:ee:9a:
89:cb:83:eb:bb:21:6f:91:18:b4:5f:c2:49:a5:ad:81:b2:6b:
8b:a7:a5:ca:a5:ae:df:6e:4c:a9:e3:e9:0b:da:52:05:17:2f:
2c:19:16:9d:4a:cf:e7:50:b2:3d:bb:e4:23:c4:64:44:99:6c:
fd:cd:ea:9f:77:19:92:49:60:85:5a:06:6e:70:da:93:5b:64:
b9:87:a8:32:d2:ac:60:4b:25:ad:fc:d9:0b:db:18:0a:70:e2:
6d:3f:49:58:91:e5:36:57:28:36:2b:b9:2d:e1:bb:4d:53:b6:
17:5a:12:80:4c:fa:9e:49:f1:12:9e:72:20:3c:25:7e:7e:54:
d1:29:ec:c0:58:27:7f:58:3e:c6:52:2b:0a:58:76:6e:57:a0:
3f:89:6e:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 19:22:15 2025 by rpki-client