Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json)
Hash identifier: Rte6UPnNUMHQNz+JQQiw05uCe8/r7Tc8IBtjpHrQlxc=
Subject key identifier: 3A:1B:E9:22:92:F7:65:1E:D5:21:17:D2:9B:95:5E:F3:EB:FF:07:77
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 019916F6926389667AA3194FD012F473A2FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
Manifest number: 166D
Signing time: Thu 04 Sep 2025 23:01:21 +0000
Manifest this update: Thu 04 Sep 2025 23:01:21 +0000
Manifest next update: Fri 05 Sep 2025 23:01:21 +0000
Files and hashes: 1: G9mF37Fb91r0jC33-YcK9r4IAmk.roa (hash: MaEVR8Nlqavgaakwb2T4C4sUXoGT+mVODKAXw14Vucs=)
2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: ysWYBy6oERM6Wp7YsVx9OAWQp9hMUq5Zg3HgxrqTSx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 23:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:f6:92:63:89:66:7a:a3:19:4f:d0:12:f4:73:a2:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: Sep 4 23:01:21 2025 GMT
Not After : Sep 5 23:01:21 2025 GMT
Subject: CN=3a1be92292f7651ed52117d29b955ef3ebff0777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:80:34:01:e5:d5:14:c5:1a:0b:73:d9:bb:ce:
f3:43:52:da:c5:24:c9:53:d9:d1:ee:22:ef:e9:bd:
62:a5:d7:af:e7:7a:00:a7:81:8d:08:84:47:23:b6:
15:5e:77:68:9e:63:e2:02:30:2f:16:aa:6a:b1:6f:
e1:07:80:8e:55:8e:85:a0:39:0d:26:22:8a:6d:ab:
f6:9a:1f:08:4e:4a:c6:54:58:2e:01:e3:6a:99:5c:
d7:5f:94:9f:8f:d0:5d:59:dd:56:7f:44:2c:54:e4:
1e:a5:bb:f0:67:6a:e6:d3:80:be:d6:2d:79:85:b8:
66:0e:37:62:89:4b:50:4c:c0:65:43:e6:82:29:ad:
fd:76:80:26:21:9f:01:b3:62:96:e3:2e:a0:ed:6d:
e9:fc:2a:b6:54:71:1f:28:e6:5f:13:f7:77:9f:2f:
1b:5b:ac:25:4f:91:a1:fc:08:d5:fb:3e:28:8b:2e:
a4:4a:42:a9:7d:44:70:50:e0:8d:fd:ec:3b:aa:37:
27:fc:10:0f:12:4e:c5:cb:f7:fd:3f:fd:e3:57:03:
44:a9:b3:df:6d:8d:6f:46:b0:a5:61:9c:50:40:83:
c7:72:f6:90:66:03:03:50:21:7a:75:e6:35:ab:b7:
98:82:a2:5e:cc:6d:1c:83:80:ee:b2:e8:07:1d:ed:
aa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1B:E9:22:92:F7:65:1E:D5:21:17:D2:9B:95:5E:F3:EB:FF:07:77
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:5e:62:9d:6e:61:0f:07:c6:15:26:15:84:e8:49:ff:87:d4:
5f:bd:42:ca:d9:09:3a:03:17:ea:dd:19:29:a0:cb:fd:aa:3e:
45:b2:71:9a:d1:d3:44:21:1d:bf:ce:16:1d:7c:5b:3a:03:4a:
6a:55:fc:6f:6d:58:0d:28:c4:5f:9b:93:85:1c:73:63:1d:53:
bb:47:d0:6d:16:aa:05:23:74:e9:63:91:4a:d5:66:dd:df:a5:
a7:9b:d8:e5:a5:64:9a:21:d9:39:68:42:cb:f7:7d:a6:7c:f5:
e1:18:52:cf:b1:1c:b0:a1:d4:f2:90:f1:53:f1:33:af:57:aa:
2e:d8:45:01:96:82:f4:9c:b0:6e:79:e1:d1:f7:be:42:ad:23:
10:d0:0e:21:63:12:44:32:66:a0:35:a9:8d:5a:de:60:9e:f1:
e4:96:b7:33:b3:06:9c:15:63:f7:ac:c5:ea:e8:d1:bc:cd:23:
b8:10:02:ed:5f:80:65:07:6f:23:dc:bf:f2:a5:7a:cf:47:2f:
4b:05:64:a2:b2:a1:a0:53:d3:6f:7e:2f:c3:df:c9:dd:1d:10:
f8:9b:b3:3a:49:85:25:99:75:9d:3c:b9:48:9c:48:74:69:ae:
25:1b:3b:c0:79:15:a0:a6:44:af:12:31:01:ad:39:59:d5:05:
c0:51:c6:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:33:09 2025 by rpki-client