Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
File: du6ffY5dGMUIhPgzeK5Iui_NpuI.mft (raw, json)
Hash identifier: VP9vGuSjwcUMojX9yxvgmSKVNCCoNs4jtVxteF346kA=
Subject key identifier: 59:E2:DE:5B:59:88:4D:B3:85:8B:9A:BF:28:F0:52:ED:B5:6C:AE:B8
Authority key identifier: 76:EE:9F:7D:8E:5D:18:C5:08:84:F8:33:78:AE:48:BA:2F:CD:A6:E2
Certificate issuer: /CN=76ee9f7d8e5d18c50884f83378ae48ba2fcda6e2
Certificate serial: 0199228CC4719E2D4A7DC3A81846866D330B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/du6ffY5dGMUIhPgzeK5Iui_NpuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
Manifest number: 11C9
Signing time: Sun 07 Sep 2025 05:01:14 +0000
Manifest this update: Sun 07 Sep 2025 05:01:14 +0000
Manifest next update: Mon 08 Sep 2025 05:01:14 +0000
Files and hashes: 1: du6ffY5dGMUIhPgzeK5Iui_NpuI.crl (hash: BiP5G5BtkuRkbYfv3Ty5YZAEPl9vG4OAEaWTmScLRbo=)
2: mXqLLr6nY4_O8xCSHszNUcdYNRQ.roa (hash: mR7ch814nod8YJeRcpIlHri0tj0aQVOIDu8w+ijK6HU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/du6ffY5dGMUIhPgzeK5Iui_NpuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:c4:71:9e:2d:4a:7d:c3:a8:18:46:86:6d:33:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ee9f7d8e5d18c50884f83378ae48ba2fcda6e2
Validity
Not Before: Sep 7 05:01:14 2025 GMT
Not After : Sep 8 05:01:14 2025 GMT
Subject: CN=59e2de5b59884db3858b9abf28f052edb56caeb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ec:16:f8:d8:ae:84:32:45:41:2e:b4:11:09:
08:d2:af:18:60:ac:e3:0c:fc:69:08:ce:06:5c:ab:
e1:8c:9f:96:d5:ab:49:f6:32:d5:6e:84:d0:7c:38:
93:79:bd:a4:b7:7e:55:0e:59:cc:5c:dc:61:eb:5d:
b6:a6:c0:32:31:1c:94:55:37:b6:a9:5c:66:db:55:
fd:bf:03:0a:e2:c2:75:50:83:e9:04:49:60:0a:8a:
30:f8:84:8b:66:4a:03:bb:2f:85:f6:18:20:fc:37:
e9:f2:3a:49:82:c0:fb:7f:3f:9b:36:92:b0:ed:f0:
b4:3a:20:13:12:bb:cc:79:b5:25:76:af:54:64:e3:
4b:b8:fa:28:9a:ec:7e:4b:a3:b4:df:b2:38:3e:e3:
ab:af:c6:de:11:d9:ff:72:14:d9:ab:53:8e:2b:4b:
d1:ba:70:09:de:cc:ae:3b:12:37:d0:46:d6:5c:ce:
e9:7b:31:69:8c:18:49:f2:08:37:d1:c1:84:fe:da:
79:9b:c8:ba:c5:31:cb:16:05:2f:14:de:a9:94:ca:
46:1e:c0:66:8d:fe:fb:ac:4d:bc:23:9f:a2:24:7a:
0d:9b:b6:44:12:e2:94:d3:a4:54:9e:7d:e2:04:0b:
20:ff:4d:41:f0:2c:e3:0b:44:c6:3a:bd:da:75:a8:
9f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E2:DE:5B:59:88:4D:B3:85:8B:9A:BF:28:F0:52:ED:B5:6C:AE:B8
X509v3 Authority Key Identifier:
keyid:76:EE:9F:7D:8E:5D:18:C5:08:84:F8:33:78:AE:48:BA:2F:CD:A6:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/du6ffY5dGMUIhPgzeK5Iui_NpuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:4a:ac:a3:b2:e8:c5:89:80:92:2e:8a:53:33:da:03:f9:ed:
25:36:9f:f1:c4:7c:e5:e1:75:a9:18:d4:45:47:0a:ad:f7:2a:
ee:9a:b8:8f:30:1b:28:13:c1:59:87:99:5d:19:21:8a:32:83:
2e:8d:fd:a7:59:e6:9a:0b:37:58:50:ed:4a:97:c5:a6:70:16:
1f:a9:61:bd:9b:c3:4a:10:10:4d:e2:9d:36:7d:07:e4:57:8b:
30:1a:6a:9b:5c:5b:24:42:92:df:0e:20:59:66:37:63:4c:c4:
f4:7a:8d:9a:cd:49:60:74:ba:8d:fa:17:88:36:f4:02:21:33:
ca:51:52:76:0b:51:37:e3:98:cd:53:30:20:f0:46:94:ab:79:
b5:bb:38:22:9d:a1:9a:a0:73:60:61:78:18:73:2d:b0:58:5b:
51:99:ae:06:e1:90:ab:9f:70:62:6b:31:7a:2d:3a:29:ae:af:
f4:bd:06:ac:9a:e6:9e:9e:40:61:d3:68:ec:a7:6f:03:1a:1f:
41:cf:52:82:b9:98:86:e5:ec:49:cd:90:70:b9:cd:08:d3:ff:
d9:19:a9:bd:b5:b3:e4:77:13:9f:39:d6:45:6a:9c:cd:e2:5b:
5c:44:6c:5d:1a:0c:2c:d9:a6:6b:81:00:07:4b:1f:2c:2a:e2:
f7:c6:0c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:47:45 2025 by rpki-client