Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: cSP779LnWYr+PihjXZ1rJYg4yeeu37J6BvChzk9KG18=
Subject key identifier: 1F:12:ED:BA:37:CA:68:EA:BB:2B:6C:03:7F:44:A0:97:F9:84:E8:5A
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 019923317B2DFAC49C79B9DE26D7D5BE652C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 06D6
Signing time: Sun 07 Sep 2025 08:01:09 +0000
Manifest this update: Sun 07 Sep 2025 08:01:09 +0000
Manifest next update: Mon 08 Sep 2025 08:01:09 +0000
Files and hashes: 1: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: RUDpF8W/udTncmOdmBtRwAuyxlrnYcZbA0RArlza1TM=)
2: XS-Ybz0hvV9BojCYEUiidWOyx20.roa (hash: rQhYc9pPbBgv4YgNdF82ibLtydUp9AsYJJ57Y6MS2So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:7b:2d:fa:c4:9c:79:b9:de:26:d7:d5:be:65:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Sep 7 08:01:09 2025 GMT
Not After : Sep 8 08:01:09 2025 GMT
Subject: CN=1f12edba37ca68eabb2b6c037f44a097f984e85a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7c:26:6d:14:af:85:71:dd:b5:fb:38:3c:db:
94:8f:47:5f:50:84:76:49:ad:ce:39:09:ac:64:06:
79:01:1d:7b:1d:cc:7b:e1:5f:c3:a6:25:17:41:d2:
21:e5:69:01:9e:5f:d0:c3:79:45:db:ff:32:e6:5c:
03:f5:b0:96:bc:17:11:24:a5:60:e5:de:4e:6b:54:
9e:03:31:06:4c:8e:e8:fa:dd:98:84:0c:dc:60:ca:
7a:4a:ee:00:28:c8:78:19:ba:7b:26:f6:c4:4c:ae:
2a:45:f5:9b:b1:1d:e9:76:0c:38:a3:16:5f:48:12:
50:3e:25:bd:30:d0:5e:6a:23:a0:9e:e6:93:9c:cf:
d4:8c:bb:da:73:8e:a8:78:16:4c:07:ec:e2:83:fc:
b9:c8:7c:de:38:4e:53:ca:cf:2e:63:76:4a:31:51:
8b:ba:69:73:5d:67:ad:85:87:37:ef:74:6a:e4:45:
b2:79:42:70:45:f4:39:f8:00:73:f2:29:fe:1a:eb:
b3:44:50:35:82:31:3d:ae:de:cf:12:63:c6:4a:0d:
fc:1e:30:02:3c:f7:2c:b3:c3:24:86:76:57:72:0a:
da:a1:be:30:b1:97:ed:b3:05:64:4f:a5:2c:b5:b1:
d5:1b:34:78:c7:79:f8:cc:5a:4e:b2:64:69:fc:21:
80:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:12:ED:BA:37:CA:68:EA:BB:2B:6C:03:7F:44:A0:97:F9:84:E8:5A
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:d1:80:17:79:e4:96:03:e8:3e:56:6a:1e:82:4c:07:ce:14:
54:8a:a8:a7:e4:7c:45:40:56:da:87:ce:a8:2d:87:7c:95:44:
fb:39:ca:8a:11:96:af:cf:18:e8:53:eb:c3:53:d6:52:bd:65:
6f:35:9e:62:68:04:3f:99:3f:ff:2b:b1:07:80:10:a4:31:5a:
f0:93:4e:a8:3f:85:0a:dc:70:15:34:88:15:6b:b9:75:7a:60:
a7:71:63:7d:c7:6b:4b:03:13:12:7a:a8:44:be:56:5a:07:ee:
ea:cb:48:5a:78:2e:c6:68:fd:ef:72:b4:d9:98:ca:97:2e:dc:
f6:64:c0:02:1e:65:63:fb:52:ff:8c:17:92:97:ef:d1:7d:7c:
97:01:56:69:b1:67:5e:c9:31:64:1b:d0:35:9d:e3:c3:d9:7c:
58:4e:a2:b6:ca:51:54:57:dd:d1:38:20:fc:1d:d5:c8:02:91:
ae:eb:d1:1f:42:fe:0e:10:6d:d6:d6:21:e6:0a:b3:86:03:e2:
a2:ad:95:ec:d1:de:b4:d8:0a:a5:2a:4f:88:11:cf:5a:42:c3:
00:58:a6:ce:b7:80:8d:f9:f2:73:72:d5:7b:f6:8d:cc:b8:cb:
d5:e9:f3:a7:74:2d:89:ee:03:a6:8e:19:89:c0:80:20:f1:a1:
19:0c:65:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:50 2025 by rpki-client