Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: /2UaZTGYdS+4EQYjufernSNNcyfOV4aM02suUWLCBdE=
Subject key identifier: BD:74:B0:89:D2:38:29:8B:DE:AF:79:2C:FB:4F:49:0B:AB:71:17:95
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 019921E7D77E86362DD7386F8D96CEAD2AF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 02:01:06 +0000
Manifest this update: Sun 07 Sep 2025 02:01:06 +0000
Manifest next update: Mon 08 Sep 2025 02:01:06 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: l2BrhKQbDNH65THcy7dAyxToUs+XUYv0QyfYF6+3z2s=)
2: bRo1FpRQdGW3rrEgf9LP2ZyYMbs.roa (hash: ZwgslFPNqU25lgzTk3XOIv2Nozx6fjcmPWKTGmYvfPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:d7:7e:86:36:2d:d7:38:6f:8d:96:ce:ad:2a:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Sep 7 02:01:06 2025 GMT
Not After : Sep 8 02:01:06 2025 GMT
Subject: CN=bd74b089d238298bdeaf792cfb4f490bab711795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a4:72:7e:a4:63:6c:87:77:3e:34:b4:4d:c7:
24:f1:c7:52:fc:72:2b:3c:fc:05:17:fc:7a:9c:03:
82:95:49:0c:32:10:d1:b2:80:ba:47:12:ea:4f:51:
7b:de:b2:b2:e6:03:35:db:c4:1e:37:e2:7c:2a:52:
9e:df:cb:87:c1:92:40:2f:7e:ee:ec:0e:36:82:2b:
06:51:6b:cb:b1:33:71:36:42:f6:78:81:41:79:63:
fb:c7:8d:52:36:a5:4e:43:59:f6:05:f4:b3:6b:fc:
e5:43:99:95:19:ce:eb:4b:99:8a:9e:9e:67:cf:0b:
eb:ab:74:7b:a3:31:b8:62:17:b2:6d:a1:d2:de:d0:
6e:31:4a:21:74:17:d9:d4:17:e8:6c:94:01:41:f6:
f0:f4:ff:7f:b8:81:39:68:43:a6:66:3a:be:d4:4f:
db:09:e1:6a:ab:57:ac:bd:5a:14:f3:60:83:22:5a:
49:c2:f1:47:55:b4:4b:1b:2e:f0:10:0f:a2:67:40:
b0:e4:9e:b3:e4:1e:1d:3c:e4:5e:f6:e0:ea:f0:a4:
4f:c1:d4:95:60:21:f8:af:87:22:c9:08:d4:dc:9a:
23:73:a0:c3:18:a9:7e:f0:95:71:bb:ae:3d:50:a8:
4d:fb:b7:e7:26:dd:b9:45:f6:7b:61:62:0f:55:3e:
75:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:74:B0:89:D2:38:29:8B:DE:AF:79:2C:FB:4F:49:0B:AB:71:17:95
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:40:3a:57:59:d4:2f:73:3c:f9:b9:f7:ed:b7:aa:71:13:29:
3c:44:07:bf:4b:fa:7a:95:19:17:b2:a4:db:04:53:aa:91:ed:
02:a6:b9:49:af:83:7b:5e:26:fe:1c:a8:54:a8:cf:f8:e2:f8:
64:d0:4f:23:fc:f9:7c:23:2f:aa:3d:53:d9:d2:b5:41:33:1b:
5c:a7:4d:9a:5d:5c:2f:7c:fa:c0:f4:de:33:81:fa:89:3d:4b:
13:25:63:01:d0:73:0d:ea:4e:51:c8:ce:a6:dd:39:06:e4:55:
b5:24:70:30:bf:87:69:e4:73:b4:9f:df:25:bb:5c:ab:8d:74:
be:4f:8e:1e:a3:f2:f7:53:97:47:fc:41:2f:de:ba:8b:1c:29:
37:27:bb:5c:c4:67:04:f2:46:b4:5d:ac:10:b5:ad:0b:3c:37:
67:4e:de:24:72:ed:bb:53:26:14:20:e6:41:16:02:9d:10:c0:
b9:3b:8f:cf:c1:a4:27:96:36:3b:5f:5a:f6:a5:b7:c4:c8:b1:
b7:72:19:50:fe:06:4e:9f:b8:ab:61:8b:47:8e:a7:1a:87:77:
52:58:ab:2e:3f:47:7d:ae:86:34:8a:0f:90:7d:d0:aa:49:b2:
91:e5:7c:ce:d8:73:79:d1:2a:e4:ad:b0:75:4d:05:e4:36:63:
6e:2a:35:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkh59d+hjYt1zhvjZbOrSryMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0YzY0OTk0ZTI0ZDRhZWZkYzQyYTg4MzFmZTBkY2UyMGQ2
MDQ2ODkwHhcNMjUwOTA3MDIwMTA2WhcNMjUwOTA4MDIwMTA2WjAzMTEwLwYDVQQD
EyhiZDc0YjA4OWQyMzgyOThiZGVhZjc5MmNmYjRmNDkwYmFiNzExNzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16RyfqRjbId3PjS0Tcck8cdS/HIr
PPwFF/x6nAOClUkMMhDRsoC6RxLqT1F73rKy5gM128QeN+J8KlKe38uHwZJAL37u
7A42gisGUWvLsTNxNkL2eIFBeWP7x41SNqVOQ1n2BfSza/zlQ5mVGc7rS5mKnp5n
zwvrq3R7ozG4YheybaHS3tBuMUohdBfZ1BfobJQBQfbw9P9/uIE5aEOmZjq+1E/b
CeFqq1esvVoU82CDIlpJwvFHVbRLGy7wEA+iZ0Cw5J6z5B4dPORe9uDq8KRPwdSV
YCH4r4ciyQjU3Jojc6DDGKl+8JVxu649UKhN+7fnJt25RfZ7YWIPVT51rQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL10sInSOCmL3q95LPtPSQurcReVMB8GA1UdIwQY
MBaAFPTGSZTiTUrv3EKogx/g3OINYEaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUt
Mzg1NTY5OGZiNTdmLzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUtMzg1NTY5OGZiNTdm
LzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI0A6V1nU
L3M8+bn37beqcRMpPEQHv0v6epUZF7Kk2wRTqpHtAqa5Sa+De14m/hyoVKjP+OL4
ZNBPI/z5fCMvqj1T2dK1QTMbXKdNml1cL3z6wPTeM4H6iT1LEyVjAdBzDepOUcjO
pt05BuRVtSRwML+HaeRztJ/fJbtcq410vk+OHqPy91OXR/xBL966ixwpNye7XMRn
BPJGtF2sELWtCzw3Z07eJHLtu1MmFCDmQRYCnRDAuTuPz8GkJ5Y2O19a9qW3xMix
t3IZUP4GTp+4q2GLR46nGod3UlirLj9Hfa6GNIoPkH3QqkmykeV8zthzedEq5K2w
dU0F5DZjbio1tA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 09:57:07 2025 by rpki-client