Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
File: d2-uQ_c9o1_houQpZirguRdR4_s.mft (raw, json)
Hash identifier: c5o3IvfKqEOaYbg7BEg+oKbITTSC4mZZtNZYifRz4Fs=
Subject key identifier: 81:78:F7:BD:9C:62:2D:B3:6B:F5:CE:8D:E8:6D:08:E1:2E:06:9E:07
Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Certificate serial: 019933EDFFE5758208B47DBB8D47401EBC41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
Manifest number: 139F
Signing time: Wed 10 Sep 2025 14:00:59 +0000
Manifest this update: Wed 10 Sep 2025 14:00:59 +0000
Manifest next update: Thu 11 Sep 2025 14:00:59 +0000
Files and hashes: 1: BIbyN6MobH1STyCEPdXKcXxO-0I.roa (hash: Os4l0m9oxr0hmnuszsL7ZwnRaiayTTQWv9r3AFurnXg=)
2: Bbz0bBQb7OvBUdzdUU2fR0aTHW0.roa (hash: oXnG95uJE4GWCusPMitN/8TOoOTM8j2qb4pX4QMQ5u0=)
3: bdDCotOAfO1kv_FK4imM3A-Vth0.roa (hash: SflKXIddgIp/qAd1Zs2morymiezh6i6wy0uu+gUqlSk=)
4: d2-uQ_c9o1_houQpZirguRdR4_s.crl (hash: jSNR0RzCMsK6Gs8RosYo1M3mmWT7oqaAXQzZP2ezvAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:ed:ff:e5:75:82:08:b4:7d:bb:8d:47:40:1e:bc:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Validity
Not Before: Sep 10 14:00:59 2025 GMT
Not After : Sep 11 14:00:59 2025 GMT
Subject: CN=8178f7bd9c622db36bf5ce8de86d08e12e069e07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5d:c4:78:49:94:db:de:6e:c4:fb:cc:b6:4a:
7b:8a:15:b9:96:f3:c3:6f:d7:25:fb:6b:d7:85:b5:
0f:36:51:f6:9c:c2:be:17:22:d8:aa:fa:83:85:5e:
ba:3a:35:0b:68:f3:6d:6d:b4:87:2b:27:ef:53:6d:
bd:53:d1:0e:47:68:63:21:bc:0b:47:7e:d4:a2:c4:
79:74:f8:76:b9:19:10:1f:79:9b:35:b0:e3:26:42:
2a:2b:69:47:9b:ac:7a:b0:05:34:d6:29:f2:74:c4:
7f:29:49:97:2d:75:a6:9b:89:78:1a:89:c2:cb:ff:
1b:03:0a:e0:ea:92:99:ba:fd:dd:9b:a5:a9:a5:07:
3e:47:3c:31:79:d0:69:ac:66:29:a3:8f:e6:3c:f5:
15:30:59:10:0c:37:50:49:b2:c5:26:85:e1:b3:b1:
d6:a5:7a:b0:9f:f2:62:86:0c:37:1c:e7:36:62:ab:
b5:47:36:0b:48:3e:05:45:59:95:52:b0:82:f2:33:
63:49:05:62:7f:09:6d:7d:fc:b3:c9:b9:a1:8d:65:
d7:13:31:de:a5:6c:97:31:55:79:c5:82:eb:25:be:
10:dd:7a:ad:1d:7e:48:38:29:5a:eb:56:34:cf:69:
05:30:bc:af:0f:e8:59:65:6d:6c:61:bd:91:47:5f:
71:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:78:F7:BD:9C:62:2D:B3:6B:F5:CE:8D:E8:6D:08:E1:2E:06:9E:07
X509v3 Authority Key Identifier:
keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:47:6a:9b:e1:9c:4d:ed:28:56:a3:47:83:1f:eb:5a:3b:ab:
27:e3:b3:f2:ca:8e:b0:d7:28:9c:f5:48:96:78:f0:4e:f0:ed:
c8:0a:89:aa:18:93:ea:ba:e2:56:59:2e:52:5e:8d:17:a2:7a:
1a:bc:ed:1c:61:ba:c0:01:cb:bc:18:a2:34:cd:a3:4b:d2:2c:
ae:c8:81:b2:ae:ec:90:29:db:e4:0f:14:84:3f:89:c6:dc:e3:
73:cc:d8:8b:12:12:c3:22:c5:ed:2e:08:63:3d:4c:78:f1:d5:
e1:ad:7e:aa:80:9b:f7:4a:20:08:08:e8:c1:8b:35:f0:a9:b4:
45:1d:2b:68:98:c3:6c:fa:15:df:e6:25:fc:63:d1:97:f2:89:
e1:7b:26:23:e4:29:69:df:b7:50:01:99:42:a2:46:d7:7a:7e:
78:05:91:9d:cb:0f:34:a4:d5:5b:6d:66:95:54:ef:ca:9f:9a:
c7:c3:d4:72:c2:a4:ca:69:04:5f:cb:21:0d:f5:f2:30:7d:dd:
e7:dc:e8:9f:36:20:9c:0a:d0:0d:3c:47:b1:e0:39:36:16:92:
8b:35:ac:96:fd:f3:86:90:0f:54:ac:e1:75:65:3c:ca:7d:d3:
17:7f:d6:31:59:01:cb:f8:c5:ad:66:6c:d8:eb:21:9e:e0:b7:
4e:37:c7:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 18:20:10 2025 by rpki-client