Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
File: m9o0FBNxKfo4psYcSWq4thQJzgI.mft (raw, json)
Hash identifier: QefybYZB8PsPXuZU/CyQ87gvkNN+rNMQ1WpNWHIBdyc=
Subject key identifier: D2:DB:5C:91:92:3A:81:E1:B7:78:7E:67:7D:6C:DF:AC:24:48:33:D6
Authority key identifier: 9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
Certificate issuer: /CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Certificate serial: 0199228CF48D580A1F155B2831BE43A81856
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 05:01:26 +0000
Manifest this update: Sun 07 Sep 2025 05:01:26 +0000
Manifest next update: Mon 08 Sep 2025 05:01:26 +0000
Files and hashes: 1: U6nb6DpUzJV_xi4UhiA5O3aKdZE.roa (hash: at4iy2FPtAChzVS5IZxWuVWW9v3c10T2DEm7KMEtSwY=)
2: m9o0FBNxKfo4psYcSWq4thQJzgI.crl (hash: a7Wt9ivRRC7R9/ovPFFl4kvHjSDMAa5YOy4jVkaG19Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:f4:8d:58:0a:1f:15:5b:28:31:be:43:a8:18:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Validity
Not Before: Sep 7 05:01:26 2025 GMT
Not After : Sep 8 05:01:26 2025 GMT
Subject: CN=d2db5c91923a81e1b7787e677d6cdfac244833d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:80:1d:10:7d:1b:8b:95:91:3e:8f:66:62:51:
2a:85:d9:9f:90:89:5f:6a:a6:25:8b:94:44:98:80:
c8:16:53:2a:a1:15:cf:50:39:7f:66:4e:b6:20:ad:
27:c0:a2:2e:7a:34:d1:8c:5f:c7:24:f3:26:64:ad:
be:36:d3:b6:5b:91:f9:aa:cf:f9:dc:3d:9e:82:e9:
29:52:57:56:9e:0a:e9:b1:c6:ee:15:a2:90:22:3e:
f3:80:ee:96:8c:2d:74:7e:9c:97:f0:53:41:c2:e0:
c6:19:24:90:20:89:df:82:c4:1c:dc:cf:9c:95:f1:
72:c0:9b:5d:e6:ee:b5:31:76:cb:5f:5d:6d:c6:52:
fa:c6:bd:b7:b5:e1:53:e1:86:c4:66:f4:d6:0b:0c:
ac:42:5a:9e:a1:ef:55:5b:50:51:86:eb:6b:14:91:
73:67:76:6f:81:9c:1c:72:50:d5:16:9d:cf:f3:b0:
bc:85:56:41:01:eb:43:0c:5d:f2:75:2a:c3:58:2a:
07:d9:5d:d1:9b:9c:87:fa:d3:6e:4d:8a:7c:74:1c:
13:e1:2b:0f:d2:51:11:3b:1b:f6:74:87:86:b8:3f:
dc:79:e3:79:5c:d2:a3:39:d6:61:1f:34:8d:85:12:
6f:57:36:a5:96:47:68:28:74:f5:df:29:f0:e6:1d:
f7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:DB:5C:91:92:3A:81:E1:B7:78:7E:67:7D:6C:DF:AC:24:48:33:D6
X509v3 Authority Key Identifier:
keyid:9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:ba:f5:62:47:92:cf:bb:51:ac:81:4c:ff:9d:f3:da:54:31:
d3:e3:07:bd:70:40:0d:5f:1b:77:cc:8f:48:77:ce:3c:73:12:
94:38:3e:a6:38:7e:0d:49:d9:fc:03:24:eb:fd:68:6c:48:55:
b4:db:a8:6d:0c:a5:aa:32:bf:ce:6a:54:0d:7c:7e:42:5b:e9:
83:cc:0e:c2:27:4d:58:b7:07:a2:60:51:b0:7e:af:2d:d8:11:
1b:cb:1f:7c:a5:d1:9d:d5:c6:2f:a0:63:ae:fe:73:54:ab:37:
43:58:56:90:0e:19:c1:d5:e8:b2:5a:d7:e4:bd:80:07:53:b7:
28:10:85:07:93:ce:94:1f:84:fd:8e:74:d8:ca:1c:ad:36:5e:
c6:66:10:e8:8c:e2:98:69:af:b2:b6:77:d3:92:1d:17:ca:a8:
b0:00:a7:3e:d8:46:3a:0b:db:22:9a:01:27:bf:c4:1d:cd:2a:
77:19:70:c4:f3:5f:ee:72:83:93:84:a2:43:74:91:d3:49:b9:
5b:5b:ee:4f:35:1d:9e:d0:6c:b9:9a:b6:37:01:12:59:4b:c1:
1e:95:0b:f9:99:cc:62:bf:f8:ed:af:33:39:1a:52:5c:52:83:
e0:92:37:22:2b:16:d7:81:e3:b6:71:4e:f7:c2:71:15:4b:07:
fa:ba:e5:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:47 2025 by rpki-client