Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
File: _RHEZUr3AuWW61DRP6SG202bzgo.mft (raw, json)
Hash identifier: eZC+ZVzyanGBdyEi6fnceIDgGPB5irbuOwYNIoZ+x4E=
Subject key identifier: 37:06:FD:92:DF:E7:D7:8D:34:67:CD:94:D7:EB:F8:1B:D6:49:AE:EE
Authority key identifier: FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
Certificate issuer: /CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Certificate serial: 0199183FAF7DBD8745DB3D1FF1C197C6FA28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
Manifest number: 166C
Signing time: Fri 05 Sep 2025 05:00:50 +0000
Manifest this update: Fri 05 Sep 2025 05:00:50 +0000
Manifest next update: Sat 06 Sep 2025 05:00:50 +0000
Files and hashes: 1: W3jKuxB_RcgliKc6SOrb-E9lQW4.roa (hash: flRFJj0cuA1GRJx+AJmEhdqQRbsG/XKga+ETKIMZCEI=)
2: _RHEZUr3AuWW61DRP6SG202bzgo.crl (hash: g5JMFQ/MJGJ0ei0U77Vj4YDg/6l88uxeublFKEuYpJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:3f:af:7d:bd:87:45:db:3d:1f:f1:c1:97:c6:fa:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Validity
Not Before: Sep 5 05:00:50 2025 GMT
Not After : Sep 6 05:00:50 2025 GMT
Subject: CN=3706fd92dfe7d78d3467cd94d7ebf81bd649aeee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4e:bb:6e:e4:d3:7f:5f:6e:bf:ad:c5:1b:7b:
5c:34:b7:14:c5:30:c4:cd:15:a3:4e:72:ce:e1:0a:
c0:3a:69:0f:78:63:1a:8c:5a:eb:be:2a:80:8c:68:
28:80:d9:92:8a:41:1b:03:8f:4d:c8:2d:64:a2:47:
a4:44:53:dc:7f:73:cf:d5:95:c2:ea:a1:a8:50:e5:
3d:3d:b7:a9:41:47:73:3f:9f:ab:23:05:13:e0:48:
29:b2:17:98:2c:b5:ee:fc:6d:f4:59:47:e3:35:d4:
e7:a8:4f:c9:bd:5e:45:4b:60:82:bd:ea:7b:f6:ab:
70:69:7a:21:59:79:93:ff:02:61:e6:3c:ef:12:10:
4a:5b:4d:1b:1d:16:f1:59:f1:cf:31:c5:a2:0e:17:
d8:02:bd:1a:38:09:f2:f9:15:ae:8f:57:c5:53:64:
59:ab:a0:92:26:ce:5f:a6:67:fe:f1:c3:2d:5b:bc:
05:c0:e1:e7:9d:fe:ab:c9:59:e3:ac:69:e3:01:bc:
a6:59:c6:2e:64:83:d2:c4:4c:4c:ae:0a:21:b3:55:
30:76:3f:7d:11:14:bb:5f:8f:24:21:1c:4d:6c:cc:
10:06:6a:4d:51:a4:c0:cb:a8:c4:57:57:77:f3:bd:
10:77:6f:c9:0a:7f:93:35:94:7c:b0:ca:2f:ad:ca:
08:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:06:FD:92:DF:E7:D7:8D:34:67:CD:94:D7:EB:F8:1B:D6:49:AE:EE
X509v3 Authority Key Identifier:
keyid:FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:eb:7b:f1:f2:3c:c1:36:be:7e:db:fd:e3:50:75:c5:20:8d:
55:ed:59:f2:e9:8e:0c:4a:b5:80:47:2d:4a:93:01:23:31:72:
f2:b1:ce:33:0c:bb:ac:d7:af:f3:5d:fa:05:c6:15:2f:0b:15:
f2:e0:b7:bd:37:ca:b4:f1:0d:b1:28:a2:3d:1f:c1:e8:d1:b4:
e8:a0:9a:dc:54:2d:0f:a4:0a:c5:b6:16:43:ff:ff:c2:f0:c6:
1e:67:15:be:43:6f:ba:b1:34:e0:9a:bb:4e:05:68:20:61:5b:
47:2b:e9:1d:aa:3d:b7:6a:49:f5:7f:f9:27:04:ce:d2:73:02:
61:9b:73:4f:ad:ed:7a:48:d9:f5:cb:5a:b7:6a:3f:95:72:5b:
e9:45:0b:2b:d9:98:85:ee:2e:ae:b2:cd:dd:61:82:23:e9:94:
2d:16:95:9e:2e:f1:f0:98:0d:69:a1:5e:c9:85:48:b3:26:bc:
f4:31:d5:7b:20:bc:9d:45:df:26:aa:6e:71:f7:50:3b:aa:c4:
a3:82:71:b2:d3:4f:5e:53:a9:2f:d1:59:99:5c:5f:64:8e:45:
2f:92:df:1a:04:b7:8d:00:ed:8d:40:8e:25:85:d2:1d:aa:e8:
19:d0:b3:30:e1:75:45:43:9e:0f:2f:39:a9:6e:31:a6:6b:88:
ad:92:9a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:05:26 2025 by rpki-client