Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
File: r9I8xVrurzN-23Pq4ltZCXoneEw.mft (raw, json)
Hash identifier: vlYtZ6I/scc+9592hQUjcher8mJpzTQv+wppnbIAcxI=
Subject key identifier: 81:66:AF:E8:E3:1F:A7:1B:7B:C5:70:4E:A8:C3:F4:E8:43:4E:3B:EE
Authority key identifier: AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
Certificate issuer: /CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Certificate serial: 019921B1F6221F140B7B754D9DAB0F868AD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 01:02:14 +0000
Manifest this update: Sun 07 Sep 2025 01:02:14 +0000
Manifest next update: Mon 08 Sep 2025 01:02:14 +0000
Files and hashes: 1: lHwTYMLdPppQjIGCxxbbE7ChdPI.roa (hash: AdFGp8oSyfut37qs3XRrjrGdC0sy7qxul+fWrYsyUd8=)
2: r9I8xVrurzN-23Pq4ltZCXoneEw.crl (hash: J11B1oINBMU8OumFk1BQ5sG2AyAU07oYNApjHCYaoVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:f6:22:1f:14:0b:7b:75:4d:9d:ab:0f:86:8a:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Validity
Not Before: Sep 7 01:02:14 2025 GMT
Not After : Sep 8 01:02:14 2025 GMT
Subject: CN=8166afe8e31fa71b7bc5704ea8c3f4e8434e3bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6d:b7:e6:8e:66:d3:b3:da:0f:c6:81:da:d1:
a8:5e:a9:bf:fb:3b:81:09:87:48:e3:b5:74:dc:9e:
c2:49:06:16:63:84:00:f9:69:14:0c:10:62:3d:d9:
97:4b:a2:99:8c:fa:18:10:14:4a:32:3b:7a:88:fe:
17:86:74:02:c8:5d:7b:a2:1c:a6:9d:37:35:db:ce:
49:bf:7b:63:0e:50:77:34:e0:5c:32:d3:92:a6:04:
dc:84:f3:5e:12:52:20:7e:cb:3e:cc:e6:10:9c:04:
b6:e9:ca:d6:45:f8:af:45:1a:48:c4:ca:c8:93:8e:
4b:ec:ed:18:ed:5b:88:a8:00:d1:6e:e7:cf:fb:1e:
75:1d:8d:95:16:99:fa:14:59:f0:4a:38:89:d9:8e:
97:bc:43:99:8e:99:67:67:da:09:c5:8c:d1:18:09:
a2:f2:e4:c8:0b:a1:da:1c:44:0b:57:3e:70:f7:12:
a8:e0:8c:81:eb:3f:db:0f:b8:d4:41:64:e9:8c:89:
80:dd:47:9d:8d:19:9a:11:7b:72:62:9c:e0:8a:6a:
0f:88:c8:be:17:11:93:88:bc:1a:4b:f3:4b:e0:5c:
40:0b:25:91:1b:0a:e6:e1:72:65:73:10:67:f0:cd:
78:9a:ac:9f:a7:75:c4:6d:3f:1d:d5:68:29:62:f7:
55:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:66:AF:E8:E3:1F:A7:1B:7B:C5:70:4E:A8:C3:F4:E8:43:4E:3B:EE
X509v3 Authority Key Identifier:
keyid:AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:91:da:97:c1:53:e4:70:28:71:a4:a6:94:30:01:51:68:34:
8d:cf:af:72:d6:f5:9d:3a:52:de:e0:71:3f:96:c9:ea:fc:83:
84:ab:2a:97:e1:50:5d:dc:18:e0:18:4e:22:1a:d7:a6:0a:59:
91:da:36:4e:64:1f:6a:2c:81:d7:0b:7b:df:34:73:42:ac:8f:
d3:3c:81:cf:c5:c9:f1:6d:82:7e:cb:47:5d:a6:a6:fa:aa:06:
91:ef:17:89:31:a6:d8:54:17:4a:26:cc:70:c5:7f:b6:8e:36:
5b:d2:9e:da:f3:d3:6f:6e:58:2a:90:39:8a:e6:a2:2c:01:bc:
53:11:7a:50:21:b6:5a:0b:55:eb:a9:6f:1a:b1:17:18:9f:0c:
73:c5:91:88:fb:e7:ae:9f:8e:55:52:a4:6b:52:72:bc:7e:4b:
a3:63:cb:96:0b:e9:cf:00:da:33:72:7f:6f:fa:24:65:26:47:
b4:af:c9:44:e5:ce:09:d0:ca:57:f6:2d:cc:5a:a5:23:f5:82:
01:3a:62:46:cc:2f:02:73:03:39:fc:f4:57:3b:37:18:53:6e:
78:57:7d:63:27:40:fa:e5:c5:99:a1:b8:24:a2:4c:5a:b0:12:
16:d6:32:79:6f:6b:b0:58:a9:c7:7b:e9:07:cd:07:44:86:66:
1b:8f:c7:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:16 2025 by rpki-client