Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: 8ChzFGh3rcF5JLn9zdErUqOiRjnBr2rjOz3rS46hRgA=
Subject key identifier: 1A:18:3B:17:4A:9D:21:5F:EF:43:AE:06:88:A0:23:78:08:CA:18:0E
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 019A2409BCFB2C5D7C6323B71EDC364A9D1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 1448
Signing time: Mon 27 Oct 2025 05:00:09 +0000
Manifest this update: Mon 27 Oct 2025 05:00:09 +0000
Manifest next update: Tue 28 Oct 2025 05:00:09 +0000
Files and hashes: 1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: CTBK0iYXuO2/FyPJM+Cn6MgNh7z03GjEj2cCLDBthdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 05:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:09:bc:fb:2c:5d:7c:63:23:b7:1e:dc:36:4a:9d:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Oct 27 05:00:09 2025 GMT
Not After : Oct 28 05:00:09 2025 GMT
Subject: CN=1a183b174a9d215fef43ae0688a0237808ca180e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7d:b6:b4:c7:13:55:f1:58:68:d0:5f:a8:55:
1c:dc:77:22:6b:9a:38:e3:aa:d3:18:f7:fa:de:e9:
5b:3d:e2:94:b4:f6:74:e3:93:33:54:8a:28:56:25:
29:9b:eb:9c:8a:45:52:a4:75:ac:9b:c1:85:6a:eb:
1e:77:e7:76:3d:c5:ab:f0:71:f3:13:ff:da:49:a3:
de:16:90:85:09:e7:4f:65:e9:f0:fe:02:ac:ad:d1:
ba:dd:39:27:fa:e8:d8:d3:f8:fa:61:b0:f9:c4:1b:
b3:1a:e8:17:e0:a0:08:87:66:bb:d9:7b:93:2a:f5:
04:85:fe:01:3a:a5:53:bf:56:4e:1d:8b:6c:2c:9f:
f4:3e:0c:3a:5f:e8:b4:30:76:26:4d:bc:10:0f:28:
c8:a1:1e:71:18:1e:6e:b0:9c:fd:36:10:a7:9a:b7:
ba:f8:dd:21:86:6d:d2:47:be:7e:66:cb:b8:c5:bb:
6c:22:45:58:34:3a:87:b9:46:18:f0:a1:0d:df:a3:
a1:17:a4:8b:08:94:ac:b6:9d:00:b7:a7:6d:30:9c:
a5:eb:f0:9a:85:fa:c2:bd:58:a7:3a:16:17:3e:ad:
19:a5:18:3d:45:9d:d7:c5:69:03:a4:29:7b:7c:e3:
59:41:e4:6a:99:eb:fb:d8:4c:ca:2b:3f:62:d8:d8:
0b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:18:3B:17:4A:9D:21:5F:EF:43:AE:06:88:A0:23:78:08:CA:18:0E
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:97:ef:f9:01:92:98:ad:19:a4:08:8a:c5:0c:78:3c:da:1f:
f8:00:a6:ed:83:5a:3d:b6:60:f8:8d:57:a4:af:e9:a7:88:dd:
25:f8:d2:c3:60:38:c5:fa:7c:24:d0:c4:f2:b0:41:6e:bc:19:
e8:37:22:45:3d:46:95:c1:fa:01:dc:60:64:95:57:2c:92:3e:
c8:dc:96:9f:f6:a1:3e:d0:20:9e:1e:89:be:5f:eb:42:f8:15:
28:1b:cb:66:25:e6:9f:f5:29:46:04:9d:5d:68:c8:00:1a:e4:
2f:36:c7:72:b9:6e:4e:64:bd:87:89:a9:82:38:a9:85:8b:e8:
74:b0:a6:29:02:f9:f3:c6:bf:ca:9c:8f:33:4d:14:d2:5f:c5:
52:1f:a8:b7:a0:6f:d4:f6:1f:fe:37:25:17:e6:13:ce:f1:52:
f8:b2:38:9e:3c:af:4a:f3:e1:12:81:b9:ae:4f:23:48:69:6f:
a7:6f:38:65:d7:51:7f:53:25:13:36:d7:49:a8:df:06:b3:67:
32:32:6d:7f:a9:c4:b3:56:e8:5b:0a:48:c2:41:94:5e:a3:0e:
4c:ac:84:11:07:c3:a5:0b:9e:f8:5a:e0:4c:43:52:ad:25:d2:
4f:7b:d2:07:5c:e7:e6:a6:bc:12:cf:46:25:83:f6:ea:27:87:
b2:db:3f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 09:38:24 2025 by rpki-client