Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: VYnibBejWtFf/duE6l+XTNxzrJzur2XS2wuj/xIXuQg=
Subject key identifier: 7B:F6:FC:56:D7:61:AC:3B:25:0F:89:3C:D8:73:89:4F:23:5E:BD:DC
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 01993680F988912251E9F324D23D6AF3E4D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 13CD
Signing time: Thu 11 Sep 2025 02:00:46 +0000
Manifest this update: Thu 11 Sep 2025 02:00:46 +0000
Manifest next update: Fri 12 Sep 2025 02:00:46 +0000
Files and hashes: 1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: p6H8FNfRi47ZRBm7ErUDxP52LIs9ooORjGDxxYo2FqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:80:f9:88:91:22:51:e9:f3:24:d2:3d:6a:f3:e4:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Sep 11 02:00:46 2025 GMT
Not After : Sep 12 02:00:46 2025 GMT
Subject: CN=7bf6fc56d761ac3b250f893cd873894f235ebddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9c:e0:dd:3e:36:8a:28:39:dc:94:85:15:01:
bc:d1:44:68:1c:40:19:5a:b1:56:ec:15:cf:e2:42:
f4:61:ad:78:ff:df:24:88:9f:46:46:52:d8:a3:09:
26:50:6e:8d:9c:59:2b:82:a1:87:ef:0c:e9:85:58:
bd:e5:a6:9f:12:59:1d:5c:44:75:10:36:0d:84:de:
b9:7b:4d:15:04:6c:52:00:99:1b:68:9c:ff:3c:6f:
36:12:e4:70:9d:9d:98:38:0f:f6:9e:73:71:be:e5:
57:e2:66:b0:96:6a:78:82:63:2a:6e:6c:b2:59:66:
72:84:79:5c:51:3a:09:80:7a:c3:47:80:9b:31:25:
cd:26:d4:a3:34:b6:8d:2a:b4:44:91:29:6d:07:6e:
2c:5e:4f:ef:9a:97:37:57:5a:cd:1a:da:32:1a:07:
ec:8f:f0:f9:9b:56:a0:94:aa:8f:f2:bf:0b:de:aa:
aa:36:1a:0c:a5:72:a8:85:c3:d3:c5:76:63:01:6c:
62:6f:01:c5:91:08:f0:e4:a4:a8:e2:79:9c:7c:5d:
9f:fb:f5:6f:e1:8b:1c:48:cd:95:fd:9a:61:ab:62:
cd:01:f8:fa:43:78:86:f1:72:5f:e9:28:00:73:71:
68:44:44:3e:0b:1e:4b:4f:f2:ed:44:8c:a4:53:86:
a4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F6:FC:56:D7:61:AC:3B:25:0F:89:3C:D8:73:89:4F:23:5E:BD:DC
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:9e:8f:6f:42:f6:67:c9:75:2c:5c:0a:a8:ff:bd:b5:e3:f6:
bb:5a:22:0f:cf:b3:13:8f:fd:16:da:a9:d1:1b:9e:8a:86:bf:
7a:d8:f0:82:0f:a2:23:2d:05:d2:7d:d4:6c:f3:b4:aa:b0:de:
a6:33:ea:d5:51:39:e1:a8:4f:f5:99:8a:92:97:64:95:65:79:
91:f1:52:a1:86:ba:69:5b:27:79:6e:f3:a6:8b:4d:69:89:ca:
e8:10:85:5d:58:9c:4c:06:24:bc:6a:47:f6:e4:bb:db:02:64:
aa:81:48:a4:91:a5:90:44:47:eb:ee:84:bc:42:dc:77:12:b8:
cf:c4:ad:2f:7d:5f:89:f6:05:ba:3b:df:bf:f8:b7:a8:1c:b8:
49:a0:88:cd:3a:5a:5d:82:c8:ba:d5:fe:8a:0d:b2:6e:8c:26:
98:f0:fa:57:d4:78:f7:d3:5d:00:db:9d:34:75:14:38:3c:39:
8f:3a:c7:ab:58:01:6d:63:85:95:1a:49:0f:52:98:bc:3f:4f:
e9:56:4f:64:82:57:b7:d2:26:9a:75:a7:ea:f7:ca:4e:54:65:
c6:e5:20:81:dd:8e:84:69:9e:54:62:82:2d:58:d6:cd:b2:2e:
49:f2:77:39:b1:93:55:b1:ce:f8:09:70:0e:34:90:9f:18:61:
ac:9e:0f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 04:49:34 2025 by rpki-client