Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
File: b14CML55nkSCnIcgyjg0cEVJTiA.mft (raw, json)
Hash identifier: 2+TwjHALagbPk5lYhMyuyYO1zsvQZ1wws1l2gzbUFzU=
Subject key identifier: 1C:A6:AA:13:DB:DC:77:5F:37:C0:11:19:3B:6D:A2:BE:EC:13:DC:D0
Authority key identifier: 6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
Certificate issuer: /CN=6f5e0230be799e44829c8720ca38347045494e20
Certificate serial: 01992B8F81FA3476B3F283015D530C51A4C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
Manifest number: 16BA
Signing time: Mon 08 Sep 2025 23:00:48 +0000
Manifest this update: Mon 08 Sep 2025 23:00:48 +0000
Manifest next update: Tue 09 Sep 2025 23:00:48 +0000
Files and hashes: 1: 3vEPBG1oI2P7D_OfeL-L-zO3dlY.roa (hash: tN3ytiGRqjapeYsvwHwSYsXkP2Hw2Lot2BTQS7jncsI=)
2: b14CML55nkSCnIcgyjg0cEVJTiA.crl (hash: gZ8m+LaUgxw/bYICPVSJPO6tUqQ8uEv2t14gUV/qCKY=)
3: jN3YKyZr7fLBbaM-ys_51VKLM4I.roa (hash: /Z7rTH+6bXmxYBkfBLPrrW+aXm6fTfnVD3Lj/2mMT08=)
4: pdxIZLkn44c6LSjDy38wqVYD4hk.roa (hash: A+cdWFoJP8yj76UKSIBetM0GWfZ4/vk5vohLKBXTmGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2b:8f:81:fa:34:76:b3:f2:83:01:5d:53:0c:51:a4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5e0230be799e44829c8720ca38347045494e20
Validity
Not Before: Sep 8 23:00:48 2025 GMT
Not After : Sep 9 23:00:48 2025 GMT
Subject: CN=1ca6aa13dbdc775f37c011193b6da2beec13dcd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:28:c4:9a:62:f5:a9:56:26:eb:5a:2f:05:6b:
12:bc:6a:d3:fd:7b:df:36:61:6d:53:3d:ab:61:34:
9e:b7:06:85:c2:6a:0a:d9:e9:a1:ef:6c:29:0c:07:
de:7a:86:c0:be:07:2f:d3:14:6d:5c:3a:d4:5a:a4:
38:94:fb:f5:0a:21:5b:7d:51:db:30:5a:63:58:2a:
24:17:7d:86:85:ef:e5:76:ca:f6:76:4e:66:35:65:
5f:d7:d5:20:ce:55:88:9a:7c:bb:30:46:8b:10:1f:
e6:f8:7d:bf:2f:71:67:c5:7f:2f:dc:8c:dc:a2:5c:
ce:60:5d:d3:76:dc:54:dc:25:ab:d1:4a:28:b8:e0:
39:16:53:63:b8:02:d9:2a:88:6e:1c:ce:ec:ad:d7:
f4:a0:ef:1a:b2:4a:15:ec:59:fb:4a:5f:59:24:a2:
32:f5:fd:47:e3:db:97:d9:c7:3e:f7:04:4a:9a:69:
dd:7f:07:84:1f:59:d3:7f:dd:04:84:78:16:d2:b0:
3d:ae:7e:d2:6e:80:a1:0c:ec:7e:25:b0:25:a4:df:
32:c0:21:8d:59:a7:c2:ae:0b:9b:5d:e5:d2:16:ec:
37:34:72:ea:ea:4d:74:22:4b:44:3d:3c:c5:5c:a7:
aa:1b:55:74:4b:e4:ed:b1:47:71:cc:90:98:c0:63:
e5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A6:AA:13:DB:DC:77:5F:37:C0:11:19:3B:6D:A2:BE:EC:13:DC:D0
X509v3 Authority Key Identifier:
keyid:6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:28:a5:ca:55:6e:20:6d:bf:11:b6:b7:dc:51:a5:ce:be:96:
b3:f2:38:10:71:fe:36:a3:44:ed:09:62:65:9b:c9:2a:de:ef:
6b:dd:b3:d1:48:ca:b4:7e:db:a3:7b:94:98:ac:32:00:f3:d7:
d6:b2:ff:e7:4c:c7:9f:e5:26:b1:16:4f:6d:5a:87:70:fa:28:
cd:89:46:aa:59:05:ab:07:06:87:f4:44:25:b4:f4:9c:22:36:
b7:4c:75:c6:0f:85:9d:74:68:db:cb:a8:c6:ca:cd:7e:82:9a:
a0:a9:44:ce:a3:b4:2f:e5:59:5f:c6:1b:3c:9b:e8:13:db:50:
a7:b7:3f:13:1b:6f:b6:ca:98:39:c0:87:ee:79:68:2a:4e:68:
3d:fc:ff:b8:d0:ed:e2:98:62:23:19:38:cb:91:bc:77:70:43:
79:3b:20:58:11:6c:0e:24:f7:a7:f2:65:72:86:2f:93:7e:99:
e1:00:89:22:85:f9:ed:f3:8b:87:c0:c9:e2:67:82:4c:22:ef:
75:fc:33:c3:69:df:cd:58:08:e2:07:6c:f7:6f:1b:43:c8:28:
53:14:5e:d9:e6:fc:41:bb:60:dd:a8:2b:05:d7:36:23:c3:ec:
bd:18:b5:fe:af:a1:07:a3:29:7d:1e:90:18:63:c8:e0:63:15:
47:fc:e9:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 02:30:59 2025 by rpki-client