Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
File: usA65sVFitKAdlulUnmAoG_sI6g.mft (raw, json)
Hash identifier: JX90wTaK98dNltowriCwqlQQE8aAltDVaARJLe1XXKE=
Subject key identifier: B5:CE:A9:46:C8:86:23:7A:8B:94:F9:1C:84:E7:D5:CD:41:B3:19:81
Authority key identifier: BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
Certificate issuer: /CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Certificate serial: 0199361335C9967BC8B694140ACFAA6B4785
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
Manifest number: 167B
Signing time: Thu 11 Sep 2025 00:00:52 +0000
Manifest this update: Thu 11 Sep 2025 00:00:52 +0000
Manifest next update: Fri 12 Sep 2025 00:00:52 +0000
Files and hashes: 1: umBmq8XFX-zXziXQ4pyACUgy-FQ.roa (hash: JuI2qHr6MZgrFWdKqrf8sXobXSWHVnMHISH4QdZzmLE=)
2: usA65sVFitKAdlulUnmAoG_sI6g.crl (hash: TJTk30Et4XvCZ9sVTJjjbyorGXoJCUGtqzHl3f2XpIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 00:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:13:35:c9:96:7b:c8:b6:94:14:0a:cf:aa:6b:47:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Validity
Not Before: Sep 11 00:00:52 2025 GMT
Not After : Sep 12 00:00:52 2025 GMT
Subject: CN=b5cea946c886237a8b94f91c84e7d5cd41b31981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2e:3c:bb:28:88:3c:ea:b4:08:8e:7c:2a:6b:
96:13:a7:50:3f:b4:12:42:f4:7a:9f:36:2f:a5:4a:
4b:b1:14:6c:ef:5f:24:78:42:3b:36:35:82:e4:aa:
a2:eb:f6:42:42:bc:ec:d0:05:a3:57:42:3e:8f:0b:
87:05:fc:44:7a:d4:87:64:e8:c2:7e:4f:5d:e9:d4:
2a:cb:ef:f4:32:10:3b:35:01:98:a7:78:0a:65:4c:
97:5d:90:f1:c8:de:ee:71:c1:79:29:13:73:4c:39:
ef:20:6b:49:dd:f6:f9:75:79:e8:84:48:28:0a:39:
b9:79:a1:9a:c0:42:c7:03:af:93:b1:92:2f:ba:e4:
fe:9f:b2:2d:9e:77:23:98:6a:10:3c:45:8b:19:75:
77:6a:34:41:36:91:cc:f6:dc:c7:28:96:82:88:46:
3f:ab:2d:39:84:0a:bb:07:e1:85:4f:76:cf:86:09:
84:9c:3c:7b:55:a2:fb:f9:fb:58:d7:c4:3d:13:44:
5f:3b:83:73:63:44:28:1f:59:a1:60:d5:4a:89:4a:
4f:e2:aa:3f:c8:15:a4:71:78:e0:67:3d:05:b7:9f:
c5:b4:28:d1:9b:20:03:5e:5a:16:b0:c1:5d:f0:4a:
d9:fd:68:73:c5:d6:b9:8c:0a:6f:4e:96:8d:46:1d:
ca:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:CE:A9:46:C8:86:23:7A:8B:94:F9:1C:84:E7:D5:CD:41:B3:19:81
X509v3 Authority Key Identifier:
keyid:BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:73:9a:cd:a9:f8:4e:e8:ed:5c:4e:9f:d3:db:5a:52:f3:ad:
5a:98:28:af:70:78:00:28:46:eb:c2:34:58:96:dc:f5:68:65:
19:1a:9d:05:3e:a6:5a:67:d6:f1:87:93:ae:e1:54:b8:81:2f:
24:9b:72:93:86:a7:41:c5:51:a3:5d:b7:4f:86:4a:83:8a:f6:
7e:d4:a2:d4:e9:e1:61:03:41:ec:7e:5c:5b:47:31:49:e4:f4:
4b:4f:24:a7:47:d3:ee:27:12:30:86:34:b2:5f:e2:14:6b:3f:
06:ea:80:49:25:1d:3f:8d:30:6d:af:d6:de:bc:1d:f4:52:3d:
73:96:97:ab:88:2f:64:6f:7b:75:67:ed:5b:ad:a3:80:de:05:
54:45:fc:d9:34:02:da:2e:0a:3b:32:47:51:c1:d5:eb:95:a5:
ba:1f:b4:a8:77:b3:1d:8d:f9:36:77:ab:b2:bf:bd:cf:94:07:
82:e9:f5:0b:bb:ad:6c:f0:40:90:e5:3e:5e:9d:88:34:e3:7d:
c2:53:5d:71:47:80:99:6b:4a:c2:28:6d:ac:3f:a9:4b:80:b6:
2b:cf:04:3b:d3:7c:f5:69:68:c1:e0:34:b2:a2:83:10:18:15:
21:c4:57:fe:aa:51:41:34:44:ea:47:d5:e7:a2:79:96:b3:88:
50:49:96:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 07:53:45 2025 by rpki-client