Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.mft
File: PuzUyqmjpXcV49XWa8zXGFr-QNo.mft (raw, json)
Hash identifier: s5ruKfmrDoaC+WOTJBFZpgVAs2e2jF/1JYuo/kMtpCk=
Subject key identifier: 99:AA:24:EE:EA:6A:2E:9E:10:54:C9:AB:CA:12:B6:65:0C:F2:E7:86
Authority key identifier: 3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
Certificate issuer: /CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Certificate serial: 0199239ED162F6ACB437130609B254793B74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.mft
Manifest number: 167B
Signing time: Sun 07 Sep 2025 10:00:34 +0000
Manifest this update: Sun 07 Sep 2025 10:00:34 +0000
Manifest next update: Mon 08 Sep 2025 10:00:34 +0000
Files and hashes: 1: GTSqn8ohuN-MHhN18mr9Itlt7ao.roa (hash: lFLyLMK3dWhD600oT7fgmI5ccuGsQ2tgFOCCKMH2dCM=)
2: PuzUyqmjpXcV49XWa8zXGFr-QNo.crl (hash: rSds+0zYu/64w9rL7pOrI/l77lMBRHJJd1SM16wGELw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.mft
rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:d1:62:f6:ac:b4:37:13:06:09:b2:54:79:3b:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Validity
Not Before: Sep 7 10:00:34 2025 GMT
Not After : Sep 8 10:00:34 2025 GMT
Subject: CN=99aa24eeea6a2e9e1054c9abca12b6650cf2e786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c0:da:9a:06:9a:e9:62:32:01:a9:5c:76:ab:
c8:dd:21:dd:79:c2:a0:89:94:3f:99:75:57:b6:b3:
7c:fe:f5:42:b0:e2:94:a1:a7:cf:7d:cf:04:e5:de:
27:7b:5f:a0:c5:d0:69:2d:aa:4a:4d:c2:46:3e:01:
95:ae:af:a7:4b:eb:75:5d:cd:36:71:bc:ad:43:c8:
4e:19:a0:cf:8d:19:15:9f:95:0f:76:73:3d:b9:5d:
0b:51:36:61:7b:4c:52:2c:14:21:6b:bc:4b:27:64:
3b:ee:cf:2f:94:f1:9c:e5:e8:b1:4c:9e:4d:f9:af:
f6:06:66:7a:7e:26:32:d8:a1:86:9f:92:1f:f9:48:
d4:e9:0f:63:b5:ff:3f:99:5b:f9:0e:bc:9c:df:bb:
05:84:fc:cc:67:29:c5:9c:87:f3:a0:9d:a8:00:74:
6e:86:ac:13:86:61:14:22:f5:18:1d:99:db:39:a1:
5e:58:3b:08:e7:52:c5:42:45:ef:09:fd:e7:a2:98:
a2:4e:c7:cd:69:a3:4c:cc:42:55:7d:a2:3b:da:89:
14:db:f0:bd:78:9e:4d:29:86:4d:65:0f:69:34:35:
f9:dc:33:bd:ff:d8:24:e5:a6:5c:2e:81:9d:d4:ba:
0b:3a:10:2d:35:90:02:dc:ce:70:bd:c2:cd:01:40:
1d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AA:24:EE:EA:6A:2E:9E:10:54:C9:AB:CA:12:B6:65:0C:F2:E7:86
X509v3 Authority Key Identifier:
keyid:3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:21:17:ad:79:ae:b6:34:fc:2f:31:61:b3:86:02:2d:cf:22:
e5:fe:2e:b7:b7:22:76:25:ac:c9:8d:54:cd:4b:40:ee:d2:02:
43:d8:9d:bc:da:01:62:74:31:d8:1f:89:60:9b:a3:d7:3e:4f:
93:f4:6e:bd:6e:8f:94:38:00:dd:38:72:2a:a9:93:67:f4:d6:
69:91:e2:ab:9d:c4:70:10:54:22:79:31:e6:90:16:26:bf:88:
5c:c2:15:a3:6b:c0:c3:c5:9d:2f:3a:4d:7c:2c:2e:c8:18:1f:
97:49:fc:fa:c2:c2:29:c0:5b:a1:00:2e:24:e5:56:76:aa:cc:
73:4e:d1:f6:76:5c:8e:fe:69:b3:16:c2:c6:8e:a5:43:6b:ff:
6b:c6:0b:a0:4e:57:83:b6:e9:fd:7f:14:a0:71:c5:e6:60:fb:
cc:1a:db:8e:5e:1c:40:c9:97:bb:ea:df:ff:6b:67:e9:5d:61:
a1:ee:8c:dd:02:3c:a9:ad:71:a9:8e:c5:b0:d2:88:82:dd:53:
cb:cc:3f:83:c6:17:db:84:77:41:ef:21:29:79:ee:ca:6e:07:
7f:53:01:79:19:af:4d:60:30:b5:1e:a0:cb:35:bf:67:5c:40:
42:5d:b2:84:8f:0e:2a:41:95:7f:46:84:64:45:96:93:65:ba:
26:05:02:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:51:00 2025 by rpki-client