Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
File: 9zHDObGGFyK__oZyGDFM4SlcPIU.mft (raw, json)
Hash identifier: b1LCOKzaHbP6sbxgm6xnUEG8Cp/JY56LDYsyl0BOv+U=
Subject key identifier: E1:C3:A8:54:57:89:D6:8C:D7:1E:1A:0A:71:A9:DC:0B:25:86:87:A8
Authority key identifier: F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
Certificate issuer: /CN=f731c339b1861722bffe867218314ce1295c3c85
Certificate serial: 01993191D647C47B82BD0742764A9C552F9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
Manifest number: 167A
Signing time: Wed 10 Sep 2025 03:01:04 +0000
Manifest this update: Wed 10 Sep 2025 03:01:04 +0000
Manifest next update: Thu 11 Sep 2025 03:01:04 +0000
Files and hashes: 1: 9UQ0_3_mS41_iKwg1qjiuH2k8kg.roa (hash: kiU7QM0C1mwEaOQNcthFFJZevyv4iXHm9WMDBPMiwH8=)
2: 9zHDObGGFyK__oZyGDFM4SlcPIU.crl (hash: LnUx/ZbmyZlv3xuVlUnZEG5SBZgIB1SurJbIOHHJ1Ig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:91:d6:47:c4:7b:82:bd:07:42:76:4a:9c:55:2f:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f731c339b1861722bffe867218314ce1295c3c85
Validity
Not Before: Sep 10 03:01:04 2025 GMT
Not After : Sep 11 03:01:04 2025 GMT
Subject: CN=e1c3a8545789d68cd71e1a0a71a9dc0b258687a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d0:45:8a:73:41:86:6d:17:83:a4:b1:48:b0:
58:35:94:f2:5d:17:b2:37:c0:78:1c:6f:3b:4f:10:
4d:d6:10:fe:bf:84:36:e7:85:ac:bc:83:ad:47:c6:
5a:db:1e:5c:b3:47:5c:48:26:7f:88:78:fc:8f:d1:
79:4f:6c:c5:90:8f:a2:25:17:95:15:5a:9e:13:81:
5d:15:b8:37:18:64:de:37:be:cb:72:42:7f:be:36:
08:b0:09:de:e4:65:ef:5f:83:ec:03:96:6f:dd:16:
8e:a6:13:0d:44:65:bb:16:08:91:19:10:b7:85:88:
25:89:65:6e:f9:3d:0f:17:66:8e:f6:ab:03:10:f2:
43:2e:1f:e7:74:0f:6f:04:39:d7:26:a3:53:91:8a:
f7:37:ca:fa:e1:32:7c:f9:c6:46:3c:b2:4c:00:d7:
8d:34:00:6e:c9:bd:0b:52:61:b1:fc:9a:cc:af:fd:
f0:d9:b2:78:b5:26:c9:8f:75:cc:8d:e8:78:9d:c7:
ad:ab:5f:ff:16:19:2b:5b:3e:9d:c2:ab:a6:2a:6b:
ae:a3:cc:82:c7:cc:55:1a:2c:7d:6a:c3:2a:1a:e4:
c1:8a:4e:54:47:ea:34:aa:b6:67:fb:10:63:4c:68:
c0:7a:98:56:b3:8a:76:51:bd:05:53:46:91:dd:2a:
75:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C3:A8:54:57:89:D6:8C:D7:1E:1A:0A:71:A9:DC:0B:25:86:87:A8
X509v3 Authority Key Identifier:
keyid:F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:d4:14:66:53:8c:53:a6:00:ad:10:43:8d:6e:80:c0:9a:20:
f5:de:ef:11:9b:58:64:1c:b9:8c:97:43:71:23:02:1c:30:51:
25:92:d4:8e:24:43:02:b1:9f:56:14:3f:ed:6e:b6:8c:ef:8f:
73:f3:f5:58:ba:2b:82:3f:57:7d:57:c3:78:48:34:d2:88:71:
c8:b9:80:54:42:25:67:60:50:df:90:69:0b:73:77:11:43:6a:
9b:a1:5a:37:0e:89:96:83:94:4c:41:06:4c:92:0a:4d:24:5b:
e2:62:4a:a2:ff:bd:15:5d:f5:61:82:ba:d4:42:f4:e5:93:4d:
ac:8f:37:31:f6:11:7d:fe:ae:72:dd:ce:33:e6:43:f6:f9:5f:
0b:4f:29:88:09:f9:a4:e0:a6:0a:d7:d3:e3:3c:01:89:59:15:
e4:3c:88:e0:27:52:ce:70:81:0d:d9:fa:f4:b4:63:82:80:f9:
7d:28:2a:c3:ab:f8:e6:6b:fb:aa:5a:b4:ac:1a:c4:fd:44:e8:
72:5e:9f:e8:fb:43:02:72:2b:fb:18:4e:2b:8a:8c:7d:04:7c:
26:c5:a5:f4:c7:9c:f7:da:c2:d2:c0:53:da:3b:bb:97:66:be:
14:27:e2:7b:4d:02:64:2a:eb:3b:d5:00:80:18:a4:bf:71:1b:
19:ef:e1:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkxkdZHxHuCvQdCdkqcVS+cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3MzFjMzM5YjE4NjE3MjJiZmZlODY3MjE4MzE0Y2UxMjk1
YzNjODUwHhcNMjUwOTEwMDMwMTA0WhcNMjUwOTExMDMwMTA0WjAzMTEwLwYDVQQD
EyhlMWMzYTg1NDU3ODlkNjhjZDcxZTFhMGE3MWE5ZGMwYjI1ODY4N2E4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmNBFinNBhm0Xg6SxSLBYNZTyXRey
N8B4HG87TxBN1hD+v4Q254WsvIOtR8Za2x5cs0dcSCZ/iHj8j9F5T2zFkI+iJReV
FVqeE4FdFbg3GGTeN77LckJ/vjYIsAne5GXvX4PsA5Zv3RaOphMNRGW7FgiRGRC3
hYgliWVu+T0PF2aO9qsDEPJDLh/ndA9vBDnXJqNTkYr3N8r64TJ8+cZGPLJMANeN
NABuyb0LUmGx/JrMr/3w2bJ4tSbJj3XMjeh4ncetq1//FhkrWz6dwqumKmuuo8yC
x8xVGix9asMqGuTBik5UR+o0qrZn+xBjTGjAephWs4p2Ub0FU0aR3Sp1cwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOHDqFRXidaM1x4aCnGp3AslhoeoMB8GA1UdIwQY
MBaAFPcxwzmxhhciv/6GchgxTOEpXDyFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXpIRE9iR0dGeUtfX29aeUdERk00U2xjUElVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC8xNmM2NGItYjk2NS00OWNjLWFhNDAt
MGRjMjBhN2Q4MmI5LzEvOXpIRE9iR0dGeUtfX29aeUdERk00U2xjUElVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC8xNmM2NGItYjk2NS00OWNjLWFhNDAtMGRjMjBhN2Q4MmI5
LzEvOXpIRE9iR0dGeUtfX29aeUdERk00U2xjUElVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPtQUZlOM
U6YArRBDjW6AwJog9d7vEZtYZBy5jJdDcSMCHDBRJZLUjiRDArGfVhQ/7W62jO+P
c/P1WLorgj9XfVfDeEg00ohxyLmAVEIlZ2BQ35BpC3N3EUNqm6FaNw6JloOUTEEG
TJIKTSRb4mJKov+9FV31YYK61EL05ZNNrI83MfYRff6uct3OM+ZD9vlfC08piAn5
pOCmCtfT4zwBiVkV5DyI4CdSznCBDdn69LRjgoD5fSgqw6v45mv7qlq0rBrE/UTo
cl6f6PtDAnIr+xhOK4qMfQR8JsWl9Mec99rC0sBT2ju7l2a+FCfie00CZCrrO9UA
gBikv3EbGe/hMw==
-----END CERTIFICATE-----
Generated at Wed Sep 10 07:08:38 2025 by rpki-client