Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
File: l72bhlMeVEr6AwnYvip7ppFj-a0.mft (raw, json)
Hash identifier: n/kqCXpbaFsWAYIsyLR8z5tHrx+bh1UfdK31yCtE/YQ=
Subject key identifier: DF:76:60:AB:E3:F1:ED:2E:92:F6:46:0B:63:F3:F0:51:6E:65:20:50
Authority key identifier: 97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
Certificate issuer: /CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Certificate serial: 01993192141A468CCD4254720EBC66CAC95D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
Manifest number: 142E
Signing time: Wed 10 Sep 2025 03:01:20 +0000
Manifest this update: Wed 10 Sep 2025 03:01:20 +0000
Manifest next update: Thu 11 Sep 2025 03:01:20 +0000
Files and hashes: 1: 6rStul-KJYhq6MLDsqFqp0QCJ-w.roa (hash: UgkfY0GpWezlJwqyNlWzjCQU4cnRnYzqK30vIO1treQ=)
2: GAmyQv8-gT8CZ7d-txbZl5EhOio.roa (hash: iUcK9uyMQ6focHOP9BZWCHQasgvLPeszd6U4NOgrxL8=)
3: ZfBa2kOopYZN1zSmKbC-lmjGWMU.roa (hash: XOVEAESgfg7MRdYVfSlFUrFkfMe08NvtY8t3C+PTjsk=)
4: l72bhlMeVEr6AwnYvip7ppFj-a0.crl (hash: y1SxsiZ2XdAXnqJXCctMmwXP5kNy53CNO3REeXbwCsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:92:14:1a:46:8c:cd:42:54:72:0e:bc:66:ca:c9:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Validity
Not Before: Sep 10 03:01:20 2025 GMT
Not After : Sep 11 03:01:20 2025 GMT
Subject: CN=df7660abe3f1ed2e92f6460b63f3f0516e652050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c2:77:d7:6d:14:c2:1e:19:b2:81:10:a5:39:
2d:4e:18:62:93:0c:d1:dc:9a:8f:5f:a7:de:5d:8e:
ae:d2:9b:2e:e5:80:4b:c7:6c:b1:69:eb:81:d2:74:
83:99:09:3e:5d:9b:07:1b:d3:78:da:51:43:f9:10:
2e:5c:45:07:57:1a:5d:69:00:b9:f4:e4:f2:9e:c0:
4f:2d:cf:b4:55:48:ac:a5:89:8f:03:92:fc:39:8e:
19:fd:74:08:a4:cb:31:27:65:79:35:0d:8e:66:62:
44:03:98:02:5f:ff:d6:35:e5:a8:17:36:b5:81:bc:
0c:f8:20:11:4e:81:d4:bd:a9:38:78:43:29:38:23:
90:be:90:75:64:50:6e:74:bd:b2:41:08:99:d7:59:
f9:f0:05:9f:a7:be:b8:96:4f:f6:65:e8:42:34:b1:
80:8a:d3:34:7f:cf:d0:73:ac:90:62:d4:54:f4:51:
4d:ae:41:80:8a:04:24:ad:23:87:32:3e:e0:ec:d1:
40:e3:b5:fd:e6:5d:89:be:08:97:bf:0c:5e:c5:64:
69:ff:c6:08:11:fc:27:c4:b2:ef:a9:52:94:05:a2:
e9:92:51:0b:41:94:d0:fc:0e:27:27:30:ce:89:62:
70:1d:f4:44:3a:1e:80:0d:3d:49:bc:df:91:5d:04:
e1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:76:60:AB:E3:F1:ED:2E:92:F6:46:0B:63:F3:F0:51:6E:65:20:50
X509v3 Authority Key Identifier:
keyid:97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:9e:91:0e:8d:67:d6:f7:74:47:29:5c:ef:b0:ed:33:41:5d:
b8:e2:12:df:d5:71:f7:aa:1a:f3:53:09:0c:5d:7c:b2:4d:72:
5e:68:97:91:62:71:e6:fa:df:1d:78:69:64:80:d7:12:9f:7e:
16:f7:ed:f1:1e:85:1d:5a:24:ee:18:1f:07:e6:54:5f:f6:8b:
08:27:ca:7c:11:57:3b:6f:b0:59:39:5e:e1:1e:8d:7d:2f:f4:
50:5c:ba:68:5a:32:54:f2:81:6c:86:f6:a3:49:94:93:51:5d:
6a:0e:e5:a2:81:7e:b2:51:d1:80:04:62:41:e2:a4:a1:02:2d:
d2:81:ae:b4:3e:c6:2e:3f:af:4a:6f:e8:3e:96:69:1f:51:6a:
c1:f0:0d:67:c7:b8:c7:be:e4:a4:c5:8d:03:95:a9:be:fe:99:
1e:6e:77:cd:5c:67:5c:6d:f7:d0:e9:4c:24:7d:82:0f:53:5b:
3f:13:f5:47:32:66:ba:2b:27:18:93:04:0e:11:2c:4b:2c:18:
73:d0:b6:cc:a5:85:17:b2:a5:a0:6a:11:c5:8a:57:3e:9b:1b:
ac:b0:de:b2:b3:41:11:0f:96:37:0f:98:9c:36:c7:78:c3:6d:
f6:aa:66:8e:b0:67:ac:8e:0c:f2:a9:91:fc:e7:b4:02:f7:aa:
eb:8a:25:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:50:09 2025 by rpki-client