Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft
File: w9bWn9WH0FQXblPRknJoI2GxZzY.mft (raw, json)
Hash identifier: VgEDc5dSt3/E9ykUFO6lJXLOigluQrrtZ9XF9Odm+qM=
Subject key identifier: A4:6B:A4:11:F6:4C:04:5C:AC:75:7E:83:F6:DE:4A:69:B4:89:D6:FD
Authority key identifier: C3:D6:D6:9F:D5:87:D0:54:17:6E:53:D1:92:72:68:23:61:B1:67:36
Certificate issuer: /CN=c3d6d69fd587d054176e53d19272682361b16736
Certificate serial: 019923A0D44924AAC887AC8F87B904154AE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w9bWn9WH0FQXblPRknJoI2GxZzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 10:02:46 +0000
Manifest this update: Sun 07 Sep 2025 10:02:46 +0000
Manifest next update: Mon 08 Sep 2025 10:02:46 +0000
Files and hashes: 1: w9bWn9WH0FQXblPRknJoI2GxZzY.crl (hash: Agr78HJpGgXRZBIzwcyXriSbbnwa/Ux/V/afwr7Lw/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft
rsync://rpki.ripe.net/repository/DEFAULT/w9bWn9WH0FQXblPRknJoI2GxZzY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:d4:49:24:aa:c8:87:ac:8f:87:b9:04:15:4a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3d6d69fd587d054176e53d19272682361b16736
Validity
Not Before: Sep 7 10:02:46 2025 GMT
Not After : Sep 8 10:02:46 2025 GMT
Subject: CN=a46ba411f64c045cac757e83f6de4a69b489d6fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f6:ea:55:38:12:01:6d:69:fe:7d:4d:d4:11:
35:22:d7:3f:50:e4:cb:a3:e6:bd:87:01:86:77:86:
e6:55:4d:9e:46:4b:bc:1d:5d:cc:1c:ec:35:18:e2:
94:44:1e:19:46:44:73:6a:54:e8:dc:8c:a7:1f:24:
df:99:e0:d8:a2:0e:6e:76:81:c6:d8:84:09:cb:aa:
16:62:26:d2:bc:2e:67:f9:96:03:b9:a9:27:96:c7:
b6:a3:05:e4:97:c7:8a:69:fe:0f:d9:35:07:76:29:
0d:0b:eb:97:9c:f3:2c:c2:ea:12:3f:e1:fb:b9:22:
eb:73:4f:f8:6e:5d:99:4b:0b:cc:45:2c:a0:66:46:
80:48:f9:ba:c5:89:e5:7f:65:6d:bf:95:83:9d:2c:
82:bb:db:d6:fa:5c:6a:d3:66:0a:01:78:c2:7f:b3:
9f:15:47:ff:47:2a:46:bd:33:66:86:57:d0:1f:7f:
58:ae:a0:6d:64:bb:90:74:c5:bb:c3:d4:46:03:bf:
80:ee:ee:43:b4:ee:1f:18:80:ce:c6:1a:22:24:1f:
b5:b6:2e:b3:55:30:a2:f3:43:5d:60:df:53:52:e1:
96:19:c2:ad:eb:ff:26:16:79:ef:71:a8:bd:cf:1c:
1b:bc:be:ba:89:f5:f1:c8:ee:b9:66:b3:7d:89:13:
c7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:6B:A4:11:F6:4C:04:5C:AC:75:7E:83:F6:DE:4A:69:B4:89:D6:FD
X509v3 Authority Key Identifier:
keyid:C3:D6:D6:9F:D5:87:D0:54:17:6E:53:D1:92:72:68:23:61:B1:67:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w9bWn9WH0FQXblPRknJoI2GxZzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:82:36:77:22:dc:e4:4d:fb:72:2a:3c:21:b6:ad:38:37:3d:
9e:dd:3e:a6:c8:55:4a:e1:29:3a:82:0b:ae:b9:93:70:4c:2b:
b2:0f:a2:be:81:ec:09:d4:97:f7:d3:6d:23:80:4d:8d:32:dc:
af:b5:a9:c4:a2:0b:e7:b0:12:c9:a9:64:a6:ec:32:12:95:12:
3f:29:31:14:d0:4b:73:d8:94:25:15:e6:1b:c2:a5:aa:69:bd:
5b:aa:f5:1d:f9:71:fb:32:c6:cd:f4:46:54:e8:6b:6d:4a:f9:
54:da:fa:a1:11:54:77:b1:95:1f:83:5f:5c:01:d1:f3:c9:62:
70:8f:4f:af:1f:62:e1:6b:95:d2:8d:27:89:3d:9b:09:b0:69:
c0:32:b6:fc:74:a9:b6:8d:da:da:7c:21:c6:34:a4:07:56:3d:
25:21:c9:dd:7a:83:6e:9b:02:07:7b:05:b3:f9:88:43:a9:7d:
bf:d7:6b:8f:fd:28:96:02:6f:90:32:c9:a8:64:16:74:57:41:
b4:57:f8:fc:1a:9f:f2:cd:e3:b0:87:3a:22:e6:b5:8f:f9:c6:
15:8f:99:c2:02:2f:2b:c6:ea:0e:c2:4e:17:16:f8:9c:fc:39:
a8:c4:ba:d5:f3:fd:f8:3e:fe:a4:db:fe:10:16:ec:f1:e9:90:
02:72:38:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:27:01 2025 by rpki-client