Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier: chOemN0xqaS1u4lO10nBNa9L/Tct15EeQkeZ4R8fs4w=
Subject key identifier: A6:11:98:0F:C1:71:FF:DC:65:E1:F5:EA:0E:36:D9:24:53:0C:06:4C
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial: 019921B260BB9F3491A2F8902522AA824965
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number: 130B
Signing time: Sun 07 Sep 2025 01:02:42 +0000
Manifest this update: Sun 07 Sep 2025 01:02:42 +0000
Manifest next update: Mon 08 Sep 2025 01:02:42 +0000
Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: 21rcWCux7l0woacfK5C3j0F2GWpI3Z2AjOCOHlyhUpM=)
2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:60:bb:9f:34:91:a2:f8:90:25:22:aa:82:49:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
Validity
Not Before: Sep 7 01:02:42 2025 GMT
Not After : Sep 8 01:02:42 2025 GMT
Subject: CN=a611980fc171ffdc65e1f5ea0e36d924530c064c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:60:e7:dc:f9:c4:50:4a:3a:37:76:16:cd:f2:
e5:cb:ca:8a:6f:e7:ec:c8:f0:f1:9e:30:d4:c8:9e:
4e:77:27:52:91:2c:63:49:c7:bc:19:67:0e:aa:38:
18:8d:f2:78:e4:fd:26:c8:00:d7:29:81:22:83:35:
ff:6d:ad:63:6d:18:31:ab:b8:0d:2c:52:75:f3:f4:
2c:bb:19:b8:d8:ea:91:24:55:66:12:83:4d:90:cb:
f4:57:9e:d8:21:d7:cb:ab:5e:b9:21:d7:ef:ba:f2:
27:95:87:a5:3e:5e:20:3f:b7:e2:21:42:35:89:a3:
67:cb:1d:e1:93:b6:2a:33:b4:01:9e:29:9a:1e:29:
5d:e6:0d:0e:44:c2:a3:08:05:d0:aa:19:eb:1a:3f:
07:28:e2:f7:7c:68:ca:af:95:27:36:6e:bd:96:34:
12:53:0d:b1:1f:bb:42:8e:0e:a5:71:41:e1:6c:b7:
7f:d5:b3:44:ed:8a:f1:59:6f:e2:8e:9d:62:93:41:
8b:40:a1:33:b1:9a:a9:20:4a:5f:33:13:f6:1e:54:
c5:e7:a7:bf:ec:f7:fa:b1:16:c7:31:e7:59:25:b1:
8a:24:ed:a7:65:0a:37:e0:33:10:cb:75:38:77:1a:
e8:11:a7:e5:3d:7c:63:07:3a:08:4e:ff:95:42:bf:
a0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:11:98:0F:C1:71:FF:DC:65:E1:F5:EA:0E:36:D9:24:53:0C:06:4C
X509v3 Authority Key Identifier:
keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:b0:8a:e4:f2:1b:0b:89:d8:f7:ea:c3:c0:5d:fe:03:9f:67:
ff:2e:5e:09:1d:80:2f:14:c7:84:86:f3:d5:e4:84:35:42:55:
09:c5:f4:59:cb:c4:31:19:e3:7e:70:7b:06:ad:d4:69:7f:16:
5e:f1:35:49:c6:6f:15:2c:43:76:8c:d0:6b:ae:52:49:8b:c5:
f7:39:52:7c:26:6a:e4:7f:1a:b8:00:8b:09:c5:db:8f:ec:80:
f5:d7:ee:7b:7b:63:68:31:2e:70:05:57:4c:2c:3f:bf:66:db:
98:58:82:9a:8d:d2:8f:7b:8f:ba:40:07:b4:de:91:9f:3b:5e:
9d:57:6c:86:fc:a4:60:7f:ec:31:96:19:e6:cd:24:be:ee:03:
47:4f:41:13:3f:6c:7e:38:b7:6c:a6:91:e3:ab:2f:1e:9e:24:
cc:fb:99:32:5a:34:54:13:e6:0c:44:73:45:4a:4d:8d:de:b4:
45:f7:86:bc:0a:77:9f:1b:77:d3:90:83:1a:58:53:12:25:72:
78:b3:9a:8b:df:80:f6:4f:a5:d8:3c:d8:a5:9f:ef:fb:87:1b:
c1:66:cd:81:d8:62:2c:6d:e3:ab:c2:89:10:ca:0c:48:7d:f6:
05:19:9d:19:fc:be:52:d0:81:7c:29:7b:d7:b6:34:24:ba:1e:
e1:47:73:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:49:44 2025 by rpki-client