Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
File: a3tNxJzDUDQveq4ssyBbn3dfZh0.mft (raw, json)
Hash identifier: /zQTtnhIIPYFP2CljzBjqWu9MLjInl4nbWluxFzrQ5s=
Subject key identifier: 71:96:A6:57:55:C8:FB:9B:5B:63:22:90:14:62:D5:A3:FD:04:68:55
Authority key identifier: 6B:7B:4D:C4:9C:C3:50:34:2F:7A:AE:2C:B3:20:5B:9F:77:5F:66:1D
Certificate issuer: /CN=6b7b4dc49cc350342f7aae2cb3205b9f775f661d
Certificate serial: 019921B243D81A263C4E04514A9F3CBE3462
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
Manifest number: 166C
Signing time: Sun 07 Sep 2025 01:02:34 +0000
Manifest this update: Sun 07 Sep 2025 01:02:34 +0000
Manifest next update: Mon 08 Sep 2025 01:02:34 +0000
Files and hashes: 1: a3tNxJzDUDQveq4ssyBbn3dfZh0.crl (hash: ZKZpBh8gLTg6W1qOKKmTCIlUHg/26WpnQikaeWkbgNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:43:d8:1a:26:3c:4e:04:51:4a:9f:3c:be:34:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7b4dc49cc350342f7aae2cb3205b9f775f661d
Validity
Not Before: Sep 7 01:02:34 2025 GMT
Not After : Sep 8 01:02:34 2025 GMT
Subject: CN=7196a65755c8fb9b5b6322901462d5a3fd046855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ef:4a:f1:5a:79:bd:04:57:3e:2d:0e:3a:db:
05:49:3e:b9:dc:91:a1:27:72:5a:56:01:2e:27:6c:
4e:97:d8:3d:b7:fd:14:aa:70:d5:34:43:59:b8:3e:
06:99:99:41:06:b0:c3:48:4b:01:15:64:d8:d4:6d:
36:87:aa:9d:93:5f:c2:ae:78:e3:57:a6:58:9f:6a:
96:d4:4c:1f:66:bd:63:1c:3f:d5:ce:a9:4b:a3:2f:
9a:aa:51:fd:81:87:14:91:54:cd:30:7f:03:76:e6:
d7:14:0c:1e:03:4e:e4:dc:6a:6d:55:3b:02:56:b5:
d2:0f:a7:b9:98:71:e8:a8:fd:44:89:2a:a8:5c:20:
43:b5:e1:3c:d2:0b:10:08:c8:54:f5:4e:26:60:9c:
1e:41:35:1a:e2:b3:51:45:85:25:75:f4:de:3e:56:
80:a7:92:1f:b9:38:68:8e:c3:a9:e3:79:ab:31:aa:
23:79:1b:55:62:6a:ff:79:7e:6b:d0:ca:f8:dc:52:
c3:16:1a:e8:d0:18:87:d9:00:a8:a8:f4:ac:39:0f:
73:b4:0a:92:ee:03:21:d5:6f:23:5b:30:c2:8f:9e:
2d:1f:5f:d3:b0:91:ba:8f:07:7a:77:0e:47:fa:e2:
18:b2:78:5b:2a:4f:2f:b9:3e:55:a9:85:e7:2a:61:
8e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:96:A6:57:55:C8:FB:9B:5B:63:22:90:14:62:D5:A3:FD:04:68:55
X509v3 Authority Key Identifier:
keyid:6B:7B:4D:C4:9C:C3:50:34:2F:7A:AE:2C:B3:20:5B:9F:77:5F:66:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:77:ae:eb:3c:d9:73:aa:58:d0:16:e0:3a:5d:86:08:6b:97:
fb:bb:43:1c:cf:87:30:de:b4:cd:c7:79:79:1d:ac:24:0b:04:
06:41:6a:dc:75:06:2c:ef:01:f7:c3:d2:f4:b3:7d:b2:50:39:
3c:0c:9b:e4:04:2e:d8:e2:20:c8:13:ef:53:cb:02:69:65:39:
67:10:69:99:ba:e9:48:84:d8:f0:0d:2a:12:34:0d:58:51:f5:
a0:cd:29:a6:93:31:d6:29:f1:0c:77:9e:a0:1d:5a:91:c2:d7:
66:23:73:16:51:b7:c3:2f:75:7d:da:c3:bd:be:e8:0e:7e:b2:
6f:4d:69:28:2e:2c:96:86:01:9b:8b:69:c5:54:17:aa:fc:1f:
8b:6f:14:1c:8c:6c:5c:c7:99:02:79:ed:19:d2:47:e3:1e:41:
8a:91:80:4c:76:06:c9:34:96:ec:90:65:bb:78:59:08:be:79:
ee:c9:21:56:60:6d:ed:62:a2:5d:bc:e0:ef:9b:41:75:b0:be:
af:40:5a:10:7e:47:2f:f0:ce:9f:77:9b:c8:30:74:70:44:fa:
89:4d:7f:f5:9b:d7:27:ab:01:9f:dd:d2:87:57:75:f8:76:4a:
3b:d7:19:bd:71:ee:4f:2f:67:c8:6d:ec:f0:cf:de:2d:de:de:
5b:7d:ee:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:15:13 2025 by rpki-client