Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
File: cNySeAi5pn58uhunTvtb9sEsiVs.mft (raw, json)
Hash identifier: TkxD81jH1W3BC80tVR7cYnrfjRGOZFN+EKvRuBcKaHI=
Subject key identifier: A3:2F:30:4D:50:D7:8B:98:A5:61:B5:6B:DE:24:A9:00:23:1D:6B:9D
Authority key identifier: 70:DC:92:78:08:B9:A6:7E:7C:BA:1B:A7:4E:FB:5B:F6:C1:2C:89:5B
Certificate issuer: /CN=70dc927808b9a67e7cba1ba74efb5bf6c12c895b
Certificate serial: 019922FA486D52953C65CE535D5CBB6CBAB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 07:00:51 +0000
Manifest this update: Sun 07 Sep 2025 07:00:51 +0000
Manifest next update: Mon 08 Sep 2025 07:00:51 +0000
Files and hashes: 1: BAJtDqJxaWUqQAfiueye7uuRaiw.roa (hash: xliJwPehY40wkTea7xdHZ3Ii3nZae+NEE66sFETvyTA=)
2: cNySeAi5pn58uhunTvtb9sEsiVs.crl (hash: G152XvtA8AssVMbHCOfdFEysSXdDMgLmlM1ptxxZBNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:48:6d:52:95:3c:65:ce:53:5d:5c:bb:6c:ba:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dc927808b9a67e7cba1ba74efb5bf6c12c895b
Validity
Not Before: Sep 7 07:00:51 2025 GMT
Not After : Sep 8 07:00:51 2025 GMT
Subject: CN=a32f304d50d78b98a561b56bde24a900231d6b9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f6:a3:02:e9:33:0c:ad:b3:7f:77:23:df:e8:
07:01:48:82:df:17:04:a3:21:12:65:76:71:a0:df:
e8:24:72:eb:14:b9:00:d9:c6:23:c2:7e:f2:e5:5a:
46:a7:e2:99:8c:77:77:7d:49:73:18:b8:62:ce:f9:
6e:9f:22:26:ea:02:7c:22:34:e4:47:e2:f3:8b:b9:
d1:4b:9b:21:4f:b8:18:65:50:29:81:14:bd:55:d6:
c4:d6:56:18:15:79:34:0b:0e:1a:ad:eb:f5:5a:13:
a4:57:cd:67:92:f0:26:e1:27:16:f0:8c:95:25:be:
2f:31:30:68:f2:21:b7:3f:c0:b4:d1:ee:8e:45:a2:
3b:6d:b2:11:4a:c3:b7:e0:e5:31:81:03:e6:83:7c:
f9:9a:06:f5:7e:42:32:a2:6a:82:93:f8:be:b2:11:
3b:c4:57:eb:c6:a0:e7:52:04:23:4e:b8:78:6a:92:
41:3e:a4:54:74:89:50:c4:75:e0:59:54:24:6b:cd:
08:a5:36:e2:03:25:8e:61:96:d6:96:28:2d:f6:e1:
67:6c:8f:bb:ef:e7:29:1b:91:ae:23:0d:1d:3e:74:
a3:5b:b2:24:0a:13:5f:14:9e:7a:bf:e5:48:bd:a7:
ce:aa:54:7c:df:90:72:55:ab:10:4d:06:23:0f:47:
a4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2F:30:4D:50:D7:8B:98:A5:61:B5:6B:DE:24:A9:00:23:1D:6B:9D
X509v3 Authority Key Identifier:
keyid:70:DC:92:78:08:B9:A6:7E:7C:BA:1B:A7:4E:FB:5B:F6:C1:2C:89:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:39:ad:a3:36:96:a7:4b:51:be:b3:0d:74:3e:ae:d8:7b:90:
d1:fc:df:9e:0f:b0:37:db:8a:d9:9d:61:3b:b4:a1:64:36:3a:
e7:2a:80:94:95:7f:c9:50:b1:5d:af:09:80:42:cb:b3:e4:8c:
50:31:5a:a9:30:f8:ae:42:f7:2f:5d:ca:eb:ee:97:7e:56:3b:
81:c6:fc:31:50:b2:25:3e:da:fc:21:67:f7:79:bb:e8:ce:24:
15:8c:6a:85:94:ed:40:2e:09:01:bd:f9:3f:e8:38:4d:e7:f6:
dd:fa:b9:ec:af:83:b1:f1:3f:f0:e6:65:8e:20:6a:7d:bd:dc:
e3:11:86:2f:bf:f0:4a:5b:cb:11:3d:6c:3f:ed:fb:3b:95:67:
d4:47:10:99:e3:c6:4a:0d:70:45:2f:b8:5b:b5:c6:d2:f1:36:
b2:29:66:f4:49:eb:67:c8:1d:ad:e5:e5:f5:a8:2a:65:35:05:
ba:ce:7a:aa:0a:86:66:c6:f4:6d:82:d2:62:26:f0:66:bd:0a:
e1:a6:a2:5e:70:ce:2e:eb:a1:3e:ce:d0:8a:d1:e2:94:a1:5c:
83:76:1e:21:ef:63:db:0d:ad:43:69:6f:5a:38:db:7a:87:c0:
c3:52:3a:18:e7:23:a2:1e:b9:08:68:5a:06:f2:d2:8a:04:09:
72:d1:6e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:01:54 2025 by rpki-client