Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
File: 1O219t5yQ2FIs1pZA38jNBUN2zY.mft (raw, json)
Hash identifier: iwYEIfR1+hDJDhfyYCpSrpMpns2MbxzveB2ahuobEFA=
Subject key identifier: 22:F1:C5:49:FF:F2:3A:E5:BC:35:8F:71:E2:65:81:D4:57:12:49:03
Authority key identifier: D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
Certificate issuer: /CN=d4edb5f6de72436148b35a59037f2334150ddb36
Certificate serial: 01993612E2C7D11AE3805720DE84092EB2D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
Manifest number: 160E
Signing time: Thu 11 Sep 2025 00:00:31 +0000
Manifest this update: Thu 11 Sep 2025 00:00:31 +0000
Manifest next update: Fri 12 Sep 2025 00:00:31 +0000
Files and hashes: 1: 1O219t5yQ2FIs1pZA38jNBUN2zY.crl (hash: Zu8Mo+eyUbuwybmes0ZvUTiqfS+6p9+y0WunDOed9Iw=)
2: CUxoxoHUFgCcWdXLBL1XTZtblHU.roa (hash: nuVV0ajPUp0XSEkxw4hsRxKF9YmW1aG+8tY3rAw4VUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 00:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:12:e2:c7:d1:1a:e3:80:57:20:de:84:09:2e:b2:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4edb5f6de72436148b35a59037f2334150ddb36
Validity
Not Before: Sep 11 00:00:31 2025 GMT
Not After : Sep 12 00:00:31 2025 GMT
Subject: CN=22f1c549fff23ae5bc358f71e26581d457124903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9f:db:a0:5d:1d:0a:25:98:c5:29:2a:5e:ab:
6f:d9:9c:49:b0:78:c7:f9:23:bd:de:54:3e:51:06:
1b:b5:ab:39:c4:a2:8b:5c:0e:bc:3a:2e:40:b4:11:
8f:3c:db:24:17:67:55:8d:71:b4:01:11:06:36:63:
fd:94:ac:f9:55:db:50:c9:7f:c6:d4:6b:92:05:80:
71:d4:5a:23:f1:e6:ca:7c:7b:77:f6:f9:51:db:05:
ae:2b:eb:51:91:41:57:21:1b:5e:4d:59:b1:d0:09:
10:9f:4d:12:16:03:74:89:07:8e:a8:d8:d8:35:9a:
dd:3b:d6:c9:44:64:09:c1:01:ff:aa:aa:6a:e7:6f:
c8:bb:f6:67:ad:fe:2e:89:ae:3c:11:d5:2e:1a:0c:
40:47:74:3f:2c:20:c1:60:76:86:41:16:68:f6:dc:
8f:57:99:db:15:c0:5f:19:8f:58:ab:b7:5d:af:1a:
e1:eb:b9:97:db:82:73:43:ef:b0:cc:b9:11:b3:ce:
a5:6c:3c:55:36:59:85:68:75:a0:d9:98:1e:a5:6c:
0a:e4:17:ec:2e:61:31:fa:88:7b:40:46:5b:0e:c8:
79:a4:a8:ae:23:8a:7e:7d:fe:46:e8:c3:ca:a0:c1:
28:23:c0:39:11:0b:26:0a:9d:28:10:5b:fc:89:43:
6d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F1:C5:49:FF:F2:3A:E5:BC:35:8F:71:E2:65:81:D4:57:12:49:03
X509v3 Authority Key Identifier:
keyid:D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:fb:f1:87:16:de:c4:d0:01:b5:25:98:de:5f:c1:98:68:ee:
b0:10:8c:3b:49:d3:fe:80:81:c0:81:82:95:d8:58:e7:74:db:
3f:a6:7c:fd:7a:e5:2e:12:c8:e5:d5:b8:be:b0:76:6e:44:50:
c2:b2:34:09:54:a5:0f:80:b1:49:a0:8c:ed:a3:90:f9:3d:bf:
34:7f:b0:24:52:6a:12:f9:2e:a7:cf:aa:31:69:4e:11:ff:1b:
c9:d9:02:2b:0e:c1:94:29:f8:30:43:ae:8a:c8:fd:f6:b4:a4:
e6:a5:0a:f9:9c:da:5f:2c:bb:ed:3e:a7:09:39:a2:0e:01:f0:
f5:eb:02:d5:11:67:a2:fa:70:01:41:c5:bf:4e:c0:4b:89:0f:
63:38:35:d9:9a:20:ff:4c:b4:52:05:95:46:20:05:73:02:f1:
c4:84:a3:4c:cd:0a:23:0d:7d:e2:90:93:cf:3b:8e:cf:37:82:
44:99:82:5d:06:f3:38:4f:30:b6:3a:08:ce:9e:20:cd:3f:11:
77:d8:de:05:4e:43:1d:63:31:be:23:65:f4:e9:8f:75:d3:5a:
97:0e:71:70:83:c9:31:2c:28:d8:61:06:8b:1e:5b:ad:c3:69:
08:25:82:f5:da:11:ad:cb:24:ec:81:54:05:9b:c7:ae:41:bf:
e1:9a:fc:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 08:59:13 2025 by rpki-client