Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
File: cM9eaXxglK22vJcVazXgBf1M8uI.mft (raw, json)
Hash identifier: R5G2vElbdyIs8ETY5v819vZc4uOAwTNhx+2Ue7DO2tI=
Subject key identifier: 6F:7D:E9:83:53:E7:D4:91:39:61:94:6A:9E:04:B0:99:8C:04:21:C5
Authority key identifier: 70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
Certificate issuer: /CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Certificate serial: 0199228D20FC2F67A288EE894ECB961D29E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 05:01:38 +0000
Manifest this update: Sun 07 Sep 2025 05:01:38 +0000
Manifest next update: Mon 08 Sep 2025 05:01:38 +0000
Files and hashes: 1: ZMvF8N06VsuZ5tNxMMczzsSTe5w.roa (hash: D7vN+YdR9s6oznh1bq9p5ngAxVIRYXDWMiWld/VomNA=)
2: cM9eaXxglK22vJcVazXgBf1M8uI.crl (hash: hqWy4T8wHD3l9s98VKQ9QV4b9oxxev41fbzv/rmlYd8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:20:fc:2f:67:a2:88:ee:89:4e:cb:96:1d:29:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Validity
Not Before: Sep 7 05:01:38 2025 GMT
Not After : Sep 8 05:01:38 2025 GMT
Subject: CN=6f7de98353e7d4913961946a9e04b0998c0421c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:96:75:1e:fe:f9:2c:a6:a0:cc:67:17:92:fa:
06:6d:a0:04:c1:d1:8b:26:c3:9c:8a:4a:13:e1:63:
22:a4:af:da:c3:e3:e2:5e:d7:5d:63:f0:a1:d5:b9:
77:fc:36:0e:85:18:7d:69:10:dd:67:b0:9d:4a:11:
75:74:4e:75:2c:b5:e2:5b:8c:9d:ab:51:cf:a9:de:
4a:84:1d:40:40:8e:56:12:0a:d5:c4:28:8f:9a:bb:
08:47:05:11:6d:19:d2:2a:42:dd:e8:83:b3:c9:e4:
dd:57:04:2f:24:68:11:c5:b9:cc:d9:bb:10:d1:6a:
5a:8d:e5:92:f6:3a:76:f8:b8:68:41:4d:fd:f2:05:
fd:6f:d3:2c:ae:d1:19:73:63:6f:9a:90:3c:1a:de:
65:d1:c3:07:dd:53:63:5b:c1:f6:90:8b:d5:8c:a7:
5b:68:59:78:0c:83:38:c7:26:df:25:7c:14:37:5a:
1c:b3:83:48:d4:ef:b1:9b:3a:e5:d7:09:4c:74:0d:
86:4b:71:a7:9a:9a:7d:27:41:f1:b6:ef:1d:5e:8b:
84:e0:db:23:c3:31:2f:ee:05:cb:cf:e3:10:2b:a7:
76:51:a4:a6:0d:b0:59:f4:ec:8f:80:da:1a:41:05:
c4:d1:6b:c0:5c:ec:ff:0b:10:0c:73:a5:85:21:76:
87:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7D:E9:83:53:E7:D4:91:39:61:94:6A:9E:04:B0:99:8C:04:21:C5
X509v3 Authority Key Identifier:
keyid:70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:5a:d1:37:ce:8f:9f:be:c8:42:23:43:81:e9:3d:12:41:89:
2d:8f:a5:03:04:77:d4:f4:95:b8:fd:ac:fd:26:01:0d:f0:aa:
6e:01:da:7a:50:ba:9c:c4:04:00:20:c0:04:19:33:67:72:e3:
4b:3e:d6:7c:f4:c8:1b:b0:f8:7b:02:01:3d:2b:7b:92:7d:8a:
26:85:fe:65:bb:74:39:70:6d:86:71:c7:c8:42:f2:4f:40:fd:
06:52:cd:d1:91:88:21:73:f7:c5:42:3a:8c:fb:70:1b:7b:19:
3a:e0:27:91:ef:57:80:dc:94:2f:86:8e:94:fe:9d:86:2a:20:
ef:e8:d4:73:5c:e6:69:d1:62:1d:de:de:56:ba:7d:35:f5:ab:
e0:34:88:54:57:85:99:96:d7:5a:ce:0f:da:13:0e:30:7c:5c:
7a:25:28:21:b5:66:11:a3:2b:59:46:cf:a8:59:1e:2b:55:fb:
6e:a8:cf:bf:fa:af:0f:93:4e:c1:c9:c7:80:8f:f8:e1:8e:f3:
ac:7f:7d:b1:0e:64:5b:bb:92:8f:5b:4f:b6:dd:ca:01:6a:d2:
17:eb:af:cf:22:05:3d:eb:2f:aa:1b:87:2a:3d:ab:ce:75:b2:
db:cd:67:dd:b6:f0:35:eb:68:bc:a0:b7:d2:19:31:ef:3a:c0:
b0:91:b2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:46 2025 by rpki-client