Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
File: kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft (raw, json)
Hash identifier: ECC66oxBRQ0KL6n7iJNNx4ivG9zdW2y9zzU/9EU5R3c=
Subject key identifier: 1C:6F:F3:A1:6D:4E:A5:57:CF:A7:0E:2C:82:26:E4:7C:28:38:C8:EF
Authority key identifier: 91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
Certificate issuer: /CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Certificate serial: 0199228CA836BEBD970927D0A26EC34A1351
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
Manifest number: 159F
Signing time: Sun 07 Sep 2025 05:01:07 +0000
Manifest this update: Sun 07 Sep 2025 05:01:07 +0000
Manifest next update: Mon 08 Sep 2025 05:01:07 +0000
Files and hashes: 1: 6fnAZ8W2MGF8ZNrQkh_nCxeTpv4.roa (hash: VVdXTpC74ZKSlf0OaYeG4sfAbOWwASAnFr5UUxM1yrQ=)
2: jwF2Fe8ZjLBRTo3L_7TINNi10fQ.roa (hash: Ap/raQBvujEIQc3hDUBU94DRN1La9dL+OAKrqJu5rbU=)
3: kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl (hash: y9O8XEvly76mRfmlanYDVm963p+JrAFrzZLGmOMYuSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:a8:36:be:bd:97:09:27:d0:a2:6e:c3:4a:13:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Validity
Not Before: Sep 7 05:01:07 2025 GMT
Not After : Sep 8 05:01:07 2025 GMT
Subject: CN=1c6ff3a16d4ea557cfa70e2c8226e47c2838c8ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:02:d9:fa:49:0d:57:2d:5c:dd:ce:05:0b:ee:
46:4c:1c:3c:3d:f9:a2:8d:de:8a:b5:9b:0d:af:d1:
03:76:ed:81:bf:9b:cd:47:54:48:0b:83:a2:6d:43:
8c:9f:35:d1:de:be:2e:b4:87:22:37:e0:5c:c7:72:
9b:c0:a7:f9:fa:4c:46:2f:87:31:d4:20:b0:f9:cc:
90:09:ac:3b:a1:2c:3f:c3:26:7a:82:ae:fa:91:cd:
ff:99:d5:e2:2f:27:71:48:d8:72:81:5c:35:6b:7f:
8a:88:85:93:f4:a9:7e:e5:48:c5:86:f8:be:df:d9:
8b:b1:94:49:0d:2a:af:f8:5d:a3:5f:62:2f:af:a5:
fa:63:ee:ae:a5:f5:35:87:d8:1b:9d:c9:16:be:63:
4f:f1:cf:44:b5:42:79:3f:55:e3:fb:4e:c8:cb:9e:
fe:72:07:57:13:7e:ef:cf:2e:4a:cb:dc:bb:aa:86:
b8:3c:21:b4:6b:14:ee:0c:d7:ac:48:b0:4e:ec:cd:
80:1b:1c:68:9a:61:9e:a3:6c:67:95:82:7e:74:dc:
96:9a:9f:07:6e:f6:36:1b:f7:15:cd:de:7f:8b:56:
05:fe:da:3a:ba:25:b2:f6:c5:83:99:17:4a:61:47:
13:2c:0f:da:a2:a2:8d:74:87:5d:87:60:5d:57:e7:
f6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:6F:F3:A1:6D:4E:A5:57:CF:A7:0E:2C:82:26:E4:7C:28:38:C8:EF
X509v3 Authority Key Identifier:
keyid:91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:38:18:57:3b:09:e6:cb:63:d9:a0:2e:9a:d6:46:bb:c0:a1:
04:04:3d:0a:2a:f0:6e:1e:f6:fb:e1:7e:29:ac:87:da:99:56:
5b:8b:c2:de:d0:66:16:16:1b:75:c7:4c:31:7e:e6:96:1a:f7:
e0:f8:20:ad:db:41:e3:63:ee:bd:51:85:05:f1:fb:3f:35:33:
93:72:88:ca:56:35:e4:69:fc:e2:a2:bd:60:39:9b:25:48:61:
3b:66:32:a7:30:ac:f8:42:9c:d3:69:89:2c:e6:3f:c6:2a:f1:
ac:b0:50:20:9d:a1:a8:5a:b2:b4:2b:9d:6e:99:2b:40:de:c5:
8c:61:dc:2a:3d:b3:ce:3b:5f:f1:5b:0a:6e:f2:23:ac:61:02:
b6:28:3c:94:3f:e7:1b:73:58:e7:c2:43:7b:ad:01:5a:d7:8e:
81:a1:bb:d5:e0:cd:b6:12:06:5d:76:71:5e:6c:83:bd:a3:39:
bc:1d:3b:c3:86:48:46:fb:3b:4b:25:ea:42:32:60:83:ad:e1:
c6:b4:72:95:06:1d:63:90:58:81:28:59:9b:bd:d8:e9:52:cd:
ba:8f:3b:75:2b:15:c8:3e:0c:65:25:28:ed:3d:39:d0:4b:a5:
fb:28:1d:13:9e:b4:2a:da:39:cf:78:c2:f5:0b:83:fa:dd:8b:
3f:ab:5a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:36:21 2025 by rpki-client