Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json)
Hash identifier: d3/xyuVFsZ4NgBDDS1zlIIzOBxgE1uSenpHfdpWhTTE=
Subject key identifier: BA:C3:82:52:DF:E4:04:A5:43:26:59:65:5E:7E:16:F1:D0:15:F4:58
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 019918097C3F102E2D2076A5108BE24E78F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
Manifest number: 166C
Signing time: Fri 05 Sep 2025 04:01:38 +0000
Manifest this update: Fri 05 Sep 2025 04:01:38 +0000
Manifest next update: Sat 06 Sep 2025 04:01:38 +0000
Files and hashes: 1: Uqk6ZpOTGE36LT5fcwe3jUUK8bs.roa (hash: 3ocr9qZ6ri2OW2BEWPNTcZs9jR00BhDPO+YzVSk3MLY=)
2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: QhPBg5FlajpyiDbCmlxHxTy5yNxUEj0HAKnf3JGbOzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:7c:3f:10:2e:2d:20:76:a5:10:8b:e2:4e:78:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: Sep 5 04:01:38 2025 GMT
Not After : Sep 6 04:01:38 2025 GMT
Subject: CN=bac38252dfe404a5432659655e7e16f1d015f458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c0:1c:dd:f8:98:f9:3a:dc:15:5f:91:6f:b5:
ed:27:5f:20:aa:25:70:d0:bc:d2:57:5e:30:35:bf:
16:19:84:e8:b4:47:2b:46:fd:85:e7:4d:52:eb:1b:
cf:ce:20:8b:39:4a:43:c3:3d:09:12:10:a9:2b:83:
67:93:82:f1:87:fc:78:f9:13:58:10:40:94:5f:31:
77:ac:ff:3d:e4:a2:0b:da:83:5d:0d:c7:db:51:c4:
5b:57:50:45:30:48:8c:d5:d6:e3:85:68:fc:f2:69:
30:13:20:42:5f:d6:1d:79:e8:39:d0:11:0a:a5:8e:
e4:8d:cf:ff:e4:0c:c8:0c:d2:e0:6d:f2:af:ce:e3:
0f:43:96:e0:27:70:2b:01:e8:ec:9a:20:4c:1c:75:
97:19:c2:d5:c0:2c:cd:af:90:e8:8b:af:f1:d6:80:
03:1b:51:27:36:f1:f8:3f:69:7f:1b:5d:71:07:02:
1b:18:25:a0:0a:04:a3:74:a9:8c:64:3e:f2:29:b5:
06:19:ef:84:57:b7:f5:7e:75:8d:56:29:31:fc:ed:
1b:e9:b8:c4:8d:99:cf:de:ff:27:9f:78:62:5f:a9:
81:2c:16:8c:68:55:b6:e9:2b:ca:4c:55:e4:7b:75:
60:e2:72:88:e3:23:f1:b4:d7:3d:6e:9b:bd:0d:0a:
51:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C3:82:52:DF:E4:04:A5:43:26:59:65:5E:7E:16:F1:D0:15:F4:58
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:95:a1:a0:28:28:f4:5f:65:6c:2a:26:8b:59:49:f7:96:f3:
a2:b1:fd:33:7c:e7:c9:03:e8:97:f2:f7:36:67:0a:ff:af:ce:
af:34:2c:50:73:86:52:c8:fb:9d:8f:62:9d:88:75:5c:f6:de:
23:fd:b9:5f:5a:2f:e7:15:ba:be:c1:db:7a:0b:80:6b:32:aa:
47:80:04:7a:44:66:e0:01:6a:ce:c7:d1:b7:c0:18:6f:fe:ce:
e6:34:71:b2:0b:da:d0:bc:24:41:29:92:6c:eb:5f:10:50:86:
02:01:fa:87:b2:3b:dd:b3:9f:41:c9:cf:b6:8f:88:d7:f7:64:
eb:18:b2:3a:d1:39:16:9c:f5:60:8b:69:6b:e4:6e:77:1a:37:
ed:8b:be:b3:b8:8f:0c:ea:e6:52:28:dd:44:db:a0:64:9c:24:
51:d9:78:6f:13:a7:a0:25:83:c0:14:d4:29:82:eb:07:b8:06:
cd:97:97:34:9e:0b:15:be:78:bf:79:d0:33:78:48:ad:e5:74:
9e:94:31:d1:85:53:ac:e6:62:65:d5:20:2c:bb:bd:6a:94:06:
40:9b:0f:93:44:b1:c2:13:99:2c:ad:9c:b3:d6:d9:a1:96:61:
d7:2a:33:78:05:bd:62:af:d2:5f:a6:75:0c:72:3b:e1:50:9f:
ac:08:fc:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:24:46 2025 by rpki-client