Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
File: 9LdilQ63kWZou_qNG4cFYLHKdzk.mft (raw, json)
Hash identifier: mrn/sxAadrlJVCIRPkqCH9c31Lg0vD/vKnSFBUMK6uQ=
Subject key identifier: 15:3C:00:2E:83:C1:54:5C:5E:EB:7A:DA:1C:67:44:62:A6:68:A4:E7
Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Certificate serial: 01992669ABB6F8C69CDF39D3DE89D3FBB36F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
Manifest number: 1512
Signing time: Sun 07 Sep 2025 23:01:23 +0000
Manifest this update: Sun 07 Sep 2025 23:01:23 +0000
Manifest next update: Mon 08 Sep 2025 23:01:23 +0000
Files and hashes: 1: 2I_gyEpNZ4JuV81yJRUXBVu-KOA.roa (hash: r49ywNskr+Vb41Ou7x0XARQgE2G5ZH5biPRfE9u4cAc=)
2: 2tZ8QlZM2m2IpNLIvJ0W7pbf-Z0.roa (hash: 9Uhvy9O+l0zHDpQPVkCj98q8JIdj7ZhjiR3rxLVvfII=)
3: 9LdilQ63kWZou_qNG4cFYLHKdzk.crl (hash: +hsrLRG59S5OJj3WHjMEnIjZBQUgobwdxyaPzEIC9Dk=)
4: Cqe38rpbTYcW3IBIj3GE-axW20k.roa (hash: rFb4HKGqgMrSh0TmO+Kz12Dni5W90nAeu/GsQNE5QbI=)
5: RW6wxE8PmfS_l7583dlKYTuULiM.roa (hash: NA5N2aFRPb0HCLNpvXiULoI8i28V3/zHm+oTFj2hW9U=)
6: XViXWtM4Qca08fEngqnKAjV8_6k.roa (hash: FX1LXPYDV9yZbUiSRuPd/ffSUdla1CU7pMstvEpaovA=)
7: cg5wyW1XUiTE1cAkUrbH-_fslDk.roa (hash: zkUw4K8Y/lRpRyDIEZKZW+jZfl1kW8PgsmLXFHW0Eco=)
8: pYT69ekFAz6AyMxjupc4L7m_By4.roa (hash: Cer1nHXkBg7TmA4VluMF+Bs6hly21XolmwIlPkVMAss=)
9: t292OmKp-GnX0MyFpL72FnDc9MA.roa (hash: uIDL5vQGM8ia+mjLC9CmEE4toRqUWbIawZ8YzQbIFpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 23:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:26:69:ab:b6:f8:c6:9c:df:39:d3:de:89:d3:fb:b3:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Validity
Not Before: Sep 7 23:01:23 2025 GMT
Not After : Sep 8 23:01:23 2025 GMT
Subject: CN=153c002e83c1545c5eeb7ada1c674462a668a4e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:51:d9:ae:55:28:99:53:e7:63:ab:a0:fa:8c:
07:ea:50:7b:ad:23:40:25:89:84:c0:ef:87:00:51:
16:bc:91:65:88:02:bf:05:a9:67:f3:80:ef:3f:58:
92:f7:78:92:f0:9c:f8:56:20:63:05:23:05:7d:57:
f8:52:ec:90:94:a2:97:9b:38:4f:9e:ae:1d:5e:9a:
7b:46:25:89:ad:b3:bc:35:b7:20:a1:d5:13:b1:df:
79:17:64:97:3a:5d:03:ae:aa:1e:88:27:9d:11:7f:
42:4a:94:e2:a2:3c:8a:b6:11:1d:6e:2e:14:e4:5a:
5e:34:8a:7d:a0:6e:73:f3:1c:05:9a:80:7a:b8:44:
77:96:17:3e:e2:3d:83:13:b5:a3:5d:90:a5:4d:92:
a6:19:8d:6e:2e:1a:03:1a:32:e3:49:96:1c:8e:76:
80:53:5b:df:47:9a:33:f4:e5:7c:c7:84:d8:23:7a:
19:88:79:fb:95:1c:42:22:ab:4b:18:5f:51:49:83:
79:50:24:6b:a0:42:81:c6:09:c6:0c:32:61:00:31:
9b:29:72:33:aa:1d:c4:7d:bf:41:31:1a:ce:6f:6d:
50:43:5e:b8:80:a9:47:3f:38:a6:ab:23:80:b6:1a:
ad:5f:b4:6f:1b:62:b2:33:43:1e:62:46:27:17:97:
25:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3C:00:2E:83:C1:54:5C:5E:EB:7A:DA:1C:67:44:62:A6:68:A4:E7
X509v3 Authority Key Identifier:
keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:f2:36:2c:24:64:bc:1f:9b:a1:53:d5:ec:71:4b:5a:35:e4:
81:5e:e8:d7:32:96:7e:a7:14:f2:6e:93:60:fc:e6:ee:eb:7e:
06:e9:8c:5a:d8:0d:14:55:d6:bb:45:43:36:68:aa:22:cd:c2:
15:7f:f1:1e:bf:43:17:b6:30:78:5d:44:50:65:e5:2a:ea:57:
0b:23:0a:a0:ac:92:6a:0a:c5:e1:5c:2f:a7:23:b7:dd:c1:bc:
a4:9c:02:a4:0f:2d:4d:ce:c3:5d:a6:1c:5b:45:34:84:65:d3:
11:09:ae:b9:61:52:21:29:93:84:1d:93:a1:27:82:dd:3e:d6:
05:27:76:90:08:7c:23:43:30:8f:15:ce:44:48:d3:69:e5:10:
d8:0c:0c:67:ae:d4:c0:f3:f6:19:47:52:27:f4:8c:c5:aa:fb:
2e:79:9e:89:4b:36:93:00:ab:d4:e2:57:da:d1:1e:a7:59:85:
43:a1:85:67:c2:b2:fe:c3:13:3c:4f:c5:96:84:06:b0:9b:71:
84:9c:41:9f:8d:89:2d:9e:c9:b9:99:81:2e:f1:d3:b5:62:1e:
83:6c:65:7a:fa:a8:84:b2:27:63:9c:51:cf:de:c6:37:29:bb:
cf:13:6b:df:3f:31:02:3d:25:14:fe:4b:fe:04:47:f7:16:ff:
ad:3a:b7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:41:21 2025 by rpki-client