Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
File: AF_5zInGaoo6XXNKDWXGH9yFGL4.mft (raw, json)
Hash identifier: RO4ErlUqK5Y/HtvB6Al5fXBBFce75Hds6SMxlMrzpyE=
Subject key identifier: D8:DB:42:D5:25:C0:F8:F8:36:F9:60:17:87:68:44:EE:D9:22:EC:A0
Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Certificate serial: 0199326D734A4623E75A1DFD455BE01F2B3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
Manifest number: 167D
Signing time: Wed 10 Sep 2025 07:00:57 +0000
Manifest this update: Wed 10 Sep 2025 07:00:57 +0000
Manifest next update: Thu 11 Sep 2025 07:00:57 +0000
Files and hashes: 1: 0KFOTw8mw8rqvR73lDvTvz4eLlM.roa (hash: czZq6CrDBuBW60D89viYE/HEQ3Elp6ceJu/itDlsmLQ=)
2: 1-IEGfanW1eDg4hey_mFD59jQ4Tw.roa (hash: TEwUAYBqywOE+CrQSa2/94fxmftWbXC3tqwYRSHTWvM=)
3: 7fvFmCf70OoyCtjW6q-YAjjiptE.roa (hash: lD6p2V3Fh7qOAiBluHoM70XX68qSFbEeobI0lYUOj4E=)
4: AF_5zInGaoo6XXNKDWXGH9yFGL4.crl (hash: 3apVcl4RIxN5CreukvfyupUuKfC1nKzKaPqTWiRoNh0=)
5: XXc1R4QzqDrW8SviK6xRNkQ-hUM.roa (hash: YZxuonbhRtd70cdMZUvtG4tx6j8PhsH2pz0J9ByQ1UQ=)
6: mVS8rlA27Rm5BH1YZmHsYliJgHk.roa (hash: kSobMvLQWQPPJ+5wYRzt2RMBbz/GSTGKNOrc7qdwFJQ=)
7: svn5qGrzwkwprTn6parcyTvhbAo.roa (hash: /W0ZX7Qy3yFb8g6EosJAqdHBnY5DD0AAIXPV5XPQQ5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 07:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:6d:73:4a:46:23:e7:5a:1d:fd:45:5b:e0:1f:2b:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Validity
Not Before: Sep 10 07:00:57 2025 GMT
Not After : Sep 11 07:00:57 2025 GMT
Subject: CN=d8db42d525c0f8f836f96017876844eed922eca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:87:28:c2:a4:72:1c:99:c1:1b:fc:a7:c6:48:
1e:2e:f4:db:3b:0e:3c:ae:e8:fe:76:aa:67:96:49:
95:33:f2:95:63:19:35:a2:91:61:62:69:f4:96:06:
be:f5:d9:5e:d8:7c:04:f1:75:2e:d0:80:66:41:19:
3d:fa:57:0e:5c:72:8f:bc:27:dd:1e:8a:a8:95:2c:
af:16:16:4f:9a:ba:75:48:76:f4:29:12:7f:9e:db:
b6:37:89:2a:42:ac:19:44:a3:8c:73:3c:7c:f5:63:
b5:e7:22:7f:f1:f2:34:80:f4:02:5c:94:a2:a0:c1:
fb:87:3e:a9:7f:c6:c9:1e:6e:88:99:65:6b:47:fa:
9e:50:9d:02:a6:e9:89:4e:09:e7:6c:9c:75:61:ab:
9e:58:88:6a:fd:7f:8c:74:f4:f6:40:d9:7e:30:95:
18:20:59:09:71:6d:bf:1f:a3:a8:f4:84:62:6e:ac:
4e:be:a7:ec:19:d4:5f:38:92:f2:7e:c8:8c:a2:f5:
23:98:dc:d5:23:1f:60:24:1f:1d:a3:7f:1d:8b:41:
8f:05:79:4b:6c:97:5e:ac:24:66:6e:c2:ce:bf:58:
95:58:e2:98:c5:d5:9e:3a:20:d6:62:13:e4:c3:fb:
7b:c6:0c:2f:f5:cf:8f:ee:67:eb:c6:ba:25:84:1e:
b8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:DB:42:D5:25:C0:F8:F8:36:F9:60:17:87:68:44:EE:D9:22:EC:A0
X509v3 Authority Key Identifier:
keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:67:3b:19:87:cb:ea:02:7e:2c:d8:dd:ba:27:4a:09:51:55:
a5:b1:6c:03:58:db:cf:e5:cb:64:f3:e0:94:47:e4:b1:90:92:
66:74:4b:f3:bf:35:5a:a1:4f:f7:37:2a:a4:5b:90:a0:a9:b3:
79:41:42:a9:99:8a:f7:ac:65:c7:96:32:a4:85:e9:0d:02:92:
f9:2e:f9:7f:89:1b:1d:48:84:4b:1c:45:2c:0b:77:86:28:34:
f1:19:1c:a4:7c:2a:38:e1:ed:79:e8:3a:79:bf:30:81:06:e1:
c8:60:19:3d:d4:2e:3c:7c:fb:cf:d9:2b:ea:a7:15:b0:fb:ee:
61:01:eb:3b:40:15:5f:ff:57:2e:53:4c:46:d0:79:e8:88:d7:
da:ef:38:d2:ee:dc:9c:5e:3b:bb:58:d6:be:ba:be:e7:56:ae:
02:f8:22:04:ec:48:d6:06:51:17:d7:ec:03:ee:32:af:5d:1d:
77:98:da:06:80:98:52:05:fc:f0:3c:ea:68:79:e3:b8:0e:39:
e5:ff:5f:c8:b9:95:01:1a:af:31:26:82:ed:a5:eb:8b:9b:aa:
72:b5:97:c8:19:64:98:a0:fb:0f:f3:d0:8b:c2:81:7d:8b:df:
66:f2:96:a6:d5:7b:8c:f1:e7:6e:50:a4:29:c1:69:10:ae:e1:
40:13:29:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 16:30:13 2025 by rpki-client