Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
File: cF3hUpBmZK56yfIIesTQBoWl1_A.mft (raw, json)
Hash identifier: 9Rq+pRDX8+gyhxfzqX/2MOEqwLvC3tWZhGOp7feNFlk=
Subject key identifier: 73:30:2C:15:D1:32:F0:BE:C8:F2:F8:BD:C3:3A:1A:EA:F4:60:92:15
Authority key identifier: 70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
Certificate issuer: /CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Certificate serial: 0199172D094512A7EE6D7449B71B86487985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
Manifest number: 166D
Signing time: Fri 05 Sep 2025 00:00:51 +0000
Manifest this update: Fri 05 Sep 2025 00:00:51 +0000
Manifest next update: Sat 06 Sep 2025 00:00:51 +0000
Files and hashes: 1: TKoxALo9u8PRYJQQjNMDBzOManE.roa (hash: e6LRQQhGn2Pm43QUsi5AMgfehOrdW1tISUFnEIiJny4=)
2: cF3hUpBmZK56yfIIesTQBoWl1_A.crl (hash: 8vqd9qUgzGAKzPcBSm34F0Iv86FhIEdWUleRdR+RlNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 00:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:2d:09:45:12:a7:ee:6d:74:49:b7:1b:86:48:79:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Validity
Not Before: Sep 5 00:00:51 2025 GMT
Not After : Sep 6 00:00:51 2025 GMT
Subject: CN=73302c15d132f0bec8f2f8bdc33a1aeaf4609215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5b:40:91:78:06:0f:dc:2f:e7:ed:dc:63:98:
f6:23:30:c5:fc:f1:ef:88:fd:9c:85:b4:dd:98:33:
f1:04:4f:29:4e:f8:bc:30:2d:3b:8c:5a:25:7a:79:
a0:29:c5:95:d4:0e:fb:6b:23:c2:f8:eb:28:11:80:
60:cd:b1:04:93:7c:0b:11:3b:c7:98:ef:1e:5d:da:
12:51:81:3f:f3:16:04:7b:cd:29:d4:cc:b4:87:f8:
dc:27:55:e1:4c:84:64:1f:cf:c0:b5:9f:3e:0b:ee:
e0:f8:cc:8f:ce:f5:f7:00:9d:5c:93:e1:89:11:64:
23:5a:ed:f6:3b:4a:97:6d:f2:a5:8a:a7:5e:8c:89:
9a:2e:43:28:06:e9:b5:0c:1c:03:50:87:de:47:e2:
7a:60:59:6d:34:31:0f:62:92:5c:d7:19:45:a9:79:
24:30:ae:8f:bf:48:5c:9d:b1:bf:f4:dd:c0:38:e8:
2c:47:59:6b:eb:72:79:35:7b:8a:e9:36:cb:f4:b3:
85:c3:12:af:7e:52:d5:39:c7:7f:ba:29:d3:c7:ea:
ae:c1:fd:e4:91:c6:f4:7d:d7:93:a6:0a:6a:c8:34:
7a:63:18:8a:c9:e6:06:31:48:61:9c:2c:fa:9a:63:
c0:b2:53:88:0d:46:75:72:7f:b9:3e:2b:ae:71:32:
5f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:30:2C:15:D1:32:F0:BE:C8:F2:F8:BD:C3:3A:1A:EA:F4:60:92:15
X509v3 Authority Key Identifier:
keyid:70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:33:68:8d:c0:c4:85:ac:8a:a0:12:5a:c4:7f:8c:df:d9:8b:
d5:5d:63:96:4c:95:ca:1e:18:f8:c5:ec:5a:43:6d:c1:c4:a4:
ae:03:50:92:f7:02:88:f0:e3:8a:27:f2:47:a7:65:d3:29:d8:
4e:3a:4f:f7:4b:9b:82:32:18:80:40:43:52:76:ba:69:40:4d:
53:a3:ff:3d:ff:d7:dd:eb:c3:43:3c:a2:65:58:90:7c:11:49:
7f:34:99:9a:8a:20:df:25:88:aa:49:82:eb:dd:30:03:f7:db:
aa:ff:53:20:9c:c7:2e:d3:d0:0f:d7:8c:4f:04:57:e1:34:f9:
0e:f2:6c:b8:88:4d:d6:5b:f8:84:89:ba:57:58:23:a8:7e:db:
e6:05:b2:01:bf:bc:1d:21:ec:9a:dc:b3:f2:17:64:da:0b:bd:
e2:f6:57:9b:60:04:05:c2:7e:ed:61:8e:36:a2:57:ba:0e:06:
46:08:11:ae:84:08:d7:3d:1a:b0:ac:1b:9f:d7:71:55:ac:0c:
7e:54:a2:e4:77:97:f1:1a:d4:b9:0f:de:45:02:28:4b:dc:96:
91:64:e1:4e:f5:c5:dd:e3:20:92:47:8e:98:c2:2b:23:3e:c2:
cb:65:c3:13:60:50:d7:f6:02:df:d5:25:aa:dc:5e:80:09:e6:
55:99:12:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:06:54 2025 by rpki-client