Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: i5UnT6D4j9Yf5X5JPveJVQ87dNnq9ljaECDmcHnDPxI=
Subject key identifier: 3B:7F:D9:30:DB:C9:97:AF:B1:62:D0:84:54:28:A3:76:A7:86:2C:95
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 01987487035CF85291866FBA1A360202604F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 0211
Signing time: Mon 04 Aug 2025 10:01:01 +0000
Manifest this update: Mon 04 Aug 2025 10:01:01 +0000
Manifest next update: Tue 05 Aug 2025 10:01:01 +0000
Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: 4KsfLX8PfWKaH6EjyZ72xu/PZJWghNtrLqP64MkH/60=)
2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:87:03:5c:f8:52:91:86:6f:ba:1a:36:02:02:60:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Aug 4 10:01:01 2025 GMT
Not After : Aug 5 10:01:01 2025 GMT
Subject: CN=3b7fd930dbc997afb162d0845428a376a7862c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:04:be:9c:c1:62:a0:02:38:d2:da:c7:73:55:
9a:d4:ec:9a:cc:d6:cc:d8:eb:5d:0d:dd:a4:b5:66:
2f:63:76:65:1a:4d:44:64:7b:e9:e5:df:bf:ac:c9:
2d:c7:db:55:b2:3b:01:58:44:e9:c3:33:59:df:7b:
af:3b:15:4b:64:f7:70:83:a2:7a:90:15:4e:12:19:
d6:fc:d1:9b:a5:c4:44:c1:8f:70:27:aa:51:e1:9a:
b3:7c:b9:e8:94:d6:00:b5:93:fc:f3:93:a6:a0:2e:
ec:e5:87:42:90:fa:38:45:17:b8:d7:9d:4a:3e:f9:
ba:e4:41:ab:bf:b7:c3:79:67:7a:46:1a:c3:b2:32:
d1:ef:85:56:08:cf:26:35:95:52:f3:7c:3b:26:ce:
da:34:85:07:67:e5:10:ff:64:6e:4d:22:e5:6a:6b:
dd:76:dc:ca:0d:62:74:f7:b8:2f:59:b0:75:1c:f3:
73:16:be:8b:82:a8:3d:f9:ed:cb:95:b0:8d:a3:9e:
74:7e:11:97:a3:73:02:e4:7c:53:42:96:c0:1d:6a:
62:52:d4:c2:7d:b3:45:fb:a7:3b:5b:5b:4e:ad:09:
cc:e4:55:5a:75:11:44:bd:62:54:02:50:2a:61:d9:
9c:11:a5:b7:66:fc:79:b2:ec:39:8c:08:89:4f:cb:
24:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7F:D9:30:DB:C9:97:AF:B1:62:D0:84:54:28:A3:76:A7:86:2C:95
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:a9:1b:1c:85:06:f6:e1:02:16:b4:4e:e2:e9:79:dc:37:46:
78:56:4d:28:8d:6a:eb:94:a8:fd:38:8f:5d:82:fe:20:0a:04:
d6:b3:6b:37:a5:40:8f:89:da:a7:e5:3a:b0:41:ce:4c:aa:6f:
0e:16:f0:06:b0:7e:a2:4a:7a:2f:36:7e:7b:dd:bb:73:c0:28:
7e:3b:93:65:29:77:0e:dc:2e:8e:81:d5:39:8e:5c:a4:4a:e2:
dc:f5:5e:f3:1c:21:1c:19:ab:65:c1:60:e3:0d:af:8f:76:ad:
88:32:ea:f2:56:53:bc:e6:12:d5:89:7f:26:70:5e:23:d5:53:
71:dd:1e:f0:3f:73:41:f3:d1:9a:ca:98:1f:e7:28:2f:2f:29:
3c:c0:20:5a:5b:7c:8d:8d:7e:d8:3a:06:d9:4e:b7:ea:80:62:
45:b0:16:9f:0d:39:65:87:65:16:6b:56:04:ee:31:06:03:b5:
e8:f7:59:85:9f:e0:33:39:51:8d:e1:1e:72:68:2c:4f:c5:8c:
ca:6a:e1:4b:26:a7:ed:b0:72:c7:7f:79:b9:1b:bd:69:43:58:
05:61:bf:04:6d:b6:23:92:f9:d3:a0:87:12:69:1b:b8:64:83:
56:41:4d:98:4d:f9:72:63:d3:1c:50:7d:87:a2:42:3d:ab:ce:
68:28:c7:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:11:45 2025 by rpki-client