Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
File: 9iZUZY9nKqzzcTO1xxz0sRwYado.mft (raw, json)
Hash identifier: 1UcaR8QyshPsRQc5mdjFPOwkOTVux9KYiUHBPqYCeTk=
Subject key identifier: A3:F6:88:4E:1E:2D:B6:9A:11:1E:18:38:30:60:FC:DB:2C:10:BA:BE
Authority key identifier: F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
Certificate issuer: /CN=f62654658f672aacf37133b5c71cf4b11c1869da
Certificate serial: 0198879FA4E9DE2F8338B52478824506AB19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
Manifest number: 012B
Signing time: Fri 08 Aug 2025 03:00:43 +0000
Manifest this update: Fri 08 Aug 2025 03:00:43 +0000
Manifest next update: Sat 09 Aug 2025 03:00:43 +0000
Files and hashes: 1: 9iZUZY9nKqzzcTO1xxz0sRwYado.crl (hash: BMetH6sAtDcsFxwNT/h796COkoYXFAg5g9K5EYTvj/0=)
2: NEPVSXjqT46bRniV4fcHp7pNd9I.roa (hash: cRn+2MSENb6w9bePKCbLQTtEQgCQcGDUoWkOY828NLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 03:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:9f:a4:e9:de:2f:83:38:b5:24:78:82:45:06:ab:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f62654658f672aacf37133b5c71cf4b11c1869da
Validity
Not Before: Aug 8 03:00:43 2025 GMT
Not After : Aug 9 03:00:43 2025 GMT
Subject: CN=a3f6884e1e2db69a111e18383060fcdb2c10babe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:38:65:0b:d0:db:a2:e7:18:9e:dd:92:13:e2:
8b:ab:54:28:06:45:57:82:40:ad:cd:57:d3:9b:90:
fd:00:9a:3b:3e:ab:d5:2d:8d:e2:23:a4:ac:04:a9:
1c:13:da:94:bb:40:3a:c6:ed:ed:7e:dd:35:38:e9:
73:7a:ae:af:d9:5c:b6:d9:ed:95:82:59:02:2c:6d:
4a:a6:74:6e:0d:57:fb:b4:61:51:af:04:c6:64:ab:
61:0c:01:bb:53:17:03:28:a1:94:67:dc:e4:69:50:
85:dc:fd:2d:af:0c:88:fc:67:ca:25:b7:bc:0c:4c:
21:eb:46:31:d4:0b:3a:e8:5b:eb:c6:7e:93:8f:4b:
0a:2f:49:cd:7d:8e:58:d7:9e:fd:47:6b:88:d9:df:
f1:a5:fe:09:75:5e:b9:72:1a:bd:af:8a:9d:fe:0d:
16:fe:39:25:c4:a7:33:9e:fd:62:05:9c:56:af:54:
f6:2a:04:3e:21:39:a1:5a:aa:d8:df:5c:fd:90:06:
95:8e:d7:a1:77:40:03:8f:92:03:75:43:e6:85:2d:
56:3f:b4:7c:ea:8f:f4:31:d3:d0:72:5f:da:f3:55:
fb:2c:9f:7d:cb:c8:e2:4b:d5:fd:76:fc:ef:d3:aa:
59:6e:9c:99:4e:2f:a5:0a:ce:11:88:0d:72:84:35:
6e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F6:88:4E:1E:2D:B6:9A:11:1E:18:38:30:60:FC:DB:2C:10:BA:BE
X509v3 Authority Key Identifier:
keyid:F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:f0:8b:87:fa:2b:33:cc:68:a1:82:3b:3f:d2:54:9c:8c:27:
53:02:98:ca:d2:34:12:d7:90:6a:c0:39:c6:7c:c1:65:2f:61:
32:44:1f:78:99:86:15:c3:2d:58:99:c5:dc:e4:d9:78:35:57:
7b:db:53:1d:7b:82:c9:e0:a5:4f:6e:e3:92:66:c8:b1:73:23:
f5:70:c4:96:c3:a1:ac:33:fd:6f:33:7a:03:04:6a:d8:1a:ed:
27:39:98:dc:93:ed:af:fb:56:9e:cb:d3:b4:4c:a8:f9:05:e8:
12:b3:fb:01:38:67:64:62:64:ad:fd:2a:42:7a:36:d6:b6:0c:
01:a7:64:ac:c6:78:9d:31:4f:4b:fb:70:16:77:d0:9e:8c:58:
be:07:63:f9:45:a5:65:16:e5:68:b0:a0:32:8b:51:fc:e2:25:
5b:22:b2:97:69:b8:08:b8:db:0a:de:86:76:cf:a6:1d:84:c7:
c7:48:29:79:5b:4c:c6:72:0b:72:69:ba:9f:0d:55:de:50:33:
03:08:de:a9:e8:b4:dd:a6:f1:25:5d:5d:2e:a8:4a:e4:83:5a:
5f:b3:ad:ea:0e:c0:9d:a1:2d:b6:8f:5b:06:8f:b7:85:e8:54:
c5:1f:c1:c3:57:c7:d8:fd:a1:be:8b:66:89:ab:78:7c:97:7a:
b2:14:d6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:48:45 2025 by rpki-client