Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: wUUIYIith8Y+RusHhFeBWwnRezb/QsrH0eXDlVotvKk=
Subject key identifier: 29:7E:4E:E4:0B:10:22:8F:58:31:DA:24:9E:B6:65:65:F7:C6:AA:89
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 0198A15F7675415EB54AAB08EC4FB0F6F16F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 162F
Signing time: Wed 13 Aug 2025 03:00:44 +0000
Manifest this update: Wed 13 Aug 2025 03:00:44 +0000
Manifest next update: Thu 14 Aug 2025 03:00:44 +0000
Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: BEJlioJngQUjqpTAh7yK+Lypbu6jS/ocQ9ja0rAGNWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a1:5f:76:75:41:5e:b5:4a:ab:08:ec:4f:b0:f6:f1:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Aug 13 03:00:44 2025 GMT
Not After : Aug 14 03:00:44 2025 GMT
Subject: CN=297e4ee40b10228f5831da249eb66565f7c6aa89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:df:fa:9d:47:18:72:3f:01:f6:95:be:4a:1a:
45:59:d6:73:d1:7a:5c:c8:1b:e7:5e:7a:bc:c5:a9:
63:e4:3b:e2:a8:7d:4f:d0:f6:ea:25:bb:a3:31:0b:
af:52:61:4f:b2:0c:bc:de:18:d2:20:33:c9:37:a6:
c9:6d:08:5f:1d:9e:24:c2:c7:40:db:31:c7:74:fe:
f1:39:31:d6:da:42:c0:9c:60:8c:75:f3:fa:1f:92:
3b:9d:bf:45:0d:3c:65:c9:68:7b:cd:b3:ad:2e:09:
f0:22:aa:06:a6:b8:b5:3c:f2:bf:2a:68:75:bb:f9:
8d:c7:00:55:0e:c0:a7:fd:a5:f9:cd:1a:a3:fc:e5:
8a:ad:12:02:fc:e8:45:3c:55:2c:74:04:0b:f5:b2:
10:7e:af:29:32:ba:d6:af:63:b2:ba:e1:43:ec:25:
6b:f4:cb:2d:7b:18:b4:07:8b:75:d8:9d:cf:51:7e:
9f:49:e9:e4:95:c9:ef:c9:ff:e0:4a:7b:43:e7:13:
0f:b8:7d:86:35:c6:6f:bf:8b:03:61:e2:95:c5:2c:
7e:33:21:56:3c:35:d5:7b:c9:b8:59:74:e9:fe:1e:
44:3a:12:a2:fa:50:9f:5f:77:63:5a:a4:c6:ff:7e:
2f:bc:56:69:81:25:95:99:55:91:50:6a:91:55:52:
3a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:7E:4E:E4:0B:10:22:8F:58:31:DA:24:9E:B6:65:65:F7:C6:AA:89
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c6:d7:f6:6d:1d:fc:18:c6:c7:16:20:27:dc:c4:0f:7c:18:
a5:b7:2d:88:f0:fb:62:32:44:6e:b9:5c:c8:0e:63:4b:05:f5:
d0:2a:af:27:42:0f:d9:c5:9b:b6:39:b6:84:ce:93:37:0d:81:
54:85:50:26:da:df:1d:c2:06:89:b0:e1:76:03:2c:69:2d:48:
91:ea:74:d3:56:16:24:32:2b:e3:18:4f:fc:23:af:eb:91:f0:
d1:e0:49:e6:80:81:4c:45:5d:5d:c8:0d:38:b5:6c:04:ed:a1:
d8:31:63:77:ed:4d:fd:6e:00:87:25:08:ce:1a:0f:c4:9f:03:
73:19:d6:ff:3e:63:38:e9:bd:e9:c5:56:9f:16:06:7b:c4:f7:
b6:b5:92:b5:9f:ef:7d:cf:b1:45:69:88:74:a1:57:6c:23:f4:
8b:c3:c1:da:9a:29:21:46:c4:c3:5c:e0:ef:b5:f3:ba:87:f9:
a6:91:3a:4a:64:a6:e8:39:39:db:e1:79:6f:02:c6:06:43:4d:
d3:80:1e:44:93:26:1f:01:92:41:fd:07:b8:df:de:04:7e:17:
ea:fb:04:43:57:d2:0f:e9:59:89:9c:63:d3:35:de:97:7a:1f:
07:85:0e:85:f1:b7:68:03:51:55:b4:df:b9:ea:60:72:ea:f4:
ff:4d:a0:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 08:52:34 2025 by rpki-client