Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json)
Hash identifier: 9b70xJjbca26aTma0fLM5m3SjfA6b9UvFNYnsUyggNs=
Subject key identifier: CE:0B:8F:6F:60:5A:EF:8F:4A:0D:02:58:28:88:3E:01:81:8B:CB:8D
Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Certificate serial: 0198D5F1928370F72DBF5A651F1E4CA2057B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 08:00:35 +0000
Manifest this update: Sat 23 Aug 2025 08:00:35 +0000
Manifest next update: Sun 24 Aug 2025 08:00:35 +0000
Files and hashes: 1: Llrtrof0_CXG6g_18Oyw968ZWEI.roa (hash: X1zaGRl51EQ/u9kK0U1WmdFcDajifODFmk55LESlUmM=)
2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: egeJOtthzykiFBtOv4+9sCGZMnS1d4hZEeegOubg8As=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:92:83:70:f7:2d:bf:5a:65:1f:1e:4c:a2:05:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Validity
Not Before: Aug 23 08:00:35 2025 GMT
Not After : Aug 24 08:00:35 2025 GMT
Subject: CN=ce0b8f6f605aef8f4a0d025828883e01818bcb8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fc:b1:7c:85:ce:03:b0:f9:9a:a8:07:b6:ff:
a7:91:5f:78:34:53:87:fc:ef:d4:16:81:5e:2b:c7:
79:83:2e:5c:95:2a:90:2d:71:68:4a:03:eb:22:b6:
74:a7:78:96:d3:7e:05:c6:f4:60:cc:b8:b7:25:a0:
51:2f:8b:36:72:2d:e2:37:73:ff:c7:32:e2:ad:75:
cb:97:c1:53:cf:44:35:47:2e:83:0c:2a:d3:9c:9e:
a3:78:9a:59:d3:76:0a:9e:f2:02:8d:c6:6c:0d:cd:
21:05:01:d5:61:ad:b3:6e:97:a5:52:44:93:86:04:
4a:e5:b3:dc:6e:ee:bd:04:9c:4b:21:ea:db:5d:f7:
8e:24:4a:04:a0:d0:05:59:0a:e1:fe:0d:cc:da:be:
e8:b9:64:da:60:3b:e9:68:dd:0f:30:2e:b6:3e:83:
e5:ce:bd:bb:e5:2e:e8:b4:ff:3b:4f:f9:0e:c2:72:
7e:3c:75:6a:53:59:7d:6e:93:5d:23:2c:20:ed:42:
4b:66:11:87:f0:83:c7:25:f9:b7:af:ac:2f:8c:5c:
7b:94:3d:83:4e:78:dc:b4:b9:16:64:5e:92:86:25:
5d:aa:5f:10:6a:8a:9e:4d:9d:27:a0:1a:ff:50:a1:
8a:c1:ef:21:0e:40:a6:99:ee:fc:11:c0:7e:e0:e6:
4e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0B:8F:6F:60:5A:EF:8F:4A:0D:02:58:28:88:3E:01:81:8B:CB:8D
X509v3 Authority Key Identifier:
keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:d5:58:ec:1d:97:2a:b9:09:e7:f6:45:e7:86:ec:a6:94:42:
12:87:c4:1a:ca:62:97:b8:ce:08:e4:98:7f:f5:17:20:e1:67:
3a:98:f6:22:49:ca:b5:f0:c3:ec:f3:c4:38:ed:83:3c:06:ed:
cb:fb:cf:5f:ab:02:80:a5:2e:ff:c0:17:bf:09:f1:a0:57:f0:
7d:71:ac:f5:c4:7a:47:cc:db:4a:06:a0:cb:1f:6a:57:20:cf:
fc:58:39:07:ee:ff:d5:3c:45:9a:0f:e0:ac:80:19:bd:5c:7d:
ba:de:ff:a2:d9:a4:76:9f:95:83:b4:79:f0:b2:81:ec:91:af:
4b:10:fe:64:0e:8e:d2:e6:e1:3f:41:1e:af:7f:fb:79:8e:9f:
c0:92:05:5d:60:5f:e4:cb:ed:39:87:83:31:3d:82:56:35:4e:
4a:48:90:f1:5e:db:8a:7d:0e:9a:93:df:5a:36:d0:13:fb:fc:
f3:b8:d8:c8:e5:b1:95:85:65:79:94:39:bc:10:8f:36:a6:27:
9b:37:ca:13:98:4a:e0:f1:22:54:7c:bc:6f:3d:21:76:b4:40:
73:83:ec:24:23:fd:8e:46:95:4d:78:26:8c:2e:67:4f:3c:eb:
27:7b:40:17:6e:91:2b:05:21:76:26:96:aa:60:ef:c1:36:cf:
e3:52:4a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:12:08 2025 by rpki-client