Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json)
Hash identifier: OIFQdfCNtNuTQlufe0iAoeqcVRMedmEkMRuVxCJwgAY=
Subject key identifier: 6C:42:0B:CF:3A:E0:97:1A:EC:9E:5F:92:60:6A:98:E6:63:82:FD:AD
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 0199FEB4B1616EACD1AFFB9C06D5E60E4FE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 23:01:18 +0000
Manifest this update: Sun 19 Oct 2025 23:01:18 +0000
Manifest next update: Mon 20 Oct 2025 23:01:18 +0000
Files and hashes: 1: G9mF37Fb91r0jC33-YcK9r4IAmk.roa (hash: MaEVR8Nlqavgaakwb2T4C4sUXoGT+mVODKAXw14Vucs=)
2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: ASOyJYPLp9WDf9pcZCpR5dadbRUNBJC4rMMi4g+mZ2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 23:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:b1:61:6e:ac:d1:af:fb:9c:06:d5:e6:0e:4f:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: Oct 19 23:01:18 2025 GMT
Not After : Oct 20 23:01:18 2025 GMT
Subject: CN=6c420bcf3ae0971aec9e5f92606a98e66382fdad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a5:cc:74:b7:1f:0f:ce:6b:fa:c6:c0:43:46:
72:a1:3f:54:ee:25:e0:25:c1:3c:28:8f:4a:14:de:
d7:15:f6:6f:2e:0b:14:9e:17:2b:f6:a1:db:76:e7:
24:07:3c:bb:a9:9e:c1:f3:0e:f9:34:e2:3a:d7:e5:
92:63:7e:c4:30:33:de:21:bd:84:33:82:f0:57:93:
e1:36:30:66:82:c3:d5:a3:05:06:76:23:62:17:24:
65:1a:b6:d4:17:d0:43:65:9b:e1:73:a7:a3:ea:9c:
b3:06:59:b8:64:b5:47:c7:5f:3c:91:50:65:c5:c0:
c1:3e:ec:ac:6f:2d:14:14:00:05:0c:14:cc:83:ac:
39:38:b3:11:de:6a:f7:f5:85:c7:c5:15:02:37:81:
4a:c9:51:f0:a4:76:69:8a:d2:a3:a2:dc:92:d7:a9:
af:55:54:68:25:0e:cc:d4:96:73:c8:22:96:e8:cd:
a7:0b:dc:75:39:4f:77:57:8c:24:b1:14:11:0c:20:
aa:d0:96:e0:08:2b:85:e2:ed:ef:43:72:be:69:4a:
5b:03:b3:fb:cc:b7:24:bc:17:36:1d:80:b8:a4:9b:
0e:7a:35:60:0d:10:6d:72:db:0d:bf:ce:39:21:15:
a3:77:85:95:26:52:d2:a6:f2:6d:a5:13:c4:37:24:
e9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:42:0B:CF:3A:E0:97:1A:EC:9E:5F:92:60:6A:98:E6:63:82:FD:AD
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:a2:eb:2f:ec:eb:7f:8a:80:c7:cd:54:8f:d1:9d:a5:2a:5c:
a0:86:14:c3:80:9b:d8:08:44:d7:c3:0e:30:ee:d0:12:ee:41:
60:47:44:9c:33:19:35:2a:29:32:61:a2:8a:2b:2e:b2:f6:d5:
2a:e8:ef:00:41:32:26:bf:f3:78:e1:38:bc:e0:e9:ac:0b:eb:
3d:61:db:a1:ed:4f:e1:42:a1:62:04:f8:86:6d:fc:41:73:9c:
76:4c:52:d4:6e:f0:56:31:e8:78:b0:1c:ef:c8:8f:56:27:4a:
52:00:ea:75:4a:00:05:f7:00:35:9c:ce:c4:b7:86:6b:16:ce:
9d:68:30:ff:4e:50:0e:8d:9b:e5:89:bf:fb:56:46:93:26:6b:
65:21:77:9e:e7:31:1d:7a:21:70:27:8c:8f:13:75:83:27:05:
a6:7e:8e:b1:8e:b9:5e:49:91:3c:4c:2b:5e:69:b5:b7:cd:32:
e5:da:89:83:38:1d:bc:9a:11:c9:9d:27:12:18:a0:6f:33:22:
9e:de:83:51:f4:f9:62:22:4c:fc:6a:c7:6d:3a:62:c5:c6:85:
e9:87:3f:10:01:e5:70:cb:a4:d1:1d:49:1a:87:8f:b9:e0:1b:
55:d4:8a:b3:66:d3:83:a8:f1:b9:e9:9a:a5:77:c5:61:98:b4:
d9:63:22:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:27:25 2025 by rpki-client