Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
File: 6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft (raw, json)
Hash identifier: RHYDJL0klstd9fjq+DEw4edSJgpdnUcoC72BueWXJFI=
Subject key identifier: 96:47:14:E8:6A:DC:EE:C6:B7:4C:51:70:63:C3:9F:D9:78:E7:86:E4
Authority key identifier: EA:1E:CF:AD:FA:FD:4F:E1:4C:BD:C2:21:B9:15:9E:E9:61:8E:FE:89
Certificate issuer: /CN=ea1ecfadfafd4fe14cbdc221b9159ee9618efe89
Certificate serial: 0199FA6AB8DFB767EFC6412A2B30E4DE6FED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6h7Prfr9T-FMvcIhuRWe6WGO_ok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
Manifest number: 69
Signing time: Sun 19 Oct 2025 03:02:02 +0000
Manifest this update: Sun 19 Oct 2025 03:02:02 +0000
Manifest next update: Mon 20 Oct 2025 03:02:02 +0000
Files and hashes: 1: 6h7Prfr9T-FMvcIhuRWe6WGO_ok.crl (hash: uz+fVUX2R1ZBGwPhw2gBfEIMd8opIJkWSoF+QPBsXn4=)
2: pqo0TVIkWRzSNUY9ZM-DKBIuqHI.roa (hash: LE3ROsTHxCh32pw3rOkJiWiuchaEH2tULrKqdyCWHwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
rsync://rpki.ripe.net/repository/DEFAULT/6h7Prfr9T-FMvcIhuRWe6WGO_ok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 03:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:6a:b8:df:b7:67:ef:c6:41:2a:2b:30:e4:de:6f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea1ecfadfafd4fe14cbdc221b9159ee9618efe89
Validity
Not Before: Oct 19 03:02:02 2025 GMT
Not After : Oct 20 03:02:02 2025 GMT
Subject: CN=964714e86adceec6b74c517063c39fd978e786e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:09:c9:22:d6:b7:77:ab:0b:98:a6:2a:58:60:
f0:f3:49:a3:8b:76:d7:f2:db:7f:45:6e:97:d5:df:
67:96:8d:79:90:21:8b:47:99:d1:ec:ce:56:b0:39:
f6:bf:41:39:98:c4:79:6e:5d:a2:3c:f8:48:9f:c8:
77:8f:fb:5c:d4:39:ff:25:07:b4:dd:28:01:49:c6:
92:66:ad:90:34:b0:84:ae:ca:ba:1c:c6:ba:9a:6f:
65:05:b7:76:5c:fb:0e:5c:69:e7:50:a2:5b:34:1f:
4b:2c:6b:9a:3e:4d:37:a3:86:af:71:0a:36:f1:78:
77:94:4a:58:ee:87:7c:c2:9e:63:54:bb:2d:ae:99:
61:4b:78:10:db:4a:4a:b6:eb:12:ac:46:6f:6e:0d:
6e:4a:99:34:cc:a4:49:74:a5:28:1b:44:2f:15:12:
a5:cb:b8:a7:94:98:c2:1b:33:66:24:9f:6c:d1:2a:
79:15:ff:6f:83:c7:80:f7:a7:3d:70:b8:f3:b3:59:
3b:c0:37:7a:bd:6b:bd:c6:71:b2:4d:e6:b7:b4:34:
42:47:66:86:43:86:65:74:66:d0:1d:b1:60:1a:a7:
b0:16:ca:68:e2:54:e1:a3:17:fb:52:7c:ae:83:27:
56:a2:35:af:c9:f3:91:56:9a:14:36:70:0f:8e:a5:
f7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:47:14:E8:6A:DC:EE:C6:B7:4C:51:70:63:C3:9F:D9:78:E7:86:E4
X509v3 Authority Key Identifier:
keyid:EA:1E:CF:AD:FA:FD:4F:E1:4C:BD:C2:21:B9:15:9E:E9:61:8E:FE:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6h7Prfr9T-FMvcIhuRWe6WGO_ok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:70:0b:90:16:c3:e9:36:d2:b4:1d:12:7e:f3:37:c8:84:27:
89:81:3b:90:5c:56:7f:57:49:3a:21:62:62:ad:8d:e2:46:02:
97:0b:5a:c5:a5:95:48:67:2c:b6:49:36:c3:2b:9e:93:12:2f:
e5:12:1d:78:f1:62:dd:a4:3d:d9:78:4a:51:94:56:62:bb:ea:
3e:c2:19:9a:65:1a:aa:63:2b:d6:87:b7:0e:b3:ef:83:08:98:
77:48:31:f3:fa:5a:93:26:2a:3b:73:4b:95:50:44:36:08:57:
8f:db:46:8e:b9:26:6b:3e:6f:77:75:c3:08:98:e4:61:fc:2c:
60:2d:1a:e2:7b:b3:3c:da:f0:e8:8b:90:e4:3e:c9:c1:cc:a6:
d5:2e:4c:8a:05:c8:97:8c:30:5f:75:3e:1b:30:54:15:c2:06:
8d:dc:c0:e0:09:a1:7a:12:d5:45:55:ba:00:ed:2c:4a:b4:d9:
5a:af:9f:e1:20:e5:c4:96:eb:b7:bd:36:4a:a2:04:c7:21:46:
77:42:02:2a:49:73:90:c8:e0:95:58:ee:32:2f:e8:d7:a3:79:
94:7f:02:f1:67:01:08:af:0d:a5:f4:f7:49:9c:0e:43:73:aa:
5a:c1:5a:90:27:81:57:05:7b:40:f4:48:ff:d1:2f:77:b4:bb:
a4:cc:3e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:36 2025 by rpki-client