Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: vzUw0RetcwPTRKsRb3xkp6qVcibWH8+1D+MjUtExIPk=
Subject key identifier: 09:01:76:3C:21:A8:50:CA:C6:BF:7E:17:3E:0B:7F:36:10:B4:EA:FA
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 0198D4A8269DFE8ADC18FE1A773242CC81CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 02:00:46 +0000
Manifest this update: Sat 23 Aug 2025 02:00:46 +0000
Manifest next update: Sun 24 Aug 2025 02:00:46 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: hfBAjj2rJE4RqDR8YZgx/eUFZbgtoiZPuhi/ervcAXg=)
2: bRo1FpRQdGW3rrEgf9LP2ZyYMbs.roa (hash: ZwgslFPNqU25lgzTk3XOIv2Nozx6fjcmPWKTGmYvfPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:26:9d:fe:8a:dc:18:fe:1a:77:32:42:cc:81:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Aug 23 02:00:46 2025 GMT
Not After : Aug 24 02:00:46 2025 GMT
Subject: CN=0901763c21a850cac6bf7e173e0b7f3610b4eafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2b:18:f2:4a:87:29:97:49:93:84:3f:ab:22:
89:44:b8:95:ac:bd:aa:2c:97:74:55:5f:04:ff:65:
19:ec:2a:ad:5d:9c:9e:70:a8:a6:5b:25:65:11:39:
b0:4f:23:0d:bb:35:d0:7f:34:fe:de:89:bf:f1:fe:
8a:ee:76:f8:9f:33:97:90:6a:9d:08:70:b8:2f:b0:
48:2b:c0:0b:5c:bf:26:ef:56:b5:bf:e8:35:bd:28:
26:1b:7f:b0:25:68:3c:f7:dd:bd:61:e4:27:17:36:
2b:5f:72:30:a8:68:44:e6:be:9e:74:22:b3:81:ff:
21:b9:bf:d6:47:37:7b:01:1a:9d:49:37:b2:4e:be:
09:ac:cd:5e:d1:7b:80:77:da:1b:69:41:2d:ad:ed:
76:17:6f:fa:49:a1:a8:fb:35:eb:25:6d:e2:53:46:
f0:d9:af:4a:bf:b9:57:c7:20:d6:e6:50:a7:00:9b:
b0:1f:17:d2:99:8b:c4:d2:79:44:0f:ef:4a:8b:8a:
a5:b3:96:1e:62:0b:36:5f:bc:43:c6:09:b6:46:73:
3c:ea:66:56:24:78:c3:30:fa:90:12:38:a0:8d:20:
89:89:a2:5d:a0:66:78:6e:38:70:58:18:82:04:5f:
b7:d3:b8:e6:cc:86:c9:8b:b0:b3:00:14:d4:80:8d:
1c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:01:76:3C:21:A8:50:CA:C6:BF:7E:17:3E:0B:7F:36:10:B4:EA:FA
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:b8:c3:ee:ba:d6:01:ea:0a:c5:54:50:09:4f:15:b2:5a:27:
83:98:f2:da:ba:9d:11:03:fc:23:ad:eb:c7:0d:91:f7:0e:9b:
51:42:0f:ee:7f:3d:13:5b:78:62:02:4d:ab:69:03:bd:4b:4c:
39:96:93:34:3d:f5:12:be:dc:86:2c:58:2f:65:22:35:73:6b:
8e:f2:54:85:23:05:c4:58:ea:73:a3:e3:0f:68:36:cf:96:4d:
e9:89:ce:63:0d:1c:c1:e8:21:20:2c:85:85:ba:b9:39:68:fb:
45:8f:df:a8:97:38:35:be:7e:0a:4c:fb:49:2a:c4:37:ec:eb:
a0:e8:9e:2e:96:70:bb:f4:3b:19:d5:9f:ba:01:33:d9:f6:a6:
7f:3a:b9:33:af:9f:8f:08:69:d5:e1:8c:44:7d:3f:05:d4:94:
07:37:ce:80:34:9b:bd:77:6d:40:5a:9d:44:69:4b:a4:dd:34:
9f:b8:a6:b6:93:17:62:78:e6:83:8d:c8:3a:87:2d:40:cc:a8:
30:ad:cd:61:a1:91:f4:d0:10:66:6a:21:72:c7:6e:e3:b5:22:
6c:a1:52:01:61:02:e6:15:b7:ba:a9:9f:25:8f:56:41:09:6a:
0c:06:b3:cd:91:1b:f9:e1:29:3b:4f:98:cc:42:11:46:83:58:
39:b0:e4:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:47 2025 by rpki-client