
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
File: sUq6i2B0k5NHjoPDYObL110Vb4k.mft (raw, json)
Hash identifier: y4ztu/vCuPhLybsWgggHw7cTYyoNyiaTP1nUszvjtTY=
Subject key identifier: 87:FB:AC:C4:3D:60:A7:89:47:97:7E:CB:35:9A:C8:8F:1B:6B:37:A2
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 0198D698782E8AE3458AE45E07BDC0C7664E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
Manifest number: 165C
Signing time: Sat 23 Aug 2025 11:02:53 +0000
Manifest this update: Sat 23 Aug 2025 11:02:53 +0000
Manifest next update: Sun 24 Aug 2025 11:02:53 +0000
Files and hashes: 1: AtRByS0zJPDiOgR2GmP-us653x0.roa (hash: FxQtASMxynUngBeMPqWpgsQ0Eb/Ckc7wV64mAxHzC3U=)
2: Eo6V5YnuCJr9FvEX2DYqWrELADI.roa (hash: lChhm1otin5POSG81kYUPCqjBD0lABLrbTGgjSwCBss=)
3: Lsu4SS6ThyYeppRYu6PmZ-042nc.roa (hash: uXqaykBNjJacbWPSq8V/QHVwNjfPRIGaAOgab5oa/hs=)
4: YELUwe4nammHucxrbZyOcSXhQAs.roa (hash: F7evvDSLJ4aaJnnTjKcdJcahJaI+uHzuDY+hV5o5tME=)
5: lAQuczRYGnewQpXm-9DH2Aa2FJM.roa (hash: cpxHeGSggctdEQY5QxkgjLkTiuh9nHgtIGZfv1ijkMo=)
6: sUq6i2B0k5NHjoPDYObL110Vb4k.crl (hash: lqc7PJSoQKDrjITL4e+tfdhKm7O2JvJDlNWWDwzY4ns=)
7: u0aUu0b_iEvlUDq3juqga9PBn0M.roa (hash: I2lvIAd5dytk2OpXdsqlzCje+prqBKxhEoVZ7EyyIW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:78:2e:8a:e3:45:8a:e4:5e:07:bd:c0:c7:66:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Aug 23 11:02:53 2025 GMT
Not After : Aug 24 11:02:53 2025 GMT
Subject: CN=87fbacc43d60a78947977ecb359ac88f1b6b37a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c1:66:d8:77:91:9b:d2:5a:23:9c:10:ab:71:
67:f2:cc:1b:55:fb:1e:78:2a:dc:d6:d4:06:70:db:
b5:88:b4:ab:95:15:02:06:1a:b5:dd:ad:c4:ca:65:
9c:92:be:49:70:3e:68:d9:be:36:78:fa:9e:46:68:
1c:1f:c2:31:cd:e4:bb:4b:96:1d:88:bf:63:05:83:
79:61:6e:65:0b:77:91:9a:43:d3:25:0f:cf:96:97:
ff:71:e6:95:c9:f4:5c:46:57:b4:a3:72:1c:e6:30:
27:b8:3f:8c:11:ce:a1:f8:90:b2:4e:48:41:38:34:
48:a0:40:69:e4:e5:cd:04:92:91:6f:04:00:50:d3:
e9:8a:f6:5c:da:5b:94:74:9d:16:33:f7:c5:66:3a:
9c:00:e2:aa:f4:f3:48:90:8a:b5:9e:bc:d7:1a:ed:
a1:da:0d:5f:58:72:30:e2:b9:52:66:d7:93:88:9d:
4b:f7:33:ee:d8:3e:d2:bc:22:bb:0e:c3:07:07:34:
40:0c:76:91:1b:37:64:39:ed:98:bd:a8:03:85:f0:
b9:29:18:f5:82:87:0d:06:cc:3c:fb:e5:6f:93:ee:
61:26:4a:9d:cb:12:43:46:8b:45:09:c7:24:92:6f:
61:64:76:c5:77:57:3d:d8:87:47:6e:7c:c6:5e:82:
72:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FB:AC:C4:3D:60:A7:89:47:97:7E:CB:35:9A:C8:8F:1B:6B:37:A2
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:ac:3a:db:2e:31:6f:1f:43:d2:32:74:9f:af:e2:8e:2b:5b:
62:b1:64:36:b7:31:87:14:16:9e:a2:0d:20:68:67:ee:d6:d9:
36:a2:d3:2b:ab:3a:86:13:37:ea:f1:fa:79:70:1b:3f:4c:48:
7e:b5:72:c9:41:45:44:2d:77:47:d3:73:24:f5:6c:70:e0:40:
1b:5e:ee:c0:58:07:37:30:8f:06:09:46:bb:50:3f:d9:18:61:
3b:da:2c:34:75:35:2b:07:51:ff:42:56:1e:e5:29:b0:60:54:
bd:81:63:0c:7e:e9:c0:f3:ba:ea:47:09:a2:4e:3b:8c:49:71:
f6:60:f5:9d:71:4e:2f:40:fe:f8:a3:c5:c2:c3:f1:85:98:f4:
05:ad:5f:3d:97:2c:3a:50:c6:19:41:b7:8c:f7:ae:bb:b5:83:
42:96:47:d4:3e:34:20:f4:08:5e:43:38:2f:d7:41:1b:f6:3c:
2c:73:8f:a1:27:05:f9:f8:89:6a:2f:4d:32:71:d4:2b:60:e0:
e9:98:4b:e5:df:e2:30:31:49:29:b4:6c:23:b9:7c:ec:5d:f5:
bd:5c:db:d1:9e:ae:5b:c1:d5:24:d4:14:59:71:e6:5a:84:d7:
be:0e:f0:b4:bc:f9:dd:79:76:6d:e8:f9:55:84:60:22:d6:32:
87:ee:83:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:57:45 2025 by rpki-client