Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: bGJYvZ9KJh/ptlxKhJxz1ns4eLwRk5AaZxvzSLTPLbA=
Subject key identifier: 3E:AE:A0:C5:CA:42:74:94:62:6A:DA:6C:19:00:E1:54:ED:76:41:42
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 0199FD6B17329FF1EFD7CAE8A5EAC29809AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 1434
Signing time: Sun 19 Oct 2025 17:01:17 +0000
Manifest this update: Sun 19 Oct 2025 17:01:17 +0000
Manifest next update: Mon 20 Oct 2025 17:01:17 +0000
Files and hashes: 1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: reRd9g8H8gZ269yB7MSq2DYcmhmAEx7Gk+l77byRZ00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 17:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:17:32:9f:f1:ef:d7:ca:e8:a5:ea:c2:98:09:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Oct 19 17:01:17 2025 GMT
Not After : Oct 20 17:01:17 2025 GMT
Subject: CN=3eaea0c5ca427494626ada6c1900e154ed764142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b1:82:1d:3f:a6:35:c4:a4:fd:78:ff:20:52:
19:48:df:ea:47:0f:cb:d1:d0:8a:a7:8a:97:1c:42:
88:a2:bf:ff:f4:c2:58:1e:34:9a:12:cd:71:13:a4:
30:94:3c:2b:b5:ac:f3:35:1a:f6:11:1a:fd:47:21:
08:7f:8f:c9:28:0a:b7:8f:58:7c:1b:b8:87:79:ea:
85:25:70:b0:ff:5e:6e:95:6c:8e:b4:c3:4b:38:17:
12:c3:50:5d:a0:51:71:3d:b9:6e:0f:3f:aa:bf:c0:
53:07:4e:3f:ae:0d:f8:0d:85:95:30:67:07:96:eb:
95:b9:ff:24:4e:89:34:dd:58:fa:1e:03:48:c9:ec:
44:ed:77:c8:d0:5e:3e:1c:13:23:c5:ca:c6:14:9f:
8f:5b:59:10:95:b5:db:ab:63:56:83:33:35:fc:31:
62:2b:a0:16:b2:86:42:ed:0c:69:1f:8d:6c:9f:c5:
aa:50:4e:71:a5:a2:70:98:1f:e5:f5:31:92:73:72:
ff:78:03:52:2f:b8:af:b6:64:15:8d:f7:d2:fa:db:
a1:9a:4f:77:f3:90:37:da:19:2b:82:28:c5:68:61:
b3:6d:7b:7d:9d:d2:b3:26:ea:b9:a2:6b:7c:e6:cf:
15:26:fc:dc:b1:8b:a5:34:0c:3b:fb:c0:9b:84:44:
df:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AE:A0:C5:CA:42:74:94:62:6A:DA:6C:19:00:E1:54:ED:76:41:42
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:5c:36:8b:f4:8c:f4:c5:10:e9:8b:91:ce:f1:08:e8:dd:fe:
74:06:f3:34:46:60:b1:76:a2:e5:c7:24:c1:66:20:13:1c:d9:
f5:3a:d8:7e:80:70:41:a8:2b:2b:ab:07:5f:38:19:39:d1:c9:
b0:04:20:d3:ed:5b:f8:fe:fc:5f:6f:9f:10:8e:ec:b9:ed:97:
77:32:73:58:4f:81:86:b3:ad:e5:28:65:60:47:b4:74:14:a2:
4c:52:72:c2:8a:44:65:52:8f:e7:94:91:8b:ab:53:08:f9:3a:
06:88:5d:55:d4:eb:0a:a8:34:08:f5:8e:c8:56:2f:42:4a:17:
61:0b:91:c6:4a:31:74:9e:c9:b3:48:f3:42:41:b3:3a:13:14:
57:1e:ba:bf:47:ed:16:da:6c:00:83:28:c8:87:8a:02:bb:05:
37:2c:73:64:33:fb:ff:ad:1f:fd:47:7d:d5:7d:e0:5d:50:dc:
bc:d5:76:83:38:13:62:22:97:d6:de:30:ff:e8:63:98:2b:dd:
19:43:78:04:d8:6d:ec:c1:31:cd:d5:44:9b:4e:42:63:cc:a9:
2c:ac:33:ca:7c:46:39:25:05:eb:a9:4d:af:a6:bc:8a:bf:e5:
27:7a:f0:4e:69:d9:55:89:fa:60:30:7e:e1:11:cd:b5:73:a6:
b7:de:b0:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:52:38 2025 by rpki-client