Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json)
Hash identifier: J8A099Hvag4ylfcDzVaMPRuPxsD7U8aUAnnhQaV3kYk=
Subject key identifier: C6:B2:FD:62:43:3C:8B:1A:12:02:33:FD:9F:F5:9B:8C:90:56:C5:AC
Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Certificate serial: 0198D8BD2032B5A718F161F675E7CED0135E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
Manifest number: 0263
Signing time: Sat 23 Aug 2025 21:02:09 +0000
Manifest this update: Sat 23 Aug 2025 21:02:09 +0000
Manifest next update: Sun 24 Aug 2025 21:02:09 +0000
Files and hashes: 1: KOqyp8DhhZD3JH6K0j1zl6aQKBk.roa (hash: CehIyyDTNH2XPwU/dxmXRsBi9Cc/OKe00kUQqRs/maU=)
2: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: S2zruZAxzBCTndxXNJ39FkiIHFWzvu9sXGbe/svsEkU=)
3: YCOxnrJZzRohN18jKfSDMAOgQUI.roa (hash: /PrVwAluwlwegI08mKBtFGWqwyRlaqAj4wNKvuzMcSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:bd:20:32:b5:a7:18:f1:61:f6:75:e7:ce:d0:13:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Validity
Not Before: Aug 23 21:02:09 2025 GMT
Not After : Aug 24 21:02:09 2025 GMT
Subject: CN=c6b2fd62433c8b1a120233fd9ff59b8c9056c5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c6:9a:a6:10:7d:8d:15:27:8e:1c:88:8a:48:
20:93:58:b2:b6:a6:1b:46:dd:8b:e4:40:a6:6a:8b:
05:ac:5e:6c:0b:5a:c9:af:dc:15:c5:c8:4a:ca:90:
3a:4a:fc:81:dd:42:52:d1:ec:a9:71:5f:31:dc:4d:
e3:cc:d2:5b:29:aa:f2:ab:90:39:52:45:01:4e:04:
98:14:08:9d:13:2b:5b:0e:3e:bc:13:3d:f9:4f:60:
9c:76:3d:59:29:cd:e3:83:b4:09:ea:35:6d:c4:14:
06:65:4f:e8:d0:ce:20:2e:08:b6:e3:9e:d6:7d:05:
9d:c7:59:21:fb:d4:71:a7:44:e5:db:99:92:68:7b:
1e:2a:3e:13:4d:70:0b:cc:e1:fe:73:6f:03:17:4c:
be:55:31:06:b6:7d:d5:d7:53:da:77:19:ee:43:f6:
10:0e:ad:9a:6a:74:39:d0:82:e4:61:9a:fd:86:30:
89:4f:ae:5b:53:f5:86:ba:1c:53:c6:bd:72:db:6e:
e6:b4:19:13:d4:78:fe:25:a8:9c:56:63:7a:12:2a:
cb:b6:d9:52:07:95:70:d3:12:95:b4:fc:ac:a2:46:
1d:77:f8:b4:c4:43:3f:35:e0:d1:e2:0d:6e:5f:30:
49:55:52:da:e5:d9:68:a4:ac:f1:ce:2c:da:0f:4a:
9a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B2:FD:62:43:3C:8B:1A:12:02:33:FD:9F:F5:9B:8C:90:56:C5:AC
X509v3 Authority Key Identifier:
keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:f2:13:6f:30:b6:bb:6f:db:4f:f1:bf:74:bb:32:e6:64:43:
86:c3:98:58:e1:b1:e5:c2:b9:e4:19:a7:e7:e9:f4:8e:0c:c2:
75:53:83:dc:15:ae:ac:43:57:78:5c:13:cc:01:bf:24:45:1d:
18:07:46:9c:e0:70:0c:8e:65:eb:ed:f9:d8:49:81:66:90:76:
b3:90:6e:65:c1:55:3c:fb:a0:8e:e7:1e:13:56:9f:cc:e8:69:
eb:cf:ca:99:6a:d5:93:39:4e:1f:c5:3c:9b:cc:65:fd:88:3f:
d5:e9:7b:7d:d9:7e:4c:48:f4:70:c3:dc:d3:a5:65:cd:60:4c:
43:79:b8:f9:b2:8c:dd:eb:62:80:1b:be:79:db:06:f1:4d:96:
01:c2:29:20:c8:e2:28:d6:57:0c:56:bb:6a:6b:cb:5b:95:a3:
5d:9f:02:d4:f1:df:21:6b:2c:61:bc:66:22:77:6c:2d:62:9d:
41:5a:c8:74:7b:16:32:20:a5:4e:4d:3a:1d:f7:79:7d:2a:26:
dc:ab:4d:0e:b3:9b:bd:72:f2:f3:1a:2a:76:79:5c:b0:36:a8:
95:7e:cb:a2:f1:ca:8b:94:db:94:45:cd:78:79:e2:2e:5a:90:
0d:94:b5:5f:3c:ab:e1:32:aa:ef:90:ec:5d:0e:57:05:51:51:
f0:f3:34:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 02:28:44 2025 by rpki-client