Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: ETtYde35dWDknXvJaORGVcb2mLdB3j2+CXg2aHZ0GN8=
Subject key identifier: F1:E8:20:88:27:A5:5F:9B:35:B9:74:69:E8:D0:58:89:67:58:AE:3C
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 0198D96044881E2FB38A0C39918D9169D446
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 164C
Signing time: Sun 24 Aug 2025 00:00:21 +0000
Manifest this update: Sun 24 Aug 2025 00:00:21 +0000
Manifest next update: Mon 25 Aug 2025 00:00:21 +0000
Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: exH8BsSVX/im76YD8jvKaWzQXE1Xm33CkCEvRjKzHSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:60:44:88:1e:2f:b3:8a:0c:39:91:8d:91:69:d4:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Aug 24 00:00:21 2025 GMT
Not After : Aug 25 00:00:21 2025 GMT
Subject: CN=f1e8208827a55f9b35b97469e8d058896758ae3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2e:95:8d:8f:ff:58:7a:36:ea:e0:52:fc:65:
5a:da:7a:60:3f:1c:7b:a7:e8:62:3d:bc:19:4c:b9:
35:ee:7d:3b:d8:98:e6:f3:a2:0d:8e:0a:87:b2:02:
04:18:71:08:d0:a8:e0:54:4d:0b:53:d1:f2:cd:4c:
ea:8a:58:16:74:be:76:21:21:82:f4:53:7d:a0:c5:
4c:04:7f:02:74:8a:c5:5b:79:e5:b1:04:e7:ed:57:
ab:2b:58:9c:2c:a0:43:ee:43:12:a5:19:dd:8f:83:
23:11:6e:cc:9a:95:de:8c:bc:2b:8f:2f:16:27:1b:
9e:22:c5:3f:a9:c8:80:bc:2a:8c:44:5c:66:53:23:
08:e2:1d:e0:85:3a:de:d4:1c:57:87:da:d6:e7:75:
62:ad:c4:30:ec:90:fd:91:f8:9a:4d:39:f5:82:00:
18:27:2b:e5:63:2c:0a:cf:eb:66:51:35:16:e0:64:
53:c3:a4:98:6e:a7:1f:fc:3c:3d:19:4d:57:d5:79:
9b:81:05:fe:b5:84:9e:47:79:05:c6:dc:51:e3:34:
dd:8d:b7:61:fa:9f:fc:5d:49:8e:2c:5a:d8:b8:f6:
c9:35:a2:83:80:dd:ad:06:1d:dd:65:50:12:ca:05:
cb:7a:0d:74:eb:85:ac:3e:8f:a4:c1:fd:12:f2:29:
76:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E8:20:88:27:A5:5F:9B:35:B9:74:69:E8:D0:58:89:67:58:AE:3C
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:99:81:50:83:8a:d1:b3:cb:4c:f9:21:15:08:d2:98:58:17:
0f:8c:be:6d:3a:e2:16:04:8c:64:8f:15:f3:cc:06:1e:72:d5:
d5:9c:9c:f0:12:56:32:c0:41:98:e0:bd:e7:86:ca:f7:7f:fa:
1c:fa:b8:3c:47:5b:ed:11:2d:c5:0e:5b:fa:ea:ba:14:e6:bc:
82:93:bd:63:14:f7:23:66:88:33:89:8d:cb:f9:1f:56:09:4a:
2f:67:b8:f9:7a:49:90:87:5b:74:60:2f:cb:71:de:06:7e:87:
6d:02:e4:af:a6:35:51:58:ae:c5:ad:4c:bf:a2:79:be:3f:cb:
a4:ae:c6:40:a0:b2:68:02:d0:e5:3f:13:27:0f:3f:d9:b5:5d:
1a:ed:ec:3a:16:14:f6:fd:8e:a6:28:2d:c3:8a:d5:a4:21:e3:
ed:d7:35:c6:8e:11:9e:27:ee:9e:f0:45:5e:77:70:f9:1a:e3:
8d:e8:81:66:55:7d:1e:39:49:49:4a:09:ce:77:ef:5f:9a:35:
01:7e:e8:d4:2b:0e:fa:46:d9:f4:d6:db:6a:31:91:52:2a:69:
5f:7d:dc:6f:a3:6d:29:b1:25:60:61:37:61:84:72:f5:78:b8:
9b:ce:a7:e0:76:c5:79:df:97:c0:6a:00:f9:f6:38:81:39:fc:
d1:c7:65:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 05:14:45 2025 by rpki-client