Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: lA9pbg4orEKTnZCQxcJSsmpdgYs7FWMIv0Q8qeBHIew=
Subject key identifier: 16:19:9B:80:B5:E0:31:2F:C0:41:73:F6:7D:33:09:40:1D:FA:55:77
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 0199FCFD5773BC165C835F716EC78AA9A17F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 15:01:25 +0000
Manifest this update: Sun 19 Oct 2025 15:01:25 +0000
Manifest next update: Mon 20 Oct 2025 15:01:25 +0000
Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: Frvu7TuKYb1phitUf28XnUqL//CMa5np90plt2PlNPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:57:73:bc:16:5c:83:5f:71:6e:c7:8a:a9:a1:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Oct 19 15:01:25 2025 GMT
Not After : Oct 20 15:01:25 2025 GMT
Subject: CN=16199b80b5e0312fc04173f67d3309401dfa5577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:13:a5:6d:fb:47:d4:b3:4f:4a:07:61:5b:
d5:e2:5e:b2:fb:df:27:da:b8:84:34:c8:72:a7:09:
f3:9a:d8:29:fc:43:a8:85:b4:fd:6d:d5:a1:af:aa:
6a:57:bb:1c:e2:79:3a:82:49:f6:b3:69:9f:23:4a:
22:3a:03:b7:40:b8:34:47:57:58:22:6f:68:81:01:
d7:59:40:1b:db:33:a2:02:cb:72:d8:3f:14:6f:15:
67:d9:61:21:44:b7:b6:85:4b:c9:1e:c8:bd:87:cb:
82:4c:3b:39:45:4e:39:dd:35:69:7d:ab:ed:29:ea:
7e:d1:0d:3f:58:f0:a3:72:75:8b:1e:4f:cc:96:70:
01:01:f3:a3:b9:5b:5e:08:6f:80:82:82:ab:24:a9:
16:c0:7a:3d:d5:fe:17:d1:fc:12:d1:4b:05:b9:b5:
4b:27:8b:26:b2:bd:97:cb:97:a6:0a:d8:87:a2:59:
ab:20:43:e5:c5:62:33:bc:00:36:26:24:b5:3e:bf:
0f:da:10:0a:35:5c:48:31:24:80:06:16:b3:83:b9:
67:d8:5b:ee:29:54:15:1a:1e:99:6a:13:06:09:37:
fd:1f:8f:b0:9a:ff:8e:62:c0:2a:1b:35:fa:1b:4f:
2a:3e:3c:45:ea:eb:0b:7f:61:07:06:72:56:2c:c5:
c1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:19:9B:80:B5:E0:31:2F:C0:41:73:F6:7D:33:09:40:1D:FA:55:77
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:2e:3f:f3:c9:53:58:f5:cc:8f:90:5b:3d:07:07:8c:ae:56:
ba:46:1e:cc:ff:17:63:2c:63:66:8e:7a:1e:eb:c9:99:4a:0f:
96:64:f6:66:c5:43:64:2a:3f:35:75:e3:2c:dd:31:a6:94:38:
da:57:09:fb:b9:ba:f7:95:e7:85:f4:66:a9:47:40:4b:97:06:
d5:7e:97:27:a0:95:c4:a1:80:b2:ff:23:b5:cb:8f:61:7f:7a:
11:07:16:7f:58:b2:7f:6e:db:65:2b:8f:63:ac:fd:19:19:a7:
aa:ea:47:b7:23:5e:9b:91:25:29:56:3d:d5:76:09:72:a8:cd:
ee:49:f3:e4:d0:9a:f9:b7:dd:67:a2:86:c8:44:92:4f:cc:62:
7a:9b:a2:2a:5c:93:14:cf:c7:b8:a6:20:9e:46:a7:bc:65:42:
f3:a8:f4:ed:53:fa:3c:99:9c:fa:01:60:c0:c5:ee:99:f5:75:
7f:d7:0e:85:b5:c8:e2:6c:f7:7a:66:dd:70:c5:81:13:61:01:
85:88:f4:87:d2:27:28:f2:50:83:45:fe:26:c0:9a:ea:e9:29:
d7:0c:f3:ac:fe:ba:7f:b7:27:a4:17:09:b4:52:ec:1d:5f:9a:
ac:a9:1e:2d:d9:37:bb:14:c5:d2:f2:58:33:f1:3e:24:1d:c6:
4d:a5:e3:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:45 2025 by rpki-client