Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
File: Y42aUATFktCTzImw2QdS4nnVGFQ.mft (raw, json)
Hash identifier: DbkQuxNM9qSG4QuO9VtV4T/OwvIrbWT3NOyV42oTwQk=
Subject key identifier: AD:A3:8C:A3:EC:72:ED:6F:7E:D4:43:13:DF:B3:40:67:9D:AC:6E:04
Authority key identifier: 63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
Certificate issuer: /CN=638d9a5004c592d093cc89b0d90752e279d51854
Certificate serial: 019874507C5E5D48A2AC11BCEF548D3768A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
Manifest number: 1617
Signing time: Mon 04 Aug 2025 09:01:28 +0000
Manifest this update: Mon 04 Aug 2025 09:01:28 +0000
Manifest next update: Tue 05 Aug 2025 09:01:28 +0000
Files and hashes: 1: 5t5Dcx5tNkWQ_sy57yYX9uF0BSc.roa (hash: PzSrKv8Rw8leyPQ1z/odwxbCskApuD1oeaEEXKXPsNc=)
2: Y42aUATFktCTzImw2QdS4nnVGFQ.crl (hash: DK9Tk8HBkjivaDuwos9fo8AKDXSw/tO9LFRj7AHon7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:7c:5e:5d:48:a2:ac:11:bc:ef:54:8d:37:68:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638d9a5004c592d093cc89b0d90752e279d51854
Validity
Not Before: Aug 4 09:01:28 2025 GMT
Not After : Aug 5 09:01:28 2025 GMT
Subject: CN=ada38ca3ec72ed6f7ed44313dfb340679dac6e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6b:5d:41:95:6b:d4:c0:58:35:50:9d:0f:56:
28:19:37:3c:9e:11:81:1f:26:40:bb:31:e1:fc:5b:
a3:e9:9a:07:55:7c:b7:6f:3b:eb:db:d0:43:37:37:
10:d9:e6:ed:85:ea:2d:0e:54:cd:17:db:6c:22:eb:
d8:40:27:fe:0d:62:46:cd:fd:e1:a7:84:88:d0:02:
07:36:49:20:fc:af:00:37:03:20:a0:db:ed:0e:87:
51:9e:f8:44:63:79:d5:7c:43:ee:88:ff:e5:d7:2a:
68:12:f1:33:06:bb:05:45:2a:50:ae:f1:68:76:5f:
ed:b3:ed:aa:96:23:af:62:9a:7b:37:ea:54:c2:06:
16:23:55:3d:8d:66:1c:8e:5d:fb:18:c4:28:44:1e:
3c:1a:28:b6:4d:de:22:40:a9:47:ef:20:c4:57:12:
2c:42:de:2b:41:fa:eb:92:35:ba:ca:df:f5:28:7c:
ce:db:64:d4:4b:2e:ea:60:cb:5d:df:72:df:65:48:
50:02:94:b2:55:77:20:ff:d2:48:dd:14:3d:94:30:
81:3e:af:36:0c:3d:9f:d4:85:87:0b:6a:af:d8:92:
64:71:b7:e4:62:46:31:fb:b3:20:a3:db:e6:8d:36:
59:63:87:aa:43:2a:3b:dd:02:35:1c:f5:31:7b:ec:
e4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A3:8C:A3:EC:72:ED:6F:7E:D4:43:13:DF:B3:40:67:9D:AC:6E:04
X509v3 Authority Key Identifier:
keyid:63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:c8:09:76:25:f7:aa:46:79:b8:3a:95:98:b9:a1:be:37:31:
73:4f:13:ac:0c:a1:b0:dd:31:90:54:29:0c:7f:cb:cf:6a:e8:
79:53:25:b9:b4:b7:a0:90:38:e4:79:5b:d2:35:bb:bc:ed:72:
d9:b5:3e:3c:22:4f:6b:fd:19:e8:c6:e7:9f:e0:ec:fa:59:8d:
8e:ac:cd:fe:65:b3:2a:88:3c:ca:8c:32:4a:fb:81:3f:4c:18:
ed:25:55:a0:06:b5:61:42:29:45:7c:72:08:a7:97:04:3e:49:
73:08:b9:1d:98:70:4a:33:09:7d:db:03:a9:34:f0:1d:5e:76:
d7:96:3a:ba:29:b2:2c:02:3a:6f:f7:68:4b:c7:a2:b8:5c:88:
88:24:9d:63:16:7d:d2:16:63:33:be:f3:c7:92:f9:da:d0:78:
17:aa:59:df:2f:94:0d:78:75:eb:0e:f0:a5:55:cf:fd:21:9d:
de:ed:51:64:b5:a5:04:66:87:84:30:c1:be:b5:01:ab:9d:73:
3f:77:c4:b4:da:9c:b5:73:8e:32:46:02:fc:d5:96:1a:b2:6c:
77:47:3b:18:21:3b:35:27:4e:9d:76:12:59:e1:73:af:0f:5a:
77:23:57:9a:d7:8b:5f:44:f8:db:35:8b:86:a3:cc:16:d6:fa:
96:34:22:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:14:45 2025 by rpki-client