Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
File: Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft (raw, json)
Hash identifier: ynp4d5Op8R1jvXJti0nVgCBg4kpNGgSzY1WioaQ9MMU=
Subject key identifier: 0E:E9:63:61:10:14:94:A6:FD:16:45:96:4B:AA:6D:6F:E0:7F:2F:33
Authority key identifier: 63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
Certificate issuer: /CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Certificate serial: 019873E2B08D731ECDE7F34DD22720198CCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
Manifest number: 0343
Signing time: Mon 04 Aug 2025 07:01:32 +0000
Manifest this update: Mon 04 Aug 2025 07:01:32 +0000
Manifest next update: Tue 05 Aug 2025 07:01:32 +0000
Files and hashes: 1: Qzda_dpxvv_9oCqZ0rKtNjYGFYA.roa (hash: yhmVIZybj8mBYPvdFgcuCe4v8sYhgAuDZKiw+Hdv0f4=)
2: Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl (hash: OEdWCYytUVQlvNlLY56TZHPxOGMq91qYz/VnwH6M7+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:b0:8d:73:1e:cd:e7:f3:4d:d2:27:20:19:8c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Validity
Not Before: Aug 4 07:01:32 2025 GMT
Not After : Aug 5 07:01:32 2025 GMT
Subject: CN=0ee96361101494a6fd1645964baa6d6fe07f2f33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:da:ff:08:0f:75:4d:88:f8:ab:bc:ce:de:9a:
60:4b:1a:77:be:98:ef:3a:a0:0a:4c:c7:a4:4e:bf:
ed:0e:5b:49:3b:57:80:b1:ac:dc:0d:14:79:6d:20:
53:08:95:e8:f2:d3:a1:4c:b9:a7:aa:35:0a:f8:ac:
09:39:23:26:39:64:0c:f6:87:6a:5c:a2:cb:d9:e9:
d2:86:a6:ce:b3:cd:c1:c1:0c:ca:13:4b:2b:1f:c3:
33:d6:ad:26:bf:d2:98:09:95:21:e1:a5:d8:19:5a:
26:2f:ff:9e:ab:8b:cb:0d:36:22:c8:8f:68:db:d6:
a3:ae:fc:f9:8a:31:ba:5b:e6:5c:80:f2:27:df:dc:
70:94:b4:b2:35:88:ae:d9:75:c7:86:8a:83:b0:e4:
50:f1:35:66:dd:57:fc:01:42:24:50:c1:87:27:9d:
52:24:31:c5:d8:c3:75:50:89:f1:0e:5d:ab:07:a0:
b2:a6:d1:c9:cd:2e:22:02:ca:6b:4f:e6:76:cb:1b:
19:4d:37:a4:f5:bf:ba:30:62:a0:1a:e5:9a:2e:2d:
ad:76:2d:b5:56:e1:9d:c2:3f:20:d7:0b:a8:61:2a:
2b:f7:f1:cf:98:7c:a8:7b:95:77:f8:d1:6b:bf:5b:
da:73:5b:22:44:9a:23:97:13:3e:c7:db:23:14:12:
f9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E9:63:61:10:14:94:A6:FD:16:45:96:4B:AA:6D:6F:E0:7F:2F:33
X509v3 Authority Key Identifier:
keyid:63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:b0:21:4d:2b:a0:0e:c8:a6:21:6e:4c:b9:76:0b:44:5e:6a:
67:ee:cb:d3:9b:9f:c1:f5:c2:cf:13:45:c3:77:99:ea:73:32:
58:7a:11:65:18:cb:17:fc:79:28:38:97:7b:bf:f2:6e:aa:85:
40:b7:89:f2:a8:bb:03:41:6c:00:55:57:73:43:0e:d5:6d:ca:
eb:c1:50:bb:e4:10:76:aa:f1:52:f2:8e:2c:2c:61:23:49:d0:
4d:19:9f:f9:52:3c:d6:a7:46:eb:91:d0:eb:de:37:66:e2:94:
63:b4:9e:92:c8:e7:c6:20:0e:da:6f:0c:f4:47:5a:b9:6b:0f:
49:c3:ef:e8:c1:31:2a:3a:70:3d:f0:3f:d1:02:c6:b5:22:1d:
79:4f:33:74:37:fe:25:6c:88:59:30:92:80:bc:bc:ff:77:3d:
8c:82:30:52:d9:33:df:db:9e:3c:d5:2f:c4:29:8f:b0:f1:0f:
a2:af:ac:ac:3c:e0:fc:27:ef:40:e2:67:8b:61:ce:ea:4d:f0:
8e:0b:79:68:b0:78:5f:7d:28:66:d7:5b:d2:cf:ee:0c:75:c4:
47:0d:df:82:c4:04:32:82:2f:01:79:38:99:70:4a:a9:71:31:
c0:ce:f1:bd:48:4d:db:77:87:16:9f:73:ed:54:e3:a9:8e:bd:
11:b0:d8:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:52 2025 by rpki-client