Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
File: yQs5SsYzN2B_obsOq6EUU6gx85g.mft (raw, json)
Hash identifier: +BytxNjhYDFlT7sW7OqstiZTXjloVq3/obaByY25/vk=
Subject key identifier: 93:38:13:0C:CD:F1:63:90:AA:DE:09:9C:4F:4C:E0:52:3A:1D:CD:C9
Authority key identifier: C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
Certificate issuer: /CN=c90b394ac63337607fa1bb0eaba11453a831f398
Certificate serial: 0198857A83D8397B49FF7D4A6572F159B23B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
Manifest number: 0CBE
Signing time: Thu 07 Aug 2025 17:00:55 +0000
Manifest this update: Thu 07 Aug 2025 17:00:55 +0000
Manifest next update: Fri 08 Aug 2025 17:00:55 +0000
Files and hashes: 1: xYOsm8BUsmYBwfKFXCGnakfV_m8.roa (hash: 061quaNl9U6/3ODiu8AkctDs7yOiVTs6PkYfEN9U9Cs=)
2: yQs5SsYzN2B_obsOq6EUU6gx85g.crl (hash: W7bl0itQMSzGZh3vUJZCY+1mVYE14w4/psjpPCLkHZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:7a:83:d8:39:7b:49:ff:7d:4a:65:72:f1:59:b2:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c90b394ac63337607fa1bb0eaba11453a831f398
Validity
Not Before: Aug 7 17:00:55 2025 GMT
Not After : Aug 8 17:00:55 2025 GMT
Subject: CN=9338130ccdf16390aade099c4f4ce0523a1dcdc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f0:18:58:2e:ed:84:6e:86:c3:50:fb:f1:e0:
3c:98:a0:ca:e6:8b:3f:ed:a7:13:30:79:53:de:34:
62:87:50:6e:f0:00:dc:ff:3a:f5:c0:67:25:8d:cf:
62:e9:1d:2b:23:13:10:eb:2a:ca:5b:94:f5:22:bb:
19:0b:bb:c9:82:6f:c6:12:11:9d:94:00:a2:4a:7f:
a2:f2:ce:5f:54:e6:14:62:7e:a9:db:24:62:e1:29:
db:2f:a1:7c:93:c8:d8:81:c6:22:6c:82:c2:80:7c:
67:61:8b:7a:9f:90:ba:be:83:91:ab:36:7a:2d:42:
8c:cc:9d:d3:0b:76:2f:2a:d0:de:72:2a:67:08:86:
8d:47:7b:ec:79:14:9d:86:04:5f:a7:07:ce:06:86:
26:ae:71:bb:03:c0:b3:0e:3e:bc:95:a6:9b:69:ae:
dd:a2:62:57:86:41:cb:a2:cc:1b:2a:17:75:e8:3d:
7f:3d:8b:c8:07:88:34:77:d3:eb:91:aa:b2:0b:a7:
54:32:43:70:cb:be:8d:2f:1c:33:0f:a9:05:25:c7:
39:0b:5b:79:18:1a:9c:84:90:00:d2:73:bd:31:70:
aa:2b:a5:d8:8b:72:0b:b1:01:3b:c6:90:23:8d:ef:
4f:0c:8b:62:7c:71:06:1c:0e:28:ad:d4:c1:59:4d:
57:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:38:13:0C:CD:F1:63:90:AA:DE:09:9C:4F:4C:E0:52:3A:1D:CD:C9
X509v3 Authority Key Identifier:
keyid:C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:3b:b2:6e:15:12:bf:86:f4:25:f5:68:9f:db:99:f3:50:d3:
ea:7b:c3:ee:4f:4c:9b:d0:f6:ea:4b:c5:39:dc:53:d2:06:d1:
b2:ea:93:7e:22:28:be:70:ca:13:8e:2a:38:53:cd:00:b2:56:
5c:3c:a6:cf:cb:9b:f6:6d:02:fa:98:8e:8b:29:71:22:27:69:
37:7c:3f:32:4e:0b:9c:65:5a:a6:2f:50:6d:35:4b:54:db:89:
29:f1:d0:64:2f:8b:83:59:2a:5d:f0:d0:93:99:cc:ce:69:22:
b5:ca:bf:05:08:39:a2:91:b3:18:75:67:91:77:c7:e6:62:71:
a1:a7:f9:ea:a1:cb:b0:86:92:3f:0e:3f:6f:b8:64:c3:bc:ce:
1a:23:0a:6c:62:38:b1:14:96:13:90:ce:a5:e9:0a:8d:9e:8d:
74:5b:c6:fe:30:6c:cf:7b:7c:0e:7e:bc:aa:29:c8:5b:f0:53:
5f:6f:be:af:4f:7c:61:f9:fb:ce:f9:aa:e7:3e:e1:ca:45:f4:
47:c2:af:d5:be:8c:1b:06:e3:05:e7:c2:89:f1:49:88:d3:12:
e6:14:4b:99:70:cf:83:e2:aa:68:84:d8:82:81:a5:5e:8e:63:
46:bf:92:46:61:55:91:ce:23:0f:7d:0d:a2:ba:e5:3f:fa:6f:
66:f1:fe:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:10:49 2025 by rpki-client