Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
File: yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft (raw, json)
Hash identifier: kRfw2R4Iuc/dDCwkXqwGWkKta62XFA7+4kwMOiSBXJA=
Subject key identifier: B1:6E:C4:D2:5C:47:10:43:DF:D5:F0:8A:C3:E4:64:33:9A:02:71:8A
Authority key identifier: C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
Certificate issuer: /CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Certificate serial: 01988EEC39C9EAE0B95DB1D909AF5C39478B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
Manifest number: 1626
Signing time: Sat 09 Aug 2025 13:01:42 +0000
Manifest this update: Sat 09 Aug 2025 13:01:42 +0000
Manifest next update: Sun 10 Aug 2025 13:01:42 +0000
Files and hashes: 1: fewPOq5Sy5alJvzpYZYieD6pmV8.roa (hash: nQVFjlDzgmj3SLHG29wBX3sEI4Pk0MW5juplwGFMB6g=)
2: yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl (hash: zEjJ8xBwQ0n50jpgfESloVlg1X/BE76uexzWuZWQZGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:ec:39:c9:ea:e0:b9:5d:b1:d9:09:af:5c:39:47:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Validity
Not Before: Aug 9 13:01:42 2025 GMT
Not After : Aug 10 13:01:42 2025 GMT
Subject: CN=b16ec4d25c471043dfd5f08ac3e464339a02718a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:03:1e:c7:93:07:a9:70:26:80:d8:01:33:c1:
47:2e:a2:6a:9b:c9:41:54:4d:3b:e4:f1:b5:00:73:
de:9d:9c:2e:64:d6:fd:8c:22:f7:7f:53:4f:11:7f:
80:f9:43:8e:f8:33:6c:59:7c:4e:50:97:b1:10:f6:
f8:14:78:60:f3:d6:37:03:0e:4c:d2:da:2f:d1:2d:
5d:f8:be:e8:4d:42:3e:10:ae:ec:2f:1d:39:22:7b:
b9:2f:64:1a:dd:23:96:27:16:ec:45:de:90:1f:55:
41:1e:f4:55:2d:f0:1c:b6:de:18:5c:62:ac:4a:d9:
69:bd:a6:f7:cd:41:56:86:6a:cd:14:4c:4c:18:7e:
3d:56:dd:d6:f8:e2:df:b1:b8:c5:7f:bf:7b:7e:39:
52:77:44:9f:67:76:40:ef:16:85:f7:1c:0c:5f:b8:
36:50:6a:82:c5:8e:e2:3f:7f:64:db:14:e1:76:90:
a1:c4:e9:a0:97:0b:c6:f4:9d:cb:ea:12:63:e0:7e:
d2:a5:f7:96:63:6e:3d:43:03:70:d5:b8:0e:67:fc:
ac:a9:ec:69:38:cd:62:83:c3:dc:a7:df:79:c7:fc:
59:05:c7:07:2f:47:6f:ca:90:a4:74:53:78:ec:a1:
81:d2:9b:c3:bc:ab:e5:5e:fe:fc:28:17:05:28:d2:
6e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:6E:C4:D2:5C:47:10:43:DF:D5:F0:8A:C3:E4:64:33:9A:02:71:8A
X509v3 Authority Key Identifier:
keyid:C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:05:4d:ee:04:71:98:c8:68:2f:06:52:58:b7:03:6e:b7:65:
59:43:a8:32:cf:d0:31:c1:77:2d:eb:e8:69:48:12:90:b0:5a:
e6:a3:b6:b6:4d:88:58:13:61:23:de:b6:43:de:91:b3:b5:36:
df:dd:d8:e8:1e:46:d2:82:bd:d7:61:d4:c3:04:13:71:0d:72:
da:ef:44:9f:0e:5a:59:b9:85:0a:02:5f:54:17:56:9c:cd:2b:
83:38:d7:f1:c8:ad:9a:61:8b:6d:8e:2d:56:a6:53:e3:55:61:
b7:38:1c:2a:dd:b8:2a:5b:0a:48:9d:e7:43:4b:8c:15:61:bf:
b0:ed:4b:f9:3f:81:73:79:99:0c:f5:5a:1e:d7:a4:39:cb:19:
c2:cb:27:af:80:19:ac:ae:5a:f6:a2:39:51:5b:9a:9b:39:eb:
bd:78:2a:53:76:cf:7c:94:fc:40:43:81:33:2e:c9:2c:d8:ad:
bd:21:e6:8d:01:80:a4:32:37:d6:3a:87:b6:63:3c:c0:b6:cc:
d5:99:bc:ee:b5:96:1f:18:b5:5e:0f:de:fe:0c:d9:76:a7:c9:
7e:ba:78:b9:a6:4d:67:38:39:93:ce:37:7b:35:7b:eb:95:a1:
bd:4a:8d:96:48:4c:78:d4:9c:43:ec:c4:1b:7a:b7:81:38:7b:
45:6f:a2:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:34:23 2025 by rpki-client