Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
File: y9_OOlNV-GH9xIwyASx4ydr5paQ.mft (raw, json)
Hash identifier: 3v46T9T1A2jGSMCZh6ZSh15skQtVrZXvTXojJMnjZMQ=
Subject key identifier: 2E:2F:B7:23:BF:7E:70:D2:27:72:FA:37:A5:DE:CA:EE:25:56:F7:68
Authority key identifier: CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4
Certificate issuer: /CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4
Certificate serial: 019A4C617698E06D9A6EADEA3090AFB09CF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
Manifest number: 16FE
Signing time: Tue 04 Nov 2025 01:00:46 +0000
Manifest this update: Tue 04 Nov 2025 01:00:46 +0000
Manifest next update: Wed 05 Nov 2025 01:00:46 +0000
Files and hashes: 1: bOJn3C4X_HbVq1h6UbPmeHa89Xk.roa (hash: 0VXWmptilJp/NZdJSyteya06wYsuekGmJXgRcUTXwzQ=)
2: ri-zVL1OpUAxwvXX4JQ4t1YUuHM.roa (hash: Ck77Ae9V6KDMYJzNdjCSazt5tuNU78Yt+UmBsf4uG94=)
3: u_6Z2m-kttn1KGvW0DMCRJb-wGc.roa (hash: 8dKKNumWXSexpArn6diHEL6UixSl6qSaZ9jIxuDxNf0=)
4: y9_OOlNV-GH9xIwyASx4ydr5paQ.crl (hash: BSE10U6lso2coXznzfRGNDBFvBmegnNU5FRaUHkFPCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:76:98:e0:6d:9a:6e:ad:ea:30:90:af:b0:9c:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4
Validity
Not Before: Nov 4 01:00:46 2025 GMT
Not After : Nov 5 01:00:46 2025 GMT
Subject: CN=2e2fb723bf7e70d22772fa37a5decaee2556f768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:51:c2:1a:3e:e6:60:2c:a1:7b:4c:43:8f:d5:
48:23:11:71:55:a3:35:d7:50:e4:68:29:0b:8b:02:
da:98:c5:97:59:df:25:f9:dd:da:03:09:25:69:de:
35:f3:11:ed:2a:a4:ac:8a:ab:f9:09:d8:20:bc:50:
d1:ac:4b:cc:f3:67:bf:89:e6:fd:14:58:87:f9:43:
97:7e:cf:4f:73:86:41:3a:40:48:af:65:f9:b5:b3:
0e:0e:e9:09:b8:09:98:7f:07:b5:35:65:43:7e:b5:
19:2e:39:ce:d6:7e:34:43:0d:25:a7:2c:e2:bf:ee:
bc:e7:fa:e7:2f:c5:76:90:41:86:c5:66:8e:d1:e3:
fe:7d:fc:32:76:ff:46:f7:f0:d6:0f:5b:78:1c:74:
66:60:b0:5c:a6:4b:ca:ee:09:81:d4:da:b4:a7:47:
8f:d5:4e:f1:bb:be:5a:24:b9:8a:a2:da:99:2a:3a:
cd:62:98:7e:b2:b2:52:57:cf:da:62:50:1f:dc:9a:
4f:a4:32:c6:da:ab:d4:03:ab:2c:f2:81:67:c8:1f:
a4:a7:b7:84:38:23:c9:88:b7:d5:57:4c:d4:97:82:
6e:0b:b3:5f:89:e6:db:8f:6b:78:a5:25:e0:d9:ff:
e1:08:5a:65:77:be:1f:9f:b9:63:f4:69:9d:ef:10:
57:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:2F:B7:23:BF:7E:70:D2:27:72:FA:37:A5:DE:CA:EE:25:56:F7:68
X509v3 Authority Key Identifier:
keyid:CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:66:e1:0e:9f:8f:60:4f:44:e9:21:93:7e:3d:bf:50:7b:2c:
49:c7:19:6c:12:bf:13:64:fe:d6:e7:0e:2b:80:4f:81:28:3d:
42:eb:ab:b7:e9:1c:40:ff:9a:54:ee:b8:6d:df:ae:33:52:9e:
b2:ce:79:92:4e:ff:0e:cc:da:89:51:c2:d8:7b:5f:85:27:15:
5f:71:5a:70:07:27:4f:5e:03:6c:0f:d8:20:86:0a:2d:a6:5e:
db:9d:fc:26:1c:da:7f:3b:61:dc:b3:bd:09:52:c1:1a:49:82:
c4:d2:96:a7:01:bc:2a:38:a0:c5:fc:ab:41:7b:89:1b:3b:a1:
8e:80:3e:95:b5:75:89:9e:6f:41:2b:4f:c4:77:c1:cb:0c:61:
7b:ef:0e:78:e1:df:7b:d0:d6:4c:9a:42:3e:ff:82:dd:c7:f8:
94:3f:d0:41:ff:b0:74:64:f1:9e:92:ce:a4:cd:71:ed:3b:37:
96:58:99:93:22:8e:01:61:54:5a:74:f9:c6:9b:6a:9b:05:79:
68:e7:05:1b:7d:04:71:ef:0b:e4:c2:c3:63:b2:6a:c8:a0:3c:
22:cc:cc:ad:1d:42:a1:75:5b:e0:da:f1:7c:54:df:f0:8b:8c:
74:c2:d2:e2:cb:44:da:ae:fd:dc:a1:d7:70:eb:4f:ce:9f:62:
2c:e2:8a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:18:13 2025 by rpki-client