Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
File: y9_OOlNV-GH9xIwyASx4ydr5paQ.mft (raw, json)
Hash identifier: QGe+UXplrfEexnyTsky+phGckG+q30NJga5CAQzlg9o=
Subject key identifier: 31:2E:49:7D:11:3F:B4:26:7D:08:50:A9:62:CF:50:A3:FC:FF:5B:C4
Authority key identifier: CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4
Certificate issuer: /CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4
Certificate serial: 0198A271EE6E06075B30D9532A593183A890
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
Manifest number: 1618
Signing time: Wed 13 Aug 2025 08:00:32 +0000
Manifest this update: Wed 13 Aug 2025 08:00:32 +0000
Manifest next update: Thu 14 Aug 2025 08:00:32 +0000
Files and hashes: 1: mkk-KHtVpdSjRTu_tkkdV37L-30.roa (hash: ivbrYqlxOhyTn42BC3RV5SMdz9F9dKpqo8vRZ2G2vog=)
2: y9_OOlNV-GH9xIwyASx4ydr5paQ.crl (hash: I95Y3alV3bAa5CTlIQWuuLvL1Eb+zfpUcFhQqMrFuPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 Aug 2025 07:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a2:71:ee:6e:06:07:5b:30:d9:53:2a:59:31:83:a8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4
Validity
Not Before: Aug 13 08:00:32 2025 GMT
Not After : Aug 14 08:00:32 2025 GMT
Subject: CN=312e497d113fb4267d0850a962cf50a3fcff5bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b1:f9:7a:fa:8e:ff:4b:6f:52:cc:75:2d:0c:
05:ff:7e:c8:7d:e4:e9:92:c1:1b:4c:9d:6e:5f:2b:
74:3f:f1:8a:27:51:c7:19:10:6f:d1:88:b6:a3:bd:
aa:86:53:18:9c:17:79:9b:e6:30:b3:d5:52:77:2c:
7b:e4:a4:9c:21:d1:72:58:14:21:9d:20:d1:a4:0a:
a1:d3:5a:f5:06:a6:58:52:49:9e:3d:76:d6:ae:f0:
56:24:57:9d:bd:13:c0:da:01:5b:34:42:61:5c:f8:
9a:85:cd:a4:f0:8e:e1:93:c4:5c:d4:f8:d5:d5:40:
75:7b:61:d1:8a:67:5f:b7:d1:d9:69:8b:be:41:0a:
28:22:5e:17:ea:7a:95:6c:17:aa:1f:32:29:18:f4:
b8:df:48:91:32:b9:9a:c4:f0:e5:ae:ce:73:b0:e5:
8c:40:40:fc:54:6e:61:ca:3e:d1:a5:58:89:19:aa:
d8:65:fe:32:ef:48:75:12:ae:0e:a1:24:6d:2e:f7:
52:43:7a:78:89:1f:b4:16:92:12:24:9a:d4:99:56:
6a:82:e8:28:ab:71:bf:1d:5d:9c:44:29:c9:20:f9:
55:03:b9:d0:3f:46:24:66:9f:8d:c5:2d:44:fd:cc:
c6:46:3c:f3:f1:4f:45:51:28:c0:29:5d:bd:d9:0a:
bb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2E:49:7D:11:3F:B4:26:7D:08:50:A9:62:CF:50:A3:FC:FF:5B:C4
X509v3 Authority Key Identifier:
keyid:CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:44:b1:59:a3:de:94:3c:29:e9:dd:65:d3:ee:dc:8c:d3:fb:
d8:5f:d4:2e:4f:54:d3:01:91:57:b8:1a:d5:d8:a6:36:a6:85:
da:a7:5b:42:67:e1:75:60:ab:22:c4:9c:62:6a:e9:2f:4f:c8:
c5:37:c1:89:57:d5:c8:ad:5f:5b:b7:68:36:27:46:3a:b2:96:
00:f7:77:ce:0e:3f:04:25:00:91:f1:d0:e6:7f:06:1e:5e:de:
9e:0d:8c:32:9b:77:02:9e:d6:22:d6:47:df:2c:04:9d:ce:f8:
b1:b6:35:7c:fb:55:79:98:54:51:70:36:64:d4:e1:64:3f:03:
31:75:ed:b0:dd:46:33:ca:4a:96:4a:2f:ee:4e:da:cb:33:63:
0b:cc:f9:fe:e0:e3:25:83:a1:b7:7e:aa:99:5d:75:36:31:26:
14:ee:38:70:47:cd:52:f6:74:47:85:6f:25:d2:e6:55:2a:b9:
aa:fd:78:d7:bd:c4:99:75:d9:f3:32:79:dd:85:6f:c7:f3:9a:
1c:2e:66:e4:05:7a:0e:92:6f:71:58:3c:66:87:f2:e0:ac:80:
e7:3c:ea:f4:5f:aa:78:7f:73:4f:1b:0d:61:16:f3:2f:c9:92:
b1:3b:f4:95:9e:8b:8f:80:cc:20:c5:75:ef:55:13:ff:18:f3:
23:a0:55:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiice5uBgdbMNlTKlkxg6iQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiZGZjZTNhNTM1NWY4NjFmZGM0OGMzMjAxMmM3OGM5ZGFm
OWE1YTQwHhcNMjUwODEzMDgwMDMyWhcNMjUwODE0MDgwMDMyWjAzMTEwLwYDVQQD
EygzMTJlNDk3ZDExM2ZiNDI2N2QwODUwYTk2MmNmNTBhM2ZjZmY1YmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbH5evqO/0tvUsx1LQwF/37IfeTp
ksEbTJ1uXyt0P/GKJ1HHGRBv0Yi2o72qhlMYnBd5m+Yws9VSdyx75KScIdFyWBQh
nSDRpAqh01r1BqZYUkmePXbWrvBWJFedvRPA2gFbNEJhXPiahc2k8I7hk8Rc1PjV
1UB1e2HRimdft9HZaYu+QQooIl4X6nqVbBeqHzIpGPS430iRMrmaxPDlrs5zsOWM
QED8VG5hyj7RpViJGarYZf4y70h1Eq4OoSRtLvdSQ3p4iR+0FpISJJrUmVZqgugo
q3G/HV2cRCnJIPlVA7nQP0YkZp+NxS1E/czGRjzz8U9FUSjAKV292Qq7GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDEuSX0RP7QmfQhQqWLPUKP8/1vEMB8GA1UdIwQY
MBaAFMvfzjpTVfhh/cSMMgEseMna+aWkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTlfT09sTlYtR0g5eEl3eUFTeDR5ZHI1cGFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi83NGExYjUtM2MyZS00OGUyLTkwZmQt
YjQ5ZDg5ZTMwZGRkLzEveTlfT09sTlYtR0g5eEl3eUFTeDR5ZHI1cGFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi83NGExYjUtM2MyZS00OGUyLTkwZmQtYjQ5ZDg5ZTMwZGRk
LzEveTlfT09sTlYtR0g5eEl3eUFTeDR5ZHI1cGFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALkSxWaPe
lDwp6d1l0+7cjNP72F/ULk9U0wGRV7ga1dimNqaF2qdbQmfhdWCrIsScYmrpL0/I
xTfBiVfVyK1fW7doNidGOrKWAPd3zg4/BCUAkfHQ5n8GHl7eng2MMpt3Ap7WItZH
3ywEnc74sbY1fPtVeZhUUXA2ZNThZD8DMXXtsN1GM8pKlkov7k7ayzNjC8z5/uDj
JYOht36qmV11NjEmFO44cEfNUvZ0R4VvJdLmVSq5qv14173EmXXZ8zJ53YVvx/Oa
HC5m5AV6DpJvcVg8Zofy4KyA5zzq9F+qeH9zTxsNYRbzL8mSsTv0lZ6Lj4DMIMV1
71UT/xjzI6BV0w==
-----END CERTIFICATE-----
Generated at Wed Aug 13 09:44:47 2025 by rpki-client