Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft
File: Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft (raw, json)
Hash identifier: 4e5k5w3GQzvNzPGCpQti5rbdr4YBIJ4CCgBkvV+JmvE=
Subject key identifier: ED:C0:F9:E9:8D:5A:16:09:C1:58:E2:6C:AB:91:50:6D:90:37:C9:63
Authority key identifier: 63:C3:44:55:C0:D4:E4:FC:3B:A2:F1:C4:6F:08:B4:75:C8:F6:D9:80
Certificate issuer: /CN=63c34455c0d4e4fc3ba2f1c46f08b475c8f6d980
Certificate serial: 019853448DACD2135A7B658484D5805FF4F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft
Manifest number: 0C8A
Signing time: Mon 28 Jul 2025 23:00:58 +0000
Manifest this update: Mon 28 Jul 2025 23:00:58 +0000
Manifest next update: Tue 29 Jul 2025 23:00:58 +0000
Files and hashes: 1: 1c8AtbAMfHlASe1nRmNmVLi-IPE.roa (hash: Yc6B/ACFRjBHZdeDucnbU591dd3oO9WG4VeSfIdJAWg=)
2: B-YGSnw6mlzmsy9e1WdnYiYl8uA.roa (hash: dqAKP/dgHYPVRyqQIAqMlRLtWiN+IpM+mjudxWdaulM=)
3: Y8NEVcDU5Pw7ovHEbwi0dcj22YA.crl (hash: aMUItcm6JJSMeyYW2C3wdrJz48A0nxMTsA60JPQR8OU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:44:8d:ac:d2:13:5a:7b:65:84:84:d5:80:5f:f4:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63c34455c0d4e4fc3ba2f1c46f08b475c8f6d980
Validity
Not Before: Jul 28 23:00:58 2025 GMT
Not After : Jul 29 23:00:58 2025 GMT
Subject: CN=edc0f9e98d5a1609c158e26cab91506d9037c963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ab:91:68:d5:3f:c0:3e:fb:78:48:54:ca:12:
73:5d:51:02:1c:f0:4f:0d:ef:d5:9a:b8:87:80:cd:
00:d2:46:69:71:7a:1f:b1:da:f9:ab:80:6d:5a:04:
28:8b:34:59:30:a1:cb:a7:7e:d1:7d:f5:26:8a:c1:
be:5d:ff:55:b7:71:0a:a6:9d:d5:03:e3:c3:8c:69:
6a:06:4f:63:5d:84:7c:c0:20:96:72:f2:67:2e:13:
07:45:42:e9:c4:fc:13:b4:51:65:f3:9d:6d:36:4c:
93:b4:e9:eb:8f:43:66:b3:37:5c:01:97:72:4c:b0:
45:64:8c:86:31:75:65:79:22:45:7b:ec:e7:0c:99:
db:d1:ed:fe:d5:73:e7:a8:b5:99:2e:80:43:00:d4:
74:f3:ae:82:97:a1:90:f6:87:9b:81:f1:ad:75:9a:
76:51:fb:12:09:86:5f:81:8b:94:97:25:f2:a0:2b:
31:77:f7:43:2f:b8:2d:3f:93:16:dd:ed:42:20:f5:
8b:d2:70:6b:72:65:6f:83:f8:9b:20:85:e9:0e:fe:
dd:5f:41:ba:c9:bc:ab:49:3c:a9:3b:48:48:db:e2:
c5:1c:0d:f3:ff:63:1e:ff:e7:43:76:4e:e4:98:d4:
e4:73:8f:e3:19:64:ab:fb:d5:18:b0:80:d4:24:b2:
ee:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C0:F9:E9:8D:5A:16:09:C1:58:E2:6C:AB:91:50:6D:90:37:C9:63
X509v3 Authority Key Identifier:
keyid:63:C3:44:55:C0:D4:E4:FC:3B:A2:F1:C4:6F:08:B4:75:C8:F6:D9:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/35656a-066e-49df-b709-7bfcd7e94b9e/1/Y8NEVcDU5Pw7ovHEbwi0dcj22YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:77:f8:ee:07:4d:73:5b:c9:70:77:46:73:d1:15:d6:8d:81:
23:19:3a:e8:c8:8a:9f:1d:5f:c9:34:e1:22:fe:15:8d:60:c6:
ff:52:bb:90:cb:2b:82:eb:12:27:11:45:aa:70:56:86:cb:ee:
07:0c:09:75:f9:1a:0b:4d:e0:be:72:8c:b4:b4:b5:d1:dd:3b:
29:23:13:95:56:82:ab:d1:b7:94:11:3e:3c:e2:5a:d1:da:df:
e2:6f:8c:4f:2a:cf:90:18:57:31:02:1f:a2:03:ce:4d:2d:31:
fa:fc:b7:95:e8:67:9a:e1:78:d2:10:b6:3d:1c:15:eb:b8:0d:
40:23:93:43:06:4c:2f:93:db:04:72:75:55:5d:e2:bd:7b:01:
e2:30:5d:cf:b8:d3:8c:21:d3:a3:9c:61:81:63:e7:18:2b:b0:
b2:53:c2:d9:e1:0d:60:ce:e1:ac:0a:a6:69:50:b4:0a:f8:e4:
57:fd:7d:4c:44:67:04:bc:26:3c:b8:48:e9:7e:b8:19:0a:cb:
a3:21:11:98:6d:2e:4d:ef:f4:6d:c4:d7:4b:56:16:86:3e:b9:
72:bd:52:ce:c8:89:f0:bc:32:0b:ce:19:5f:70:85:eb:32:50:
b5:58:5d:9a:ed:64:a3:17:af:e6:a5:cc:bf:d9:af:ce:a2:be:
05:de:86:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 08:48:02 2025 by rpki-client