Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft
File: y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft (raw, json)
Hash identifier: 7d02W45Zy/mR/W1nEKo9FtCO8KBD4AHSOyGuW66k9dk=
Subject key identifier: 35:25:F7:5E:00:51:93:54:64:96:65:13:49:70:FB:87:87:82:4F:AD
Authority key identifier: CB:DC:25:EA:3A:0A:72:9E:D8:E6:E9:A7:3D:A8:96:D8:4F:95:43:9C
Certificate issuer: /CN=cbdc25ea3a0a729ed8e6e9a73da896d84f95439c
Certificate serial: 0198345E0C68F0EC1834AFB5C616297FEF55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9wl6joKcp7Y5umnPaiW2E-VQ5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft
Manifest number: 164F
Signing time: Tue 22 Jul 2025 23:00:35 +0000
Manifest this update: Tue 22 Jul 2025 23:00:35 +0000
Manifest next update: Wed 23 Jul 2025 23:00:35 +0000
Files and hashes: 1: 46nBDvj667zfOAp042BssRV0tGo.roa (hash: ijvMinyi7MX0fq0QyRdi2Vr4DZ+zPLFltRyx4COFtiw=)
2: y9wl6joKcp7Y5umnPaiW2E-VQ5w.crl (hash: M9JccjTppkKePMgF3Zl/LLfB4e7fj2zOJgjBIc1UsKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9wl6joKcp7Y5umnPaiW2E-VQ5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Jul 2025 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:34:5e:0c:68:f0:ec:18:34:af:b5:c6:16:29:7f:ef:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbdc25ea3a0a729ed8e6e9a73da896d84f95439c
Validity
Not Before: Jul 22 23:00:35 2025 GMT
Not After : Jul 23 23:00:35 2025 GMT
Subject: CN=3525f75e00519354649665134970fb8787824fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5d:e7:32:60:b8:b1:1c:bd:e4:22:eb:2b:1e:
7a:7f:b5:d9:0b:4b:37:7b:44:20:39:1c:bc:d8:73:
e9:d6:95:f7:9d:7a:38:e0:3b:78:2f:d6:67:11:89:
74:b9:df:15:a7:29:76:2d:f8:ec:78:d7:06:5a:e9:
70:b2:55:e3:2a:97:52:5a:e4:f6:d4:71:98:f7:b0:
bc:e6:7f:6c:f2:20:73:33:49:6e:80:63:45:21:26:
24:e0:af:35:19:0e:79:4e:e0:37:f6:79:57:86:1a:
a1:7b:4d:7e:6d:e8:d8:ba:1a:97:5f:ba:84:f1:45:
45:4e:cc:dc:c3:65:88:70:ac:16:e7:b1:c1:e3:b5:
86:14:82:0d:65:c2:99:76:3a:fb:e6:73:0c:20:2c:
26:ae:a1:b0:8e:1b:be:8a:0e:3b:88:f4:83:dc:4a:
d8:7c:12:9e:5a:17:fb:89:72:50:84:b3:31:9a:68:
50:d5:2b:bb:5a:0c:da:32:e9:91:f4:2f:23:0a:59:
86:ab:83:ea:11:ca:04:4c:d3:40:85:34:2f:e8:f9:
2b:d8:b0:4c:42:91:a2:77:47:60:d6:dd:ce:48:eb:
8a:a8:7f:6c:2e:16:44:91:87:b6:0a:b4:0a:a4:9d:
a6:f3:7b:81:6c:4b:52:3e:1b:c8:57:02:e9:1e:e8:
07:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:25:F7:5E:00:51:93:54:64:96:65:13:49:70:FB:87:87:82:4F:AD
X509v3 Authority Key Identifier:
keyid:CB:DC:25:EA:3A:0A:72:9E:D8:E6:E9:A7:3D:A8:96:D8:4F:95:43:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9wl6joKcp7Y5umnPaiW2E-VQ5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:e7:fd:af:57:b5:57:c9:c1:5c:de:62:5d:5b:f1:bf:78:ee:
b5:cd:99:3d:5d:18:16:16:9a:67:c4:e7:20:39:ee:5c:dd:c0:
ac:8b:11:4f:5c:4b:15:6d:eb:12:2d:3f:37:5e:7e:b1:88:ca:
58:ba:2b:f8:8c:3b:d5:da:7c:41:75:fb:ee:86:34:3a:12:d8:
2b:dd:6f:9d:3c:21:3b:a2:b5:ee:07:11:f6:93:4a:ff:bc:54:
d9:98:fa:1c:b5:f6:4e:c5:bb:90:1d:19:2f:32:09:57:76:3e:
cd:f4:62:94:47:c1:ce:fb:6e:ef:01:01:3c:80:0e:de:83:41:
08:30:34:4e:42:76:98:a7:20:17:a3:38:06:01:16:e6:d8:f4:
50:6a:19:15:a5:6f:db:01:dd:e8:7d:0d:56:14:da:fb:e7:47:
2c:36:19:4e:8e:ce:23:12:5d:3d:74:3f:fa:95:fc:db:6a:32:
5a:6b:fa:8e:1c:a1:30:2e:3d:75:f7:23:7b:e5:30:3a:d3:47:
6f:9e:99:c4:7c:d7:36:5f:21:e5:0d:d0:3b:d0:94:02:1e:cd:
38:df:7e:e7:24:ae:11:10:3f:2b:45:f3:79:fd:3b:72:8b:1f:
33:79:02:2e:40:4c:c0:17:bc:74:1d:49:af:65:29:ee:f6:06:
7b:0d:00:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:16:09 2025 by rpki-client