Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
File: Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft (raw, json)
Hash identifier: pLDa8vlr9DTdUDlB+KyrvRivBWBTAIBdtTpVOpY044I=
Subject key identifier: C1:9C:5C:B7:80:E0:3A:10:13:83:F1:DF:11:BD:25:26:D5:0E:93:6E
Authority key identifier: 63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7
Certificate issuer: /CN=6359a649b036103e80a3ce8f3d1b0138a60581d7
Certificate serial: 0199221EC2BF21827FB105E7691392897B92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
Manifest number: 0A81
Signing time: Sun 07 Sep 2025 03:01:05 +0000
Manifest this update: Sun 07 Sep 2025 03:01:05 +0000
Manifest next update: Mon 08 Sep 2025 03:01:05 +0000
Files and hashes: 1: X6ZYSC-zk_X-vkVmhmsDz5ImQYg.roa (hash: ejdwRSw1lilKiCxqAuj8PMfvm39/1GCNMitYFT+EINw=)
2: Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl (hash: tju/s1lXNOP92ksEO4KfmoT7gbUyKZPefv245j1abLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:c2:bf:21:82:7f:b1:05:e7:69:13:92:89:7b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6359a649b036103e80a3ce8f3d1b0138a60581d7
Validity
Not Before: Sep 7 03:01:05 2025 GMT
Not After : Sep 8 03:01:05 2025 GMT
Subject: CN=c19c5cb780e03a101383f1df11bd2526d50e936e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:07:16:2d:e0:07:bf:37:a4:85:ec:26:02:e2:
bf:38:0e:ef:35:e8:68:12:be:0c:c9:ee:eb:36:75:
6e:6d:1e:a9:f4:33:a5:7a:08:d4:55:94:ff:29:a8:
8e:9c:34:2a:1b:25:5e:e9:70:e2:22:f9:55:3a:0a:
c2:37:de:32:c2:09:62:a5:25:3e:69:2b:2f:cb:d3:
6a:54:9b:06:62:bd:0c:02:62:a0:7b:63:48:ad:2e:
82:e8:ca:b8:46:21:88:75:c3:31:44:40:75:1d:fd:
27:03:04:67:3d:d7:75:47:c6:ea:fe:cf:e5:c3:f0:
79:bf:64:4f:b8:b2:ce:56:47:41:e6:2a:df:ec:ad:
d2:c7:b1:ed:93:4a:a2:f1:28:76:a9:15:a6:36:e2:
05:e0:5e:ab:0c:d7:4c:3d:01:1d:0d:37:d4:b9:e3:
33:cb:dd:46:55:8d:4b:75:e6:61:b3:3f:15:3b:b7:
e5:d2:d7:23:ee:35:39:5b:41:26:b5:ea:77:21:e3:
ba:6a:34:d3:12:2a:3e:c3:2d:39:8a:20:87:2a:da:
e3:f3:df:c7:3f:29:b3:b4:6d:b7:88:a4:f5:9e:74:
fe:c9:c6:55:91:70:2f:9f:2a:6c:89:62:ce:1f:61:
97:5b:03:d3:c5:12:fc:0b:8f:5f:c0:ae:de:2a:8e:
44:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:9C:5C:B7:80:E0:3A:10:13:83:F1:DF:11:BD:25:26:D5:0E:93:6E
X509v3 Authority Key Identifier:
keyid:63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:3f:54:55:62:17:f4:83:3f:0d:f2:59:5b:03:84:64:e4:98:
b7:65:ec:71:65:e5:3d:55:bf:01:e8:a2:2b:f9:ca:08:53:20:
2f:3c:dc:16:e3:e5:73:5b:a5:44:81:24:50:c7:9b:24:5a:0f:
d8:e2:82:0f:af:aa:35:f2:aa:68:a2:c0:d3:86:90:42:87:98:
d7:63:cc:c5:49:23:e3:d4:d5:d6:cb:8a:2c:0d:a1:2a:a8:66:
b9:7d:73:4a:a7:41:11:ed:79:9a:b9:03:a4:b3:fe:be:ee:2e:
16:04:2a:1a:4a:fc:06:d1:3d:3c:37:2b:13:ed:78:e4:b4:f8:
d7:54:db:40:a8:db:19:22:41:c8:5d:ae:80:14:95:a0:21:51:
78:e5:44:97:8a:30:48:08:a5:11:b4:74:b4:0b:3b:08:c5:bf:
85:b1:5b:ff:95:a1:76:31:67:97:26:8a:6e:ac:43:83:05:05:
9c:4b:08:74:cb:71:aa:6a:1d:38:55:3b:47:55:08:fe:8c:e4:
52:bf:8d:cd:b6:ba:d9:23:53:1a:32:ba:f0:cd:10:ab:a2:59:
0b:46:02:cb:57:66:3f:6c:40:b1:2c:8e:3b:86:9c:2e:b8:ca:
73:3e:f6:2b:ab:a9:a4:c4:0e:2a:e9:5a:f7:80:7a:a1:80:a9:
31:43:6f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:13:26 2025 by rpki-client