Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
File: y9dX6ROqzkNObdbW1Qp-33LOiIw.mft (raw, json)
Hash identifier: TLpH+DpPclGzbLfoDafDp/IhScAZGSeLEdcUPuAzHbY=
Subject key identifier: 6F:E9:61:37:54:7D:B8:20:A1:04:89:B4:DF:51:8F:18:9C:0E:54:10
Authority key identifier: CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C
Certificate issuer: /CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c
Certificate serial: 0199228D20E497A601E89BDCF343B0E04A8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
Manifest number: 103E
Signing time: Sun 07 Sep 2025 05:01:38 +0000
Manifest this update: Sun 07 Sep 2025 05:01:38 +0000
Manifest next update: Mon 08 Sep 2025 05:01:38 +0000
Files and hashes: 1: xXYCNUnm-3UsiS0Y2j4IJt8GJmU.roa (hash: kfa/1BPOG2GKMxXo/zgSWZ2DSaf3+pCaWIgYdprI0TU=)
2: y9dX6ROqzkNObdbW1Qp-33LOiIw.crl (hash: TFqYaHwikVuJUPtSg+24DtNhEecQ9euoTfAB91BLWfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:20:e4:97:a6:01:e8:9b:dc:f3:43:b0:e0:4a:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c
Validity
Not Before: Sep 7 05:01:38 2025 GMT
Not After : Sep 8 05:01:38 2025 GMT
Subject: CN=6fe96137547db820a10489b4df518f189c0e5410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:30:92:13:2a:40:06:b7:20:54:4a:ed:4f:24:
58:69:ba:51:15:d8:9d:29:52:ed:22:59:d7:54:34:
27:25:79:8c:34:70:a8:f6:e1:7f:77:2d:80:44:4b:
52:96:8d:3d:92:24:dc:07:e2:5e:18:9c:d0:cb:fd:
ad:50:59:b0:c0:19:7c:ab:3c:96:1f:3b:0a:12:02:
e3:1f:c5:f7:4c:ab:61:89:bc:9f:63:c9:01:6f:88:
2f:e8:0f:de:a5:04:28:eb:36:68:82:f9:05:31:4e:
f0:e7:ce:4b:35:b9:11:a5:fe:65:94:95:cd:d9:2f:
f9:4a:fa:12:ed:c6:3d:bd:d1:53:50:57:d9:fb:9a:
70:41:b8:06:7a:2b:64:45:3d:dc:4e:17:89:26:2a:
44:e0:50:75:43:a3:1c:2d:7b:d3:ae:ae:9e:88:f3:
fc:86:5d:1b:9e:4e:a5:3c:fd:40:e3:14:41:49:49:
4a:9e:03:fc:a1:d9:31:ca:f0:e9:a0:7e:e6:b6:1f:
67:ff:57:58:f2:da:6e:ae:f9:5b:af:f6:f3:93:15:
ac:16:0f:44:7e:df:63:29:d4:50:12:ec:03:3f:b2:
b5:53:b7:7a:bf:ff:5e:52:c5:55:a1:83:4f:b1:ed:
52:bb:03:61:74:39:99:a7:65:e5:09:d0:cb:ef:9b:
e5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E9:61:37:54:7D:B8:20:A1:04:89:B4:DF:51:8F:18:9C:0E:54:10
X509v3 Authority Key Identifier:
keyid:CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:0b:ab:2d:af:79:f0:7e:31:e0:27:0b:82:df:86:7e:95:d1:
e0:5c:1c:0f:bc:c6:ec:44:8d:b4:0f:9b:1b:37:98:32:9d:ad:
8c:f6:77:fe:c7:64:c9:ed:b2:29:24:c2:67:75:1d:fc:f1:af:
a3:6d:83:ea:88:9a:91:89:f6:ba:95:3d:d7:18:93:b2:a1:bc:
a0:31:34:bd:49:01:19:ea:62:6c:4c:ec:c9:de:7c:11:4c:94:
02:9f:ad:5d:0b:ef:f1:9b:ae:20:26:51:ad:7c:cf:2a:72:23:
3b:16:f4:52:61:ab:b4:8b:70:aa:74:25:3e:30:e9:1b:0b:b4:
6f:c1:91:83:33:10:7b:f6:a4:0a:d0:af:70:9b:20:93:e2:89:
f9:0e:a8:dc:c2:eb:fd:60:6a:9b:1a:1c:fd:a1:7f:a7:a9:9f:
b4:d9:fc:8c:08:64:f8:66:9d:1a:1e:fe:e2:2d:04:c6:2d:80:
c7:0a:02:de:df:fb:6d:3c:a4:5d:ed:19:6d:06:4c:06:8c:0f:
00:2b:74:7c:43:5e:7a:4a:a0:df:b2:28:a1:ad:10:f1:c8:9a:
16:97:af:a2:45:3a:90:ad:4b:50:c3:05:57:d1:e3:ef:3e:53:
8f:f1:8d:44:1e:a9:07:4a:ef:c9:71:fa:8e:63:23:5f:6f:d8:
a6:76:e2:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:18:41 2025 by rpki-client