Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
File: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft (raw, json)
Hash identifier: TKbNm5jAqGhD9zBdYyfEuNN2kKtLac2m7cAkJmqBh6k=
Subject key identifier: CE:83:73:7F:33:FC:95:26:30:C1:D6:7E:1A:4A:76:4F:66:43:BA:3F
Authority key identifier: 63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
Certificate issuer: /CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Certificate serial: 019936F074650B3307B51BF5457DC2D37676
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
Manifest number: 09B1
Signing time: Thu 11 Sep 2025 04:02:32 +0000
Manifest this update: Thu 11 Sep 2025 04:02:32 +0000
Manifest next update: Fri 12 Sep 2025 04:02:32 +0000
Files and hashes: 1: RiW5W8SWQ6-vverb8NRdVDj6CjU.roa (hash: 4IAwVod5pwysrRco/iSy8Lzx8KDdHZ/Q8/hyLLW5E4w=)
2: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl (hash: LTtQhAyfjiPV0XglobvPwIvYbhQPHCzXwpspqumxyEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 04:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:f0:74:65:0b:33:07:b5:1b:f5:45:7d:c2:d3:76:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Validity
Not Before: Sep 11 04:02:32 2025 GMT
Not After : Sep 12 04:02:32 2025 GMT
Subject: CN=ce83737f33fc952630c1d67e1a4a764f6643ba3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e5:cf:ea:9f:23:f3:0c:46:c1:76:5b:98:2b:
4f:1b:61:31:24:6f:a9:be:a7:33:aa:ea:57:e6:02:
dd:37:d7:e1:c3:0c:88:70:24:65:40:2a:87:c2:d6:
2b:dc:be:f9:ab:b7:4a:2f:c4:fc:58:c0:e9:c9:63:
cb:db:7d:f2:11:7f:35:b1:34:6c:13:e9:df:9b:a2:
d7:73:74:a7:ed:86:d1:dc:1c:6b:c9:8f:fc:0c:bb:
87:02:d8:46:c4:0a:1a:8e:79:dd:35:e7:0d:b0:85:
76:8f:1b:6e:42:b2:6d:8d:f7:41:b2:5f:56:c3:c0:
53:b0:02:c5:28:67:c4:b4:c0:86:60:29:f8:6a:5f:
58:a5:78:c0:3c:63:14:c5:4d:b4:05:42:a3:b9:e9:
f1:e2:80:2c:5e:a1:ec:58:3d:08:d1:b5:ff:b5:e0:
d4:04:20:74:c0:35:e1:f9:db:81:53:e2:1e:ef:21:
20:ac:f6:ea:f9:fa:9d:d3:95:a5:0f:53:af:f1:b9:
31:02:7f:b3:88:be:9d:94:1a:e0:09:3d:c1:95:10:
9b:39:ea:51:28:c9:df:db:c6:2d:8c:a5:0b:77:d3:
99:40:40:6a:4f:65:e5:12:ef:44:a2:0b:fc:ff:d1:
b8:9b:d9:0b:c4:91:49:2a:c2:60:76:b7:31:7a:93:
8c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:83:73:7F:33:FC:95:26:30:C1:D6:7E:1A:4A:76:4F:66:43:BA:3F
X509v3 Authority Key Identifier:
keyid:63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:f4:45:92:6a:8f:20:75:20:90:b1:bb:f9:59:e7:c8:ac:1d:
b2:87:3a:05:bc:c5:55:eb:55:8e:01:f3:1a:62:1d:8f:42:40:
6e:f3:62:62:95:56:c6:c0:8b:bc:fa:ce:c3:0a:6b:6b:da:51:
24:09:5e:6b:78:44:4d:91:ed:40:b6:12:c6:37:34:97:90:08:
31:49:e3:46:11:5a:9f:1a:b2:74:68:ff:d9:a8:6c:3c:02:fb:
d9:5d:11:77:5f:6e:6f:83:5f:3e:bb:10:55:c4:8b:71:38:52:
f0:b7:0a:e5:fa:2c:a9:3a:af:79:ec:67:d2:b4:31:00:2a:5b:
87:2a:85:d5:13:9f:94:5f:88:8f:57:fe:34:1c:64:4e:00:4c:
2f:bf:41:a5:d0:25:c0:e2:fc:32:06:f4:07:f2:1b:d1:15:df:
85:01:f0:1e:23:28:f5:44:b5:27:3d:97:49:0c:3b:41:be:53:
2d:e6:be:3f:f7:a0:32:f4:11:cc:3c:96:4d:fb:50:e0:64:8c:
20:af:4d:83:ff:7f:bb:05:f4:de:a3:6c:29:33:71:c5:7b:05:
85:bf:c8:bd:62:c8:de:df:b3:ea:75:52:38:18:1a:db:41:50:
5f:77:2f:35:6a:73:0f:1a:05:c8:2e:4b:36:b1:43:fe:d2:1c:
bf:73:61:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 11:42:10 2025 by rpki-client