Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: k8o+o5YiMnnhHh9ueIYfwASpyCxDaLSLdg8fFP4oHYA=
Subject key identifier: 6E:EC:70:0E:7E:86:73:92:4A:99:D8:37:93:24:FB:E7:19:E0:C7:EE
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 019A23D3370A21CAA3B5164EC46E8DA2FDD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 0745
Signing time: Mon 27 Oct 2025 04:00:36 +0000
Manifest this update: Mon 27 Oct 2025 04:00:36 +0000
Manifest next update: Tue 28 Oct 2025 04:00:36 +0000
Files and hashes: 1: GP-mcsPVfkxFR6BakAdLWMHzvnk.roa (hash: 46Gy5AnSQQR4RzlnLScg9/HmedHrQU8V47NDaOoaI7E=)
2: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: ZXKS26dz1mp3qjKnsX2GGZaiFsVVS1yGUxXALizlW/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:d3:37:0a:21:ca:a3:b5:16:4e:c4:6e:8d:a2:fd:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Oct 27 04:00:36 2025 GMT
Not After : Oct 28 04:00:36 2025 GMT
Subject: CN=6eec700e7e8673924a99d8379324fbe719e0c7ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:49:4d:a1:77:a4:25:f0:e4:31:29:b5:a8:c1:
48:9e:01:d2:36:85:7f:b1:c7:f2:27:a7:ec:15:74:
d9:64:a6:9b:15:9b:14:de:60:ed:d0:2b:44:48:4d:
5b:43:1e:05:2f:d4:6b:c0:54:c9:e1:9c:01:c5:67:
3a:5e:e1:f8:be:9a:4e:ed:08:14:38:d8:6f:52:4f:
24:7b:3a:0a:13:8d:87:79:24:00:98:ce:ae:c0:c4:
47:40:b5:c2:d4:34:28:a9:68:91:a4:85:12:d5:b5:
54:05:e3:00:3e:3d:df:8d:0f:51:80:1f:38:d6:c5:
b4:17:1f:bb:a7:c6:90:20:ea:7f:c1:38:c7:63:8c:
fc:50:ab:72:e4:a8:74:fb:7c:a9:20:35:c0:45:8f:
a9:2e:3b:ce:80:f9:bd:b1:96:13:1c:c9:80:cb:39:
d9:39:38:1b:d0:7b:25:94:95:54:bd:e0:f1:f7:11:
3b:18:b8:1b:7f:d6:19:60:32:f6:f1:90:5b:25:a2:
47:ff:06:c8:5f:84:8b:bf:93:54:d3:5c:69:c1:f5:
4f:51:90:73:14:43:f7:43:04:7c:d8:09:23:38:99:
41:16:54:33:4f:b1:7e:48:76:98:ab:94:71:4f:ba:
82:3a:46:02:f0:a1:05:21:8c:d7:67:43:ef:8a:61:
4d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:EC:70:0E:7E:86:73:92:4A:99:D8:37:93:24:FB:E7:19:E0:C7:EE
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:fe:16:5e:fc:04:f0:3c:fc:25:5d:ec:51:68:f1:91:42:96:
b4:ea:40:d1:6f:1b:df:2c:26:b5:04:7e:c7:f0:74:84:c1:0c:
04:b4:dc:0d:e3:30:c4:9e:5a:e4:41:6d:9a:c1:ad:f9:15:40:
0c:40:28:ad:e2:bc:16:53:f9:00:d1:35:df:16:23:84:95:c8:
04:0f:3b:d5:35:36:12:38:e4:23:95:b4:aa:da:81:a0:3a:c4:
f1:51:87:91:bc:53:96:58:a7:87:7c:3f:6c:0b:b8:78:07:4d:
c3:44:be:76:d7:55:b9:98:e8:05:ab:c2:3b:5d:79:a3:5f:61:
98:fd:f7:fa:4c:f3:22:8b:47:a1:5e:39:d7:3a:01:80:13:7d:
65:3d:77:a4:da:4b:bc:85:28:5a:30:bb:e5:79:2e:04:9a:20:
87:cb:bf:dc:69:ab:c2:59:3f:55:1f:68:c6:f3:6c:f3:69:57:
b3:41:b3:47:18:df:8c:13:5b:56:27:73:f3:bb:80:db:86:32:
de:4d:3e:8b:62:b1:09:04:7a:13:e8:c8:fc:2e:f3:fe:b8:80:
f1:4c:27:a9:71:47:cb:de:73:97:e9:39:3b:1a:e6:dd:5b:d0:
0c:be:88:f2:f6:39:d6:c6:fd:2e:5e:a4:2a:1d:ab:13:32:45:
39:b4:b3:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 11:58:55 2025 by rpki-client