Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: TB3tQC81LDquCc7cPaPHpRm0Zdu5yoxVbdsuM6lQMUE=
Subject key identifier: 9D:DC:F0:96:FE:F9:0E:04:93:4C:9F:BF:38:24:2D:DF:31:9D:10:DC
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 0199345B67CF4924EA6121113EEAF823096A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 06C9
Signing time: Wed 10 Sep 2025 16:00:29 +0000
Manifest this update: Wed 10 Sep 2025 16:00:29 +0000
Manifest next update: Thu 11 Sep 2025 16:00:29 +0000
Files and hashes: 1: GP-mcsPVfkxFR6BakAdLWMHzvnk.roa (hash: 46Gy5AnSQQR4RzlnLScg9/HmedHrQU8V47NDaOoaI7E=)
2: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: nKHkdNyQ6vJYJRkLEL1oWlGxPQSINt24S1fnyRZp2E8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:5b:67:cf:49:24:ea:61:21:11:3e:ea:f8:23:09:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Sep 10 16:00:29 2025 GMT
Not After : Sep 11 16:00:29 2025 GMT
Subject: CN=9ddcf096fef90e04934c9fbf38242ddf319d10dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5c:42:50:90:a1:7b:29:8c:ed:c4:d0:df:e2:
7a:56:69:43:77:f8:5a:b3:4b:e7:93:06:61:37:76:
a2:ac:ba:be:d8:63:0c:8a:d2:5a:15:d2:7c:e7:45:
8f:93:95:4c:a6:37:7d:6c:93:a2:96:bb:27:dc:8d:
f0:79:e2:7b:8b:fa:88:c5:f3:c8:24:76:a7:6b:41:
6e:10:eb:a9:bf:66:c2:b3:4c:49:ee:b5:00:73:03:
c2:f3:22:29:e9:07:07:cf:5d:e3:0e:c3:6d:0f:ce:
4c:fd:57:e4:d2:b0:25:ff:04:cd:f6:2d:30:8a:74:
4d:3c:c0:03:7e:e5:36:2c:56:b8:b1:0f:02:00:fa:
65:35:a5:91:9c:86:86:eb:73:47:44:6c:b9:03:1a:
d5:1b:84:ff:87:1d:fe:00:cf:5b:6b:d9:1a:f3:93:
23:53:bf:02:bf:12:7a:d0:ab:fc:47:2d:c4:ca:4a:
15:f3:d0:55:37:29:bc:02:0b:0b:4e:57:4c:a0:cf:
c2:20:c1:15:84:85:1b:29:da:fc:34:c9:0b:5f:3f:
bc:19:88:b1:2a:91:72:5f:db:2d:0e:84:5c:64:16:
13:10:89:f1:bc:2a:33:db:05:18:b3:8f:c8:af:d8:
78:29:12:b5:19:33:54:a7:e9:4b:ff:2a:d4:6e:46:
5c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:DC:F0:96:FE:F9:0E:04:93:4C:9F:BF:38:24:2D:DF:31:9D:10:DC
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:1d:eb:0a:3b:cc:37:9d:7e:9b:55:b8:42:53:e2:4e:57:c0:
9c:56:4f:4a:ef:03:1e:d4:4d:23:f8:8e:2e:02:30:8e:74:5c:
46:c0:3c:60:dd:09:d0:27:3e:b6:1d:e1:98:2c:ab:e5:8f:f3:
20:ea:61:f7:40:63:59:34:6e:07:14:02:7a:ef:4b:73:4e:e1:
8f:e7:12:ae:cc:1f:7d:4a:92:69:ca:1d:f9:ec:e7:e1:a3:ed:
27:c4:c8:d8:99:d5:98:f2:a2:51:48:06:fd:a6:ea:9a:ad:a5:
a3:a5:fb:30:5a:e4:41:0a:dd:5b:49:4e:9b:87:2f:2d:f9:7a:
18:01:97:4c:53:2d:ad:af:b3:b1:38:38:85:ab:14:7e:fd:b1:
9d:6f:fa:c2:82:86:98:29:82:8c:32:48:1a:07:88:c6:95:6f:
d4:19:88:b0:eb:2d:e0:e2:5e:a9:51:4a:30:ff:fd:f8:2c:67:
fd:89:cd:1c:82:7a:60:da:db:b2:d6:fe:83:b8:d5:eb:35:37:
78:bc:05:25:62:7b:c9:6d:f3:70:21:30:36:56:29:ca:fc:c1:
a9:b5:fa:a6:29:fc:0c:d2:e3:ef:31:2e:ee:72:3f:c8:8f:0f:
1e:f4:fd:5b:c6:34:c6:0c:e5:34:6e:86:2e:02:68:3b:21:69:
81:96:c8:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 20:56:57 2025 by rpki-client