Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
File: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft (raw, json)
Hash identifier: Vy6MdAXI9m0nYgi/35iLXjIZ6VTmB16B3++mwspKBKg=
Subject key identifier: DF:4A:90:4B:48:07:71:2E:84:D7:49:82:5D:42:47:9A:BF:62:55:EF
Authority key identifier: CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
Certificate issuer: /CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Certificate serial: 0199277C177195ECC93EEB975E037A3EDBA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
Manifest number: 0227
Signing time: Mon 08 Sep 2025 04:01:07 +0000
Manifest this update: Mon 08 Sep 2025 04:01:07 +0000
Manifest next update: Tue 09 Sep 2025 04:01:07 +0000
Files and hashes: 1: E1mhBRMNKUKpYCp6l6cYmmnl_S8.roa (hash: EfpfXPe85LjuFoEfBPlRSotwGgPrWv2BqUA6Yn79Kmg=)
2: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl (hash: EBSyy0NtJzZ6p2s/UV1djiTpgWyTZlnowiVN3ZSTOto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 04:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:27:7c:17:71:95:ec:c9:3e:eb:97:5e:03:7a:3e:db:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Validity
Not Before: Sep 8 04:01:07 2025 GMT
Not After : Sep 9 04:01:07 2025 GMT
Subject: CN=df4a904b4807712e84d749825d42479abf6255ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:61:ef:ce:e7:76:e1:6a:af:9f:ca:67:47:b3:
6c:92:33:69:a1:c9:c2:0a:9a:2f:e3:7d:67:08:30:
03:2d:ba:df:c2:06:e0:d8:26:73:78:3a:9e:4e:24:
eb:77:f0:64:2f:6f:67:59:ae:28:c3:c7:48:fc:ea:
7c:7b:3d:89:e2:9f:f9:84:fa:38:84:f4:f6:45:ad:
2a:1c:21:82:e6:75:43:9b:50:20:9d:4e:c1:fd:5c:
95:cb:70:29:85:88:5d:8f:c4:7d:c3:ef:9c:41:46:
c4:6c:82:b4:c9:0f:b8:ac:ab:ba:c6:32:da:5c:89:
ec:4c:13:ba:c1:6c:61:bd:47:a0:30:dc:b7:b2:75:
a8:7a:2f:e4:5b:63:44:93:3a:9d:af:9c:ab:44:f3:
73:f9:ee:08:8e:0b:d8:83:44:d4:3d:42:9a:5d:36:
4e:a9:a1:a5:c6:91:b2:28:04:52:9a:1d:94:6a:70:
4d:7f:f3:be:7a:33:3d:f0:b1:ba:c9:1a:17:26:48:
34:48:57:ee:19:f8:67:7c:72:cf:63:9c:01:ed:f4:
0a:e1:a7:d7:56:cf:a1:d6:6c:06:94:3a:93:21:54:
a8:fb:b6:60:b7:37:d0:e2:48:8d:ce:d0:78:c7:09:
f3:0c:2e:31:71:cd:32:19:ee:c8:0c:a7:be:72:58:
da:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:4A:90:4B:48:07:71:2E:84:D7:49:82:5D:42:47:9A:BF:62:55:EF
X509v3 Authority Key Identifier:
keyid:CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:07:48:d0:ed:34:b5:2b:5a:9d:e2:9c:12:13:43:14:82:dd:
f5:1b:2d:3e:60:89:89:41:73:6a:9e:b1:75:02:e6:5f:03:b3:
55:44:16:b5:88:89:bb:27:e6:7d:fb:31:74:77:5e:26:6a:d7:
fa:da:7d:d1:9b:e2:ce:2f:9b:b0:03:9f:c6:cc:bd:07:c3:5c:
03:6f:b3:79:70:de:da:81:1f:67:10:33:df:da:12:bc:9e:ce:
b8:9c:12:c1:67:0b:d9:31:62:81:ce:c2:39:46:b4:99:7c:4d:
84:39:97:f7:df:42:75:14:2b:6d:05:e0:02:78:6e:74:fc:4d:
1f:b3:a5:33:57:2e:6b:08:cc:21:ad:4d:6a:3a:a5:96:e2:8d:
e0:c6:f5:5e:d8:36:73:e7:7e:53:0c:19:8e:f5:c2:b5:ce:dc:
c2:b6:06:f8:54:de:d6:5e:5a:59:da:56:f9:b3:f2:0f:4f:75:
98:90:2f:bf:c9:c3:80:cf:f0:32:cf:80:63:06:ab:f6:89:2a:
06:ac:d7:b5:16:d5:34:db:d8:4b:af:78:c7:dc:93:63:be:77:
a9:f7:6e:95:ae:cb:a4:f7:9f:5b:87:07:e4:87:28:48:f0:1f:
19:8b:f2:38:8f:4e:41:62:79:3e:8d:c7:38:5d:3c:a4:c0:91:
c0:cf:f3:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 13:13:18 2025 by rpki-client