Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json)
Hash identifier: Vmid/akT8dIJQ1+h2LbpzAzcWK5RjQdYKMSVojeXlRs=
Subject key identifier: 7F:BB:AC:9A:B7:49:D6:37:C6:56:9F:2A:FC:FD:28:87:9F:47:33:BC
Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Certificate serial: 0199240D53BE0D3ED511A8DAA4D5C23A5C90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 12:01:17 +0000
Manifest this update: Sun 07 Sep 2025 12:01:17 +0000
Manifest next update: Mon 08 Sep 2025 12:01:17 +0000
Files and hashes: 1: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: u6seteoJnPB97klg3YKreKlviMOooS87JSuf6Q+cKPE=)
2: ZmJk3i0UqR_uJ_XLaSjGUe2aH00.roa (hash: BCwdh7j1ZUyJ+mVEfLtfrzwX+n9rg9YN807VJjPHsUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:53:be:0d:3e:d5:11:a8:da:a4:d5:c2:3a:5c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Validity
Not Before: Sep 7 12:01:17 2025 GMT
Not After : Sep 8 12:01:17 2025 GMT
Subject: CN=7fbbac9ab749d637c6569f2afcfd28879f4733bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:20:e9:73:69:a0:05:af:97:cb:df:4e:c9:60:
5b:11:29:08:0f:d3:a6:25:92:08:04:5e:ba:38:15:
99:61:4f:eb:0f:83:aa:54:aa:12:98:56:77:71:47:
20:e6:e4:29:1b:a8:c5:ef:7a:00:88:5d:31:f5:45:
5e:b8:1e:73:ad:43:b6:79:9f:b0:ba:3f:e3:ed:f2:
5a:ee:9e:25:c4:e6:2a:e0:67:47:53:09:e3:ef:b9:
ea:ad:63:6b:82:44:11:15:71:1b:b3:61:29:0d:29:
4f:5b:3c:73:69:9b:e6:f1:1f:db:a6:a1:37:25:32:
d8:d4:08:83:78:86:52:ae:99:35:c5:61:f6:c1:52:
a6:d4:e0:4d:88:f0:fc:f5:4b:b8:31:b1:bc:03:fa:
ce:ed:9a:26:e9:6e:6d:33:de:98:b9:50:6d:94:59:
5a:49:62:e4:38:d7:4b:51:f2:7d:b8:52:41:76:3e:
39:89:b7:ca:df:8e:f9:fa:c8:cc:61:96:c9:d0:ad:
d3:10:6e:a5:d4:c7:4c:42:42:93:37:14:98:1f:62:
b4:08:ad:f8:ac:91:61:84:0e:76:b4:04:36:cd:fa:
da:b7:1a:ad:9d:a5:48:3a:75:f1:18:b3:7c:f6:e1:
9c:0e:a2:6d:b2:f5:2e:b1:5b:74:1f:8e:0b:03:de:
14:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:BB:AC:9A:B7:49:D6:37:C6:56:9F:2A:FC:FD:28:87:9F:47:33:BC
X509v3 Authority Key Identifier:
keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:2f:df:05:ef:7d:49:ce:67:df:87:f3:b6:37:35:21:f2:1f:
e9:30:15:d1:6d:a2:01:37:d2:8b:1f:12:82:c5:dc:4e:48:08:
e4:25:46:3a:fb:48:9e:01:81:6a:46:5d:10:69:b8:40:4c:85:
35:e1:b2:39:86:de:dc:1d:2a:78:40:12:f7:d1:cf:e1:ed:9d:
f7:14:9a:0d:f3:55:17:f3:e8:dc:4f:3c:e1:a6:e8:7f:8d:e9:
55:a7:f2:ec:c1:76:5d:01:32:82:96:63:ca:3f:d4:22:c4:d0:
15:6b:77:c2:01:48:cc:bd:a3:c0:2d:74:7c:7b:e1:f4:e1:a9:
c3:68:c4:e2:3f:d6:88:65:80:b4:fb:8d:ef:d5:00:3e:94:e7:
66:b3:4e:fc:00:a0:ed:c8:ca:b1:27:48:a2:34:14:4d:e9:77:
47:5a:60:08:28:d8:2e:72:fb:64:c6:67:74:61:fb:dc:8c:bf:
a5:bf:4e:22:e0:30:83:47:25:98:e5:5d:21:7b:01:b1:de:25:
37:16:66:83:7f:de:57:e6:2d:9a:a4:80:98:f9:38:12:5e:50:
5d:e2:06:f1:40:b8:af:82:04:a2:33:32:95:50:f2:ef:f4:f8:
da:a9:bc:c9:9c:ad:d8:90:4a:eb:bf:2b:45:d2:69:08:c1:8d:
fe:33:83:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:42:06 2025 by rpki-client