Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
File: y34FPHGZWsyb8TM_55w9W_1ulk4.mft (raw, json)
Hash identifier: iyCpA9Hf15RSP+PDHFV8xe/dCpBxQfCQSe1A6XCNlhE=
Subject key identifier: C8:00:D1:6F:AC:83:8C:E9:6B:E4:48:5B:E6:46:09:4B:FD:4E:04:CC
Authority key identifier: CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
Certificate issuer: /CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Certificate serial: 019922FAA3B3370D3A6E7EAA1E761088417A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
Manifest number: 0CE0
Signing time: Sun 07 Sep 2025 07:01:15 +0000
Manifest this update: Sun 07 Sep 2025 07:01:15 +0000
Manifest next update: Mon 08 Sep 2025 07:01:15 +0000
Files and hashes: 1: OY3T_xG0jFJ_6yc5NmhmVJsNZOM.roa (hash: af8mlEBnTxkbr73XYFoiiYy6suBahBU1dHobCDHfy/U=)
2: y34FPHGZWsyb8TM_55w9W_1ulk4.crl (hash: nzakyl3uITtPlRypPX0EkSXSccpoJKoxbqoowDfTkgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:a3:b3:37:0d:3a:6e:7e:aa:1e:76:10:88:41:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Validity
Not Before: Sep 7 07:01:15 2025 GMT
Not After : Sep 8 07:01:15 2025 GMT
Subject: CN=c800d16fac838ce96be4485be646094bfd4e04cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6d:bd:d8:aa:c5:67:ee:0c:5f:f7:10:cc:d1:
e6:a4:c8:97:87:b0:a0:f8:2a:c6:7e:d3:f9:b0:75:
bc:30:8d:58:ca:78:99:5e:60:35:86:5d:8c:4a:8a:
1a:6f:04:a1:e9:6b:8f:e9:13:28:fe:a3:67:ad:e6:
20:99:06:c6:cc:73:9f:06:6e:ac:66:fd:99:1d:f1:
b0:10:cf:13:32:5a:a9:31:84:4f:da:cf:02:8a:26:
d5:e4:6a:cd:eb:be:bb:69:4b:11:12:88:bb:76:07:
92:59:74:07:19:63:88:e5:54:94:39:e6:89:91:7a:
39:fe:19:33:eb:c3:8e:06:f1:87:a4:7c:2e:cd:d8:
40:61:d7:3e:88:cb:c1:63:f2:e0:37:c9:48:c0:2d:
96:c7:26:bb:5a:9b:54:d4:47:4b:80:fd:ca:1f:9e:
08:99:fc:31:bf:f8:78:90:91:17:ae:c2:71:58:63:
c4:1f:81:2d:2d:3a:e6:10:92:4b:d3:c6:3c:9b:75:
7a:01:43:9c:15:d1:fb:06:51:17:8e:39:45:32:2b:
12:fa:5c:1b:b3:27:42:e2:0c:94:b6:1b:54:b4:45:
7d:f7:22:50:4b:f9:ba:6b:41:a6:2a:25:29:43:9d:
45:78:fa:b1:04:f6:50:eb:32:13:13:59:db:a6:9a:
dc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:00:D1:6F:AC:83:8C:E9:6B:E4:48:5B:E6:46:09:4B:FD:4E:04:CC
X509v3 Authority Key Identifier:
keyid:CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:e0:62:3f:6f:8f:c4:45:95:87:49:8f:de:c5:59:78:3a:0a:
69:4e:2f:46:0a:b0:dd:d5:c8:e8:6f:c9:64:0c:03:4c:e7:5f:
f2:e7:00:06:61:03:2b:48:97:85:6c:9b:e0:29:8b:f3:b8:a3:
c4:b6:2f:44:0d:80:09:ba:6c:28:98:f9:b6:1b:86:ef:64:86:
cd:63:6b:1e:5a:7b:e3:41:8f:80:33:e1:aa:7a:49:0e:a6:b0:
08:17:34:12:9a:a7:d2:7d:df:40:78:00:33:4e:7b:86:63:a0:
80:1f:b2:11:d6:59:74:5f:cf:76:f0:04:99:ae:14:03:2f:e9:
54:82:6d:48:88:6c:2d:c6:80:2a:e1:6b:04:6c:c0:2d:f7:37:
99:26:d9:67:01:47:96:cd:1b:4d:41:a4:38:cb:16:51:de:44:
9a:3b:2b:9a:72:63:00:9c:ea:a9:6c:68:6c:73:36:5c:e0:b2:
e0:07:cf:f6:1a:95:f4:18:3a:da:67:a5:d7:8e:8e:0b:0b:36:
46:98:8e:78:84:d8:1c:63:f3:f3:31:59:00:e3:20:5c:02:46:
45:7c:86:0d:e7:f7:8f:54:1a:5d:f4:ca:36:3c:bc:ff:4d:37:
42:3d:d8:d3:89:8b:af:f2:89:29:f3:32:9d:43:5a:98:51:bf:
34:b7:d0:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:09 2025 by rpki-client