Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
File: yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft (raw, json)
Hash identifier: HM/XzzwS2fNrL2/humXxdPhhnXJvguVohZew/5CsZmU=
Subject key identifier: 6B:5F:41:00:26:28:FC:47:42:3B:E7:5C:35:40:61:E6:15:8E:78:91
Authority key identifier: C8:DF:33:7C:EA:56:A0:83:F4:6B:79:90:72:E7:0D:A3:45:CC:23:64
Certificate issuer: /CN=c8df337cea56a083f46b799072e70da345cc2364
Certificate serial: 01992255235A5DFC2A0BBEA50A806BBA3527
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 04:00:28 +0000
Manifest this update: Sun 07 Sep 2025 04:00:28 +0000
Manifest next update: Mon 08 Sep 2025 04:00:28 +0000
Files and hashes: 1: yEMlFNYIo_7PBG15hC66LWSw4E0.roa (hash: 0NF8QaEpF30c3qMJTec6Bga4N+I8Ns4AqntJ51k9D0k=)
2: yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl (hash: Ra0uv+AaG5Zgw35N1t9c1JDnKUEyIlsnov6VfHl9NHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:23:5a:5d:fc:2a:0b:be:a5:0a:80:6b:ba:35:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8df337cea56a083f46b799072e70da345cc2364
Validity
Not Before: Sep 7 04:00:28 2025 GMT
Not After : Sep 8 04:00:28 2025 GMT
Subject: CN=6b5f41002628fc47423be75c354061e6158e7891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:f1:0d:2b:78:35:e0:05:b3:a0:5e:be:32:
f6:21:fe:dc:25:66:61:ee:a4:e3:0b:e9:f6:f3:23:
31:66:46:de:59:b0:c7:f8:7c:32:1b:24:85:9e:05:
0d:fb:ed:fe:e6:da:e5:ce:79:00:df:c1:6e:32:f7:
ec:30:c7:22:c3:2d:32:10:c7:c9:22:ee:85:1f:d7:
a9:9c:f1:e2:55:4c:1e:28:59:50:17:e9:61:cd:ee:
7d:0a:a5:25:2f:c0:6e:26:9f:56:3f:59:45:43:fd:
20:43:33:10:02:f5:95:f4:71:c3:99:6d:39:11:4a:
b1:8c:18:e1:20:d9:eb:1b:0f:a0:74:65:5a:6d:3c:
5b:e8:9e:27:f5:0b:d5:b8:24:c0:e1:cd:fb:74:73:
9a:b1:28:fe:a6:e1:a1:09:0a:8f:b2:f8:e0:2c:28:
c3:76:94:eb:1d:10:ea:17:4b:fe:72:ca:c9:fd:13:
a9:2d:7c:0e:c6:e6:1b:b2:18:ab:8c:a8:be:82:e3:
53:05:fa:03:52:56:59:4a:11:10:27:e5:57:86:f8:
6e:a4:92:03:6b:cb:f2:26:c0:3b:02:40:ac:0f:4b:
32:d1:ad:c0:19:22:fc:77:4d:fe:7c:3a:80:c7:68:
72:92:4b:52:4a:ad:43:7f:3e:1f:84:36:86:f9:92:
62:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:5F:41:00:26:28:FC:47:42:3B:E7:5C:35:40:61:E6:15:8E:78:91
X509v3 Authority Key Identifier:
keyid:C8:DF:33:7C:EA:56:A0:83:F4:6B:79:90:72:E7:0D:A3:45:CC:23:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:98:88:27:ea:8e:d5:dc:fa:45:4a:f8:e8:4f:4b:f2:88:eb:
7d:f2:57:5a:01:be:e4:f5:b7:06:ba:40:48:89:c5:8a:0f:ab:
d5:c4:16:b3:19:92:78:a0:aa:73:08:9a:e0:d8:eb:b6:09:c7:
fe:7e:06:8b:55:4a:fa:6b:1a:d0:ae:21:b1:d9:45:e6:e1:ad:
86:66:93:2b:85:49:f7:c4:ba:82:6a:10:6d:db:ee:e0:1d:34:
0a:14:d6:e7:e6:1b:18:1c:58:16:39:97:a7:c4:4d:34:5e:fe:
0a:f2:e1:14:6f:02:3a:9e:ec:0c:db:5d:6f:89:43:e6:05:7b:
bf:3a:c7:55:59:75:52:c1:90:ca:1a:c5:e3:35:40:2f:d4:90:
9b:64:24:77:90:91:10:24:f5:52:31:1a:ca:d5:60:a0:c1:e1:
47:79:27:83:74:a3:b6:33:41:c3:17:8e:d5:3c:24:13:3d:09:
3b:33:e4:66:c9:6f:f1:f6:5e:e7:6c:b0:29:26:b0:e4:e5:5c:
4b:27:47:b8:7b:63:0b:19:1a:4c:f5:5f:0f:d7:27:03:5d:c4:
2d:8e:04:8e:69:df:c7:ca:6c:70:c3:33:88:b1:b9:f3:38:c1:
75:b5:22:50:83:fd:23:d2:39:02:06:b4:ef:d0:ec:86:01:74:
e2:bc:7e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:39:57 2025 by rpki-client