Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
File: A9yMYjke_dTdGORoGeF3gAKpoYc.mft (raw, json)
Hash identifier: j9p13WjMY0Z1jUb82aS6dKnW00BlM/HtXF8rJxUniC0=
Subject key identifier: EF:4E:E6:FD:5A:DA:E6:A9:0C:AB:37:5D:82:21:80:98:80:27:76:4A
Authority key identifier: 03:DC:8C:62:39:1E:FD:D4:DD:18:E4:68:19:E1:77:80:02:A9:A1:87
Certificate issuer: /CN=03dc8c62391efdd4dd18e46819e1778002a9a187
Certificate serial: 01992E23CFD6A41993251E8AAEDE6441DBEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
Manifest number: 0437
Signing time: Tue 09 Sep 2025 11:02:02 +0000
Manifest this update: Tue 09 Sep 2025 11:02:02 +0000
Manifest next update: Wed 10 Sep 2025 11:02:02 +0000
Files and hashes: 1: A9yMYjke_dTdGORoGeF3gAKpoYc.crl (hash: jMZGjzvfS3zqTUqJQFCxgIOxIkrsR4tChjWEtPjfL6c=)
2: KMKlBIWdbSLJxhG6mlrGw76dE8w.roa (hash: wMSY3OLmFX6U/ZLAS1pVuwf7520K0rZUrgx8A8ShiM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 11:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2e:23:cf:d6:a4:19:93:25:1e:8a:ae:de:64:41:db:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03dc8c62391efdd4dd18e46819e1778002a9a187
Validity
Not Before: Sep 9 11:02:02 2025 GMT
Not After : Sep 10 11:02:02 2025 GMT
Subject: CN=ef4ee6fd5adae6a90cab375d822180988027764a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d9:ee:28:07:0f:2d:44:70:0e:f1:44:2f:c4:
4b:13:17:81:2f:bf:a3:f1:b4:ec:48:ae:a4:16:dd:
94:84:9b:8a:fc:1f:68:ca:a1:43:ac:95:0c:0b:73:
55:16:c4:6c:30:04:dd:85:02:ad:3a:c1:b9:71:c2:
00:8b:19:4b:e1:bd:96:9e:c2:fb:dd:17:2b:20:f3:
43:9c:57:c4:3d:15:69:b9:44:55:4c:22:55:c1:eb:
60:ee:a1:cf:bc:08:35:c6:11:d2:11:34:a0:be:4c:
cd:22:05:08:c1:b4:10:d7:ff:36:f9:34:95:fd:3d:
61:ba:71:0a:87:97:f1:53:65:72:8c:b6:7d:ce:fe:
c8:07:b4:f0:8f:e5:53:d1:3d:a8:30:03:8c:96:9e:
76:05:d0:30:01:96:d5:04:fc:35:79:89:f9:53:53:
5b:13:65:82:0a:01:58:5b:80:e5:43:23:14:b8:6b:
44:81:f1:7f:6f:d4:73:9c:88:9d:8c:64:ab:06:d3:
8f:46:dc:7b:f9:92:3b:7a:5e:7b:05:c0:6f:ce:b9:
f5:10:6f:ba:b3:a1:c0:96:1d:b6:9b:ad:a8:7b:49:
4b:bb:84:99:26:f2:73:7b:4d:64:25:b1:a9:82:98:
37:16:f3:d8:83:90:6b:d9:5e:3d:fd:60:d5:4a:31:
65:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4E:E6:FD:5A:DA:E6:A9:0C:AB:37:5D:82:21:80:98:80:27:76:4A
X509v3 Authority Key Identifier:
keyid:03:DC:8C:62:39:1E:FD:D4:DD:18:E4:68:19:E1:77:80:02:A9:A1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:ae:13:15:dc:f6:03:d4:2c:52:22:2d:7b:54:80:a3:b2:93:
0f:85:91:39:8f:49:1e:91:17:2e:91:cf:f3:8a:8b:c2:be:0a:
15:a3:52:6d:92:6a:18:47:de:0c:46:03:ed:3b:8b:bd:9b:fd:
b8:49:fc:ea:f6:dd:87:d3:a5:e8:74:7e:4a:9b:c9:83:a5:7c:
2c:05:2e:2f:27:fe:06:f1:02:18:db:01:6f:07:5a:cc:90:dd:
e4:48:0f:e3:22:56:33:34:31:08:97:54:0d:24:81:4a:e6:3d:
31:57:55:75:a3:99:91:34:7e:b5:5b:49:71:08:82:c4:a7:f7:
70:f9:f4:64:5e:2b:a2:5c:d5:2b:0a:b1:aa:04:7c:44:24:65:
73:b7:5d:dd:49:d2:74:4e:8c:6e:d4:a9:41:80:02:a3:d3:2a:
a9:9b:aa:ae:9d:ac:bb:2e:fc:77:43:74:da:82:76:d2:1a:1c:
68:37:23:4e:c5:ad:e5:37:93:d5:60:ed:93:7b:e4:b6:85:62:
f7:02:6a:70:6d:37:b2:16:8f:09:cf:89:5c:30:42:f7:b7:37:
3a:33:1b:66:13:fc:63:06:d5:43:0a:44:e1:fc:b3:32:fa:2f:
77:02:7f:59:d8:f2:36:bb:e0:c6:38:1f:5e:3f:2e:48:9d:17:
a7:3e:32:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 18:43:21 2025 by rpki-client