Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json)
Hash identifier: 0IjSPch+boiDqqSVbZzrWRxdh1lz1pkempqrZkbJTqU=
Subject key identifier: F5:65:58:06:1C:06:DE:E9:FB:37:69:F1:C9:DB:02:4E:5B:2A:C1:67
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 019923A0A1D916920E96F7E5EC35EC414233
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
Manifest number: 0448
Signing time: Sun 07 Sep 2025 10:02:33 +0000
Manifest this update: Sun 07 Sep 2025 10:02:33 +0000
Manifest next update: Mon 08 Sep 2025 10:02:33 +0000
Files and hashes: 1: UVQQxsyFxE5G_GAZUd3A6ZXjkCE.roa (hash: zpm9oScjJUHtNk/CwO+EVZyjIHRYFCB8FAgH34Qnsvo=)
2: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: Ghq8qqGlZgMT/RJMjwqmXSCkUXJpkS9C7o/bXDrlmzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:a1:d9:16:92:0e:96:f7:e5:ec:35:ec:41:42:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: Sep 7 10:02:33 2025 GMT
Not After : Sep 8 10:02:33 2025 GMT
Subject: CN=f56558061c06dee9fb3769f1c9db024e5b2ac167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:52:ab:43:e9:a7:f5:28:45:ea:7c:fb:48:af:
0b:99:69:ff:83:02:2e:ad:d3:8f:f9:12:fd:d2:f1:
79:5c:14:12:71:26:2e:e1:c3:27:06:20:ba:93:07:
fc:4f:88:cb:db:34:cf:fc:72:ff:4a:8f:ee:8c:cb:
f6:54:96:36:da:f4:bc:50:1c:31:38:4f:2d:14:64:
6e:9a:12:2a:12:15:91:51:18:5a:72:78:1b:87:c9:
80:59:fa:71:ef:26:c4:24:58:3c:d1:b2:48:5d:eb:
82:63:cf:fa:4c:68:2e:bd:ea:49:5b:35:92:ff:6b:
17:3f:f6:ef:89:70:e9:0f:21:e0:77:e0:68:0d:1d:
ad:38:78:cf:8d:6f:01:cd:fd:b0:f7:8e:fc:7e:ac:
6b:b0:7c:c8:a9:65:28:bf:84:3d:a6:25:78:c4:1f:
ad:1c:79:17:d4:92:eb:a0:e9:9c:0e:e9:47:8e:98:
d7:8b:01:05:64:d2:ac:b0:45:5c:f4:14:21:81:d1:
7f:ed:e4:a5:17:8e:b9:4c:dd:f6:b1:4a:dc:23:61:
e5:bb:f9:73:74:af:d9:04:e8:82:f6:3b:20:76:cc:
de:5e:7b:24:62:a1:64:7e:6c:b3:e9:e8:1b:70:f3:
3a:24:71:24:46:5c:59:e1:2c:86:43:b0:e4:7d:ce:
40:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:65:58:06:1C:06:DE:E9:FB:37:69:F1:C9:DB:02:4E:5B:2A:C1:67
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:c3:87:65:90:88:58:6b:66:44:c9:6e:c9:b9:aa:67:5b:25:
80:20:b0:fd:35:4a:ee:e2:82:49:14:d7:79:14:3b:0e:db:84:
53:2b:2a:d9:8a:76:b8:fe:c8:ae:97:b1:22:07:fd:0a:dc:a4:
95:59:d2:8d:71:e5:d3:3d:be:dd:a0:ec:ee:89:46:ae:a9:52:
bc:43:9c:af:ee:81:2f:ba:59:c4:3d:05:8b:76:ff:54:3d:d3:
27:e4:22:99:de:3e:71:dc:fd:f9:db:2e:5a:0a:bc:66:56:3f:
fc:ad:ee:10:35:63:f9:10:5a:a5:cd:23:31:c5:49:0c:9f:ce:
77:d0:a7:8a:65:3a:f8:7f:0d:96:f3:c8:e9:aa:5f:6f:81:26:
e8:75:aa:d8:88:84:a7:19:02:7a:6d:ce:43:e4:26:79:ca:4e:
79:6b:c0:67:2b:7c:fa:ec:c1:3a:af:2a:52:f1:ee:8a:ec:ef:
c4:54:94:c0:43:a2:2f:51:31:18:58:e6:ed:c5:f2:05:c7:a9:
a2:ab:0b:b8:54:d3:e5:7b:70:ea:86:6f:4d:60:37:a2:10:82:
1c:78:32:4d:20:54:f5:66:f7:93:dd:03:fd:1d:4f:c4:66:32:
be:bd:e8:37:fd:05:5b:e5:4d:37:4a:f3:5f:6f:13:3b:a4:36:
9a:15:2f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:23:01 2025 by rpki-client