Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json)
Hash identifier: Tr1z4PiuHUTb5i0L+7XKJYD3I0/k92P1HSHrQfbeViA=
Subject key identifier: DB:71:D6:A0:B4:F7:AC:45:8A:8D:B1:48:90:B6:ED:FC:95:48:C9:7A
Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Certificate serial: 01992330EB348BA8817A621232A886281947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
Manifest number: 1614
Signing time: Sun 07 Sep 2025 08:00:32 +0000
Manifest this update: Sun 07 Sep 2025 08:00:32 +0000
Manifest next update: Mon 08 Sep 2025 08:00:32 +0000
Files and hashes: 1: Vm2xySa3TZzRcufAzxt4hRBLNss.roa (hash: O5+b4nw4CSapOt9ANvlpqmvnfoL7HE4era1klJG6PPo=)
2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: ue/KAWEPPxWMARH6KDPnw8k2H77z+l6BejLUjhi60nA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:eb:34:8b:a8:81:7a:62:12:32:a8:86:28:19:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Validity
Not Before: Sep 7 08:00:32 2025 GMT
Not After : Sep 8 08:00:32 2025 GMT
Subject: CN=db71d6a0b4f7ac458a8db14890b6edfc9548c97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:84:44:65:e5:15:d8:20:50:33:27:4b:e3:67:
42:85:dd:d5:0a:de:72:ea:14:d2:5f:ba:34:08:d3:
e7:6b:f7:4f:72:2b:70:c5:7d:29:fe:1e:15:fe:af:
1a:dd:32:b1:83:98:02:e1:c7:e8:fc:1e:06:18:1e:
79:ca:87:3d:0c:f8:2e:30:b6:90:2d:28:58:c1:78:
e8:22:6c:a2:ec:1b:0d:31:38:f1:1f:95:11:43:20:
e3:76:16:78:e9:41:c3:5f:eb:b4:53:11:48:70:dc:
93:ad:99:2f:de:2a:7f:e8:a1:6c:d3:e9:64:dc:9d:
bd:3f:92:13:40:ea:a9:95:f6:82:4f:57:c8:64:5b:
4d:f0:e1:7c:89:82:72:f1:6b:05:20:c9:d5:b3:03:
0a:d8:d5:5d:2c:78:88:26:bd:4d:a6:93:4a:c8:f6:
d0:2b:15:bf:e3:5d:5e:af:d6:43:50:df:f7:21:e4:
58:81:07:c0:a3:3c:6f:ea:ff:e0:6a:02:7e:f6:f3:
a6:4a:92:f9:9f:0b:66:a1:f9:c7:28:06:0a:64:2f:
22:b6:02:71:8e:c8:c6:e3:7e:be:76:c5:12:d4:c3:
dd:4c:66:27:04:83:70:54:4c:2b:a7:68:30:4f:35:
b0:e3:0d:ef:20:48:58:61:f7:ab:76:ae:25:ed:48:
f3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:71:D6:A0:B4:F7:AC:45:8A:8D:B1:48:90:B6:ED:FC:95:48:C9:7A
X509v3 Authority Key Identifier:
keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:50:f4:e6:01:bb:00:8a:0d:77:eb:d2:71:ef:69:2e:55:8c:
35:b0:5d:a1:50:fe:df:51:4b:e0:8f:68:dc:65:54:17:7f:f6:
32:27:12:a6:d1:32:d0:a3:d2:d3:c6:4d:59:6f:47:1e:a7:79:
59:3f:6b:b2:df:07:5d:54:6a:04:25:19:64:29:80:5b:95:59:
4f:eb:98:8e:a1:f4:ee:0e:7c:8f:b9:e2:3a:d2:8b:bd:c3:0e:
01:4a:e3:2f:7b:e0:ba:f4:39:ac:81:d2:12:14:7f:26:7a:7b:
50:a4:59:09:a0:af:e5:9a:85:eb:47:48:14:c1:95:44:73:a6:
38:9b:de:06:d8:5e:38:2c:64:76:8a:e5:a1:68:74:07:56:2b:
67:b6:67:93:92:f1:9a:ff:44:0d:cf:fb:b2:0a:2b:2c:2a:b1:
f7:0f:a0:46:be:7f:d1:6b:70:4e:48:67:c9:6d:0c:43:ca:d6:
18:86:af:db:3a:7c:85:19:fc:4b:27:90:9d:e4:7c:f7:0c:c7:
dd:9b:81:a5:bf:d1:26:ef:9c:cf:86:c7:41:13:92:9c:5b:c1:
25:74:d0:d1:c7:0a:69:02:0a:ec:80:13:0d:ae:50:5a:4e:08:
7d:09:ae:db:a9:01:75:e6:f0:aa:33:f3:fe:04:ab:f5:8a:8f:
11:d9:ea:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:08 2025 by rpki-client