Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json)
Hash identifier: sJDXG5h4hB1s0NJnzFLkVU0FoQqGdTSmsZ+QOrKzCZQ=
Subject key identifier: 16:CE:30:B7:69:75:F1:C1:31:D9:16:FA:E9:45:27:EA:7D:36:05:38
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 019922559F1E6B9238AE39EF7FC1D64DB2FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
Manifest number: 1210
Signing time: Sun 07 Sep 2025 04:01:00 +0000
Manifest this update: Sun 07 Sep 2025 04:01:00 +0000
Manifest next update: Mon 08 Sep 2025 04:01:00 +0000
Files and hashes: 1: nPtNOVhjTVbNoPzqUJGa-Eqnb0Y.roa (hash: Yuz9f1rxV7S4atM+GycUQVhSQinvjc3oT1lXV1zOVuE=)
2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: bhOTMMQZYYtN6UcvAlAqnVXIDDyHbe+/jati2/OQiFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:9f:1e:6b:92:38:ae:39:ef:7f:c1:d6:4d:b2:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Sep 7 04:01:00 2025 GMT
Not After : Sep 8 04:01:00 2025 GMT
Subject: CN=16ce30b76975f1c131d916fae94527ea7d360538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cf:1d:57:d2:4c:be:3d:fa:c3:a6:7b:5f:25:
20:aa:eb:0c:5a:f1:ce:fd:48:e0:31:7c:bc:a5:a7:
83:c5:df:d2:77:cd:91:cf:26:c3:d1:aa:89:83:81:
e7:94:09:ad:8b:f4:e7:7d:50:52:25:46:1a:0c:75:
1e:1c:e9:13:9a:5f:24:b7:5c:3f:33:79:da:3a:65:
ef:52:d2:76:ae:ea:5e:b2:d9:dd:68:41:e4:de:45:
8f:d7:cb:ee:74:43:97:b6:0e:a4:3f:7e:af:f1:61:
c6:0e:40:2a:dd:6a:9e:27:f5:0f:72:2d:12:74:60:
2b:53:35:f3:d9:47:d7:cc:c9:d2:c6:b8:ee:0a:2d:
84:72:ed:2e:f0:ee:03:de:d1:4e:d0:bc:a6:81:0f:
59:cc:cb:ab:ad:08:e1:dd:c9:b8:f9:a2:7c:39:64:
b0:40:98:90:2b:f8:42:f4:33:33:7b:33:c1:ea:97:
95:34:46:f1:f5:60:34:a3:65:68:06:e0:06:29:35:
9a:e6:d8:82:47:3c:cd:ae:c3:67:90:c4:f2:45:71:
bf:ec:0b:ef:1b:4a:8c:16:f1:c9:b2:0f:97:32:77:
79:ef:b3:75:14:6f:20:8a:4c:bf:3f:af:bd:b4:59:
a0:74:8c:6f:9b:85:1a:66:1f:4c:c5:cd:fc:57:30:
80:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:CE:30:B7:69:75:F1:C1:31:D9:16:FA:E9:45:27:EA:7D:36:05:38
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:b4:3f:df:47:d1:df:15:1b:2a:e6:4e:f6:cf:3e:a1:86:ad:
47:8b:de:44:e1:39:68:d6:ed:c6:22:ac:a9:03:d9:09:ad:12:
3e:e1:48:1a:64:0c:c1:a0:98:c9:41:e6:48:fc:f9:d5:1c:97:
67:3a:c9:a6:42:d3:23:cf:28:ce:85:b8:e7:53:bd:d7:ec:c7:
eb:16:45:71:44:d2:db:86:c9:08:00:1e:3f:8d:88:01:8f:d4:
88:08:3a:e6:52:3e:5a:fd:71:81:62:b2:13:d9:2d:d6:18:98:
2e:69:f5:9b:80:30:7d:72:c2:ba:8b:51:5a:5d:f6:9f:cd:9d:
f4:fc:e2:9c:c7:e8:78:9b:e7:df:68:57:24:7f:bb:bf:c2:65:
f7:35:da:10:cb:7e:fd:f8:02:47:6b:28:5d:89:24:d3:48:36:
05:a2:84:9f:65:fc:1a:55:41:14:7d:7d:f0:cf:a3:da:ba:6d:
4c:6b:53:b2:e1:c9:4d:10:cd:41:a9:66:5b:65:c9:a7:af:3a:
b7:c6:45:8f:e6:4e:7f:f1:96:24:5b:d9:c1:14:36:39:b2:9e:
7d:c3:93:6c:ca:69:e2:81:52:d2:ad:2b:b1:21:9c:e4:c1:0b:
e8:0a:7e:52:8c:85:85:eb:b9:0f:c8:0a:af:7f:46:9b:49:2b:
62:c2:1a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:23 2025 by rpki-client