Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
File: 9YQK34T7C3WOuopaE1qYA5Pov3M.mft (raw, json)
Hash identifier: GsvgubvuhNHxxc4ilUuyFvWo1IkCkJgCUCq7p4P2OJA=
Subject key identifier: 14:0A:DE:FF:F0:93:F6:B7:71:74:F7:16:0A:FD:9F:4F:2D:14:E0:80
Authority key identifier: F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
Certificate issuer: /CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Certificate serial: 019922C35C2885622904F29846D18DC9C63C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
Manifest number: 021D
Signing time: Sun 07 Sep 2025 06:00:52 +0000
Manifest this update: Sun 07 Sep 2025 06:00:52 +0000
Manifest next update: Mon 08 Sep 2025 06:00:52 +0000
Files and hashes: 1: 9YQK34T7C3WOuopaE1qYA5Pov3M.crl (hash: b4G8Y0+fb+R1eoulXMgtoiYeINKcMlacT1el4uJJ4Pg=)
2: ug_6Y8ki9EP25vsoMMlfyRj48uY.roa (hash: iRz3po2Z+C7i19HNQJqYaoWDRng24eOA7rSUnQMnMPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:5c:28:85:62:29:04:f2:98:46:d1:8d:c9:c6:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Validity
Not Before: Sep 7 06:00:52 2025 GMT
Not After : Sep 8 06:00:52 2025 GMT
Subject: CN=140adefff093f6b77174f7160afd9f4f2d14e080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:45:96:78:55:40:05:70:5a:07:5d:da:7b:52:
74:6e:ff:6e:cf:ac:54:01:1e:5b:3e:72:cb:a7:ab:
f0:1e:5a:a8:3c:86:9d:1e:65:af:5a:d6:72:7c:46:
34:db:ba:2e:f2:a6:78:9d:72:42:52:71:da:2f:bb:
b8:a1:07:ec:94:00:e8:33:fe:72:93:c1:8a:7b:56:
db:a2:16:22:aa:5a:86:5b:a1:9d:6a:25:3a:c9:08:
3b:1a:29:53:4b:c0:64:31:bf:b9:94:44:bf:9e:65:
d7:1d:c5:e1:46:22:2c:c8:10:d7:2c:95:9b:22:8d:
7c:0f:68:17:72:cd:00:4c:89:c2:8a:e3:fe:20:87:
62:7d:4f:19:0d:e1:2d:18:39:6c:ba:5d:35:b9:8b:
dd:f5:2f:94:4b:90:61:c7:18:69:e7:9b:90:48:47:
88:04:89:f4:58:65:25:69:a9:b2:18:f0:3f:3e:cc:
02:f7:5c:9a:6e:71:58:7c:0f:de:65:3d:1e:90:8f:
c4:73:f4:2d:d7:16:f4:d3:13:12:9a:01:f9:49:cc:
30:0f:c8:7c:60:d5:a3:c4:be:49:f5:f7:33:53:21:
b0:f1:63:04:01:8d:03:f6:9f:cc:1c:07:66:c0:5b:
86:c8:bb:25:5c:e6:35:0d:ae:e5:10:4b:4d:15:a9:
8f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:0A:DE:FF:F0:93:F6:B7:71:74:F7:16:0A:FD:9F:4F:2D:14:E0:80
X509v3 Authority Key Identifier:
keyid:F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:14:71:b5:a7:08:43:c8:6a:d6:af:4e:56:be:2b:1b:64:c3:
f0:51:a6:33:4c:b8:18:9e:04:ad:35:90:57:b2:cd:b3:4c:49:
62:87:ad:84:4c:22:4d:75:5c:c5:94:f8:b8:22:5a:06:ec:69:
86:41:b8:bf:8a:ad:ac:43:24:0b:dc:60:7b:ef:6b:f8:a3:36:
84:b6:4d:94:3d:98:cd:71:53:10:b6:ca:16:83:09:ad:91:85:
16:32:39:08:c9:a0:ce:94:3c:b6:21:7f:2f:3b:a7:32:ff:01:
c4:b1:86:aa:c8:ea:6a:ce:78:92:a3:01:45:e0:6f:2a:3e:4b:
f9:1b:8b:24:10:c3:b5:83:02:c8:7e:63:d7:30:c0:0e:05:10:
24:23:db:c4:a9:94:1b:67:0d:96:5d:fb:23:d9:42:b8:a3:34:
cb:5d:e0:e4:c3:a5:cb:2a:fa:6c:11:1c:0e:1d:a8:14:68:d2:
ac:40:79:1b:f6:7a:d7:63:a9:bb:4b:27:73:28:9d:74:1c:2b:
a4:e5:06:81:3e:a5:81:e5:e9:03:1e:13:19:5c:7c:ce:a9:e3:
34:10:30:dc:df:8e:09:12:38:59:63:3c:c2:a0:ab:d0:2e:1b:
0d:cf:33:f4:4d:3c:ca:d6:e6:23:78:dd:ed:36:eb:0f:76:3f:
92:75:86:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:23 2025 by rpki-client