Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
File: 9YQK34T7C3WOuopaE1qYA5Pov3M.mft (raw, json)
Hash identifier: VTSqSLWWDpRsHEPk+CbYRXQF4ZF+2ymd9goYA+1qDd4=
Subject key identifier: 3A:06:D6:D2:08:FE:DE:4A:F2:78:31:00:A2:03:D1:68:84:1E:01:9A
Authority key identifier: F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
Certificate issuer: /CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Certificate serial: 019A70DC0FD615C153B378F874A69380E7D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
Manifest number: 02CA
Signing time: Tue 11 Nov 2025 03:01:01 +0000
Manifest this update: Tue 11 Nov 2025 03:01:01 +0000
Manifest next update: Wed 12 Nov 2025 03:01:01 +0000
Files and hashes: 1: 9YQK34T7C3WOuopaE1qYA5Pov3M.crl (hash: T0dknHoMkDz9C4HeQLoeqKCqm4g/6tjMQ3IdZnJybBI=)
2: ug_6Y8ki9EP25vsoMMlfyRj48uY.roa (hash: iRz3po2Z+C7i19HNQJqYaoWDRng24eOA7rSUnQMnMPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:0f:d6:15:c1:53:b3:78:f8:74:a6:93:80:e7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Validity
Not Before: Nov 11 03:01:01 2025 GMT
Not After : Nov 12 03:01:01 2025 GMT
Subject: CN=3a06d6d208fede4af2783100a203d168841e019a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:03:da:4d:0d:9c:8c:aa:e0:8b:ce:16:cd:56:
6c:40:67:28:17:3e:50:8e:4a:d1:4d:34:d6:b4:35:
d2:a5:f5:ca:bf:d0:02:4a:fe:a3:a4:af:2f:49:e4:
58:ec:23:cf:39:d4:eb:a6:06:52:75:24:bb:d5:62:
f2:11:e6:66:be:6f:32:82:d1:d2:4e:30:82:e5:e3:
74:34:e2:66:ca:8a:69:ce:c6:91:6f:39:0b:75:bd:
8f:ac:cf:13:e5:20:b8:6d:a6:e4:51:82:d2:23:43:
c2:87:b7:4f:a9:c3:86:39:9b:09:90:6e:f4:58:b4:
dc:ec:57:66:a9:0d:d3:38:be:43:87:8f:6c:44:60:
04:a0:5e:05:8d:f2:a2:bd:45:24:ed:18:24:6e:2c:
8f:f1:3e:19:32:22:c1:4b:96:95:1a:18:fc:b0:43:
40:6c:97:62:3e:94:90:bb:8e:22:c4:a7:c8:56:4e:
34:6d:38:c3:e9:1f:cc:2c:6b:48:46:ac:4a:e0:c3:
e0:4e:1c:a8:5f:0d:13:20:44:2c:a3:78:7b:93:41:
88:0e:ef:cf:5a:f5:1d:81:40:bb:fe:a2:fa:e9:70:
e9:75:88:46:17:d5:34:32:ac:7a:3a:03:02:2d:d6:
27:7b:52:ed:f0:31:35:ec:1e:16:f7:80:a1:07:bd:
35:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:06:D6:D2:08:FE:DE:4A:F2:78:31:00:A2:03:D1:68:84:1E:01:9A
X509v3 Authority Key Identifier:
keyid:F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:68:6a:fc:fa:8b:c1:53:bb:16:08:21:c6:39:3a:3d:1e:bf:
20:59:c8:f4:b6:33:e1:af:77:c1:db:fe:57:23:ab:b3:02:bf:
9e:f9:a8:0e:1e:03:44:6b:23:64:1a:e2:36:66:8d:ca:63:4e:
ff:77:89:b6:48:7d:16:32:42:de:78:51:db:64:35:dd:28:a3:
4c:25:dd:eb:4d:42:0b:98:94:6c:ca:41:cb:51:06:13:04:d3:
ab:38:18:12:85:fc:e8:d3:36:7b:ee:ac:a9:18:97:45:b8:ed:
a6:24:1a:ea:e3:15:de:c4:28:a0:fa:c2:f3:33:0c:dd:7d:95:
8a:b4:93:15:dc:a7:f7:cd:63:00:6a:75:da:05:2b:31:62:92:
db:6e:09:77:63:17:a8:de:1a:1a:04:70:a1:03:40:cd:74:19:
0d:5e:2f:f0:b8:50:44:41:30:d9:58:03:c9:9c:54:6a:88:8c:
3c:d0:f5:3d:73:14:3e:02:0a:c5:e7:8c:7e:55:c5:b8:27:5a:
24:3e:e9:cb:89:10:85:f1:ea:01:0c:55:7b:49:91:5f:99:12:
85:b6:af:c1:60:b0:d7:5c:af:46:a4:99:b9:78:b4:74:bd:e3:
02:25:c2:ea:2c:00:b5:f6:33:37:ac:3e:81:a9:f8:4f:f6:10:
cd:47:b3:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:12:19 2025 by rpki-client