Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
File: yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft (raw, json)
Hash identifier: Aa+MAhVikKpnH9i5/uZzlkfCXWuYve4PI1f/oW3trz4=
Subject key identifier: 1E:53:D3:34:F0:E4:A2:DA:E2:2F:83:20:38:F0:88:74:47:2C:13:3D
Authority key identifier: CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67
Certificate issuer: /CN=caacc4febb487996d4ee01d53b11f84203ca8367
Certificate serial: 0199183FF8209E117ABBA8CC5E480EDCD8F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
Manifest number: 01C9
Signing time: Fri 05 Sep 2025 05:01:09 +0000
Manifest this update: Fri 05 Sep 2025 05:01:09 +0000
Manifest next update: Sat 06 Sep 2025 05:01:09 +0000
Files and hashes: 1: Dribm7v4eJGFRaCGtu-42niad5g.roa (hash: COADFM31Atbne40gqBHSktN8SaWdLigZF/t1VPBNlag=)
2: yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl (hash: BnW2UDJEZvAsCFDqiybvAKmLlNm62CHg+2Hks7MSXUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:3f:f8:20:9e:11:7a:bb:a8:cc:5e:48:0e:dc:d8:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caacc4febb487996d4ee01d53b11f84203ca8367
Validity
Not Before: Sep 5 05:01:09 2025 GMT
Not After : Sep 6 05:01:09 2025 GMT
Subject: CN=1e53d334f0e4a2dae22f832038f08874472c133d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e7:84:60:5a:63:e2:bf:68:8b:23:65:e5:e3:
30:0b:73:8d:9b:8d:7a:e1:55:df:6c:a6:14:95:c8:
89:8d:45:af:11:b0:94:76:e4:6e:c3:5f:fb:c2:c2:
de:1d:3f:44:7f:e2:a5:73:c2:74:66:bf:20:b3:57:
b3:6c:97:6e:2a:00:82:c9:98:ab:1a:42:df:4f:15:
57:bc:0b:d7:17:0f:9b:b3:1f:91:9d:d0:65:df:da:
15:00:a3:54:b2:bb:b1:31:c1:59:a9:75:3e:fd:ae:
9f:85:1a:39:6c:da:21:e4:5a:de:d0:c6:72:93:5b:
a3:26:90:a0:24:96:39:19:df:5a:8d:ae:cd:87:61:
0c:9e:57:96:33:14:4c:d5:9f:c4:24:19:91:9a:c2:
40:4b:25:62:c1:16:81:fc:c8:02:4a:71:ad:5a:f4:
9d:fb:47:94:76:6b:e2:1d:ec:12:95:e6:06:52:42:
46:b9:4a:1e:d3:98:c6:e5:0a:4c:8a:35:78:0a:32:
d2:ff:eb:d0:f9:02:a7:59:47:58:db:2f:68:53:5f:
97:36:10:41:0c:b9:b9:90:31:2a:88:95:7f:14:48:
22:24:0c:8c:a4:fd:a8:77:59:e2:05:b6:65:5e:aa:
66:93:82:85:dd:d1:59:10:b9:fa:05:b0:40:d7:ad:
69:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:53:D3:34:F0:E4:A2:DA:E2:2F:83:20:38:F0:88:74:47:2C:13:3D
X509v3 Authority Key Identifier:
keyid:CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:23:36:a8:08:4e:0f:9e:4c:29:41:80:61:cb:60:bb:4e:b2:
73:bc:4a:76:1f:09:4d:2b:56:9b:71:87:a6:f7:cd:ea:6c:bd:
67:2c:0d:11:01:ce:bf:cf:b7:50:3e:7f:90:f6:08:b4:0f:42:
47:22:d6:7e:5d:a0:70:d4:eb:cd:34:e9:43:57:19:5e:ed:7e:
46:ff:4e:51:a6:f0:e6:30:92:48:5d:7c:5d:ad:c4:b9:ab:c0:
51:08:c8:fa:6f:63:73:67:0c:af:40:50:7b:09:89:af:1e:d3:
c5:c7:11:63:aa:2c:d9:46:40:a0:db:6a:9c:6f:3e:36:31:c1:
ee:35:d7:87:f5:72:6a:f5:be:5b:ad:96:0f:c8:ec:90:c9:35:
cf:b8:53:0b:af:eb:13:5d:92:61:57:ac:f0:82:a5:74:7c:f7:
a9:4b:b5:bf:fe:5b:9d:15:83:b9:c3:aa:91:4e:dc:49:90:ba:
7d:93:4b:b5:5a:ee:cf:49:30:a0:f7:63:14:54:8b:9d:51:7e:
f1:fb:cc:86:dd:16:06:41:4b:6a:a7:15:0e:d3:9f:85:3e:88:
6c:24:9a:4d:27:56:96:da:7d:9b:00:5a:cc:e4:93:01:eb:bf:
73:66:83:94:0b:71:0f:1a:43:9c:6e:db:5a:ac:4c:4e:7c:45:
6c:46:c5:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:06:18 2025 by rpki-client