Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
File: yYuCXzbpzDMDFclA3oAMurzjOXs.mft (raw, json)
Hash identifier: Mu7KJf3XB9x0o0cZEAsZS512F4aklv0Uv4R2/BVisYM=
Subject key identifier: 82:3D:BF:78:69:53:CA:EC:8C:61:E0:96:EC:3B:00:07:A6:4A:94:FF
Authority key identifier: C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B
Certificate issuer: /CN=c98b825f36e9cc330315c940de800cbabce3397b
Certificate serial: 0199176499BA7B9B407829D550D3DC195DE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
Manifest number: 127B
Signing time: Fri 05 Sep 2025 01:01:32 +0000
Manifest this update: Fri 05 Sep 2025 01:01:32 +0000
Manifest next update: Sat 06 Sep 2025 01:01:32 +0000
Files and hashes: 1: 9fWXkacnWfLXH44Xb8HrXGzmknY.roa (hash: ueIT5017I7hv93aOprGzdVNSjT4YNhBA1fdwv5/AgdI=)
2: HRQ3zVG8fQhstKqXqVzvaQOYW-8.roa (hash: J4bA2yn+4d47gpldTm1th3QAEiyAys+UIYmTMp8Fvck=)
3: KW27n6S1v0MgxCxbh7E0buBfif8.roa (hash: toMOgZfSEbU3csqRPx4QZ9cAdliSmxp8YH9UOfmQEwM=)
4: f9hfmHvrY5AwY36q7MIQ4falWVM.roa (hash: poIPC46neVOYvv7bF8o92LK9XXWLEMpfpDFVMKy16AU=)
5: gu6tT7UFC6FmYiSvKO6wxYLbsHc.roa (hash: 33W9F+bpX2oF1GIOeMA/5dpyW1er0qfORrvZ4OzY3Zc=)
6: yYuCXzbpzDMDFclA3oAMurzjOXs.crl (hash: pQtcUFD9aQb5vmrN3F4NBOK8prCzH+5JyM9KKVZ7YkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:64:99:ba:7b:9b:40:78:29:d5:50:d3:dc:19:5d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c98b825f36e9cc330315c940de800cbabce3397b
Validity
Not Before: Sep 5 01:01:32 2025 GMT
Not After : Sep 6 01:01:32 2025 GMT
Subject: CN=823dbf786953caec8c61e096ec3b0007a64a94ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1a:43:36:8e:43:c9:60:4c:23:14:51:24:3b:
9d:5c:d9:e5:b2:2e:4a:fa:9f:e0:42:b6:02:77:bc:
f7:ed:f9:6b:e1:30:d4:f1:88:4b:c1:59:3b:59:a2:
95:80:32:79:06:7b:ae:b2:37:0b:34:c5:b2:55:72:
45:1b:b2:33:73:44:40:95:92:86:32:0b:9c:b1:35:
6c:d2:2f:75:7b:9a:9b:01:56:c6:f3:25:f1:f7:fb:
49:da:2d:85:16:7b:54:0f:ff:3c:b5:c8:81:f7:3d:
e9:88:f8:2e:a0:9e:ec:5c:36:41:23:e6:34:36:66:
05:88:9e:10:74:88:02:fe:36:4e:19:08:10:4b:66:
9b:a0:bb:8e:35:a7:7a:c3:e7:5f:32:64:4a:76:af:
b7:55:99:7e:f9:1d:06:83:06:cc:5c:27:e0:b1:7f:
9a:f5:1c:3f:18:85:2f:aa:ee:af:a1:b0:96:9f:25:
4f:b4:4d:b0:d7:9c:d9:31:d6:a7:57:03:c2:3e:38:
b3:7c:2b:51:df:59:97:4f:3b:49:ac:90:f5:72:cb:
16:c0:d6:ac:98:13:cf:ae:49:8f:c0:b7:f7:a7:69:
b4:3f:2e:fc:d2:a2:8b:12:22:cf:c0:35:b3:6c:20:
98:24:a3:ac:28:6c:43:52:30:35:cd:d9:df:ee:60:
be:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:3D:BF:78:69:53:CA:EC:8C:61:E0:96:EC:3B:00:07:A6:4A:94:FF
X509v3 Authority Key Identifier:
keyid:C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:94:7b:93:89:32:a2:10:db:33:33:7f:8d:fe:90:e4:25:b1:
0b:39:ec:84:07:e8:ad:c5:08:86:86:13:4e:7e:c0:82:1e:9e:
a8:b1:2b:c8:3d:24:87:cb:95:94:4d:e4:b3:80:89:f0:6b:b0:
3d:5e:15:0e:c5:b2:1e:ff:6e:04:86:67:81:a0:82:79:1e:11:
c7:85:73:ed:01:ba:14:7f:df:31:4d:03:53:8a:ad:f4:b5:20:
1f:00:fc:ae:23:cb:2d:13:df:bb:28:19:38:61:99:44:f6:cd:
34:92:20:56:01:1e:0c:d7:07:81:a0:eb:a6:7b:1e:74:49:e8:
e1:5e:c3:ca:59:43:2d:d9:b1:f6:bd:16:58:74:54:2e:74:56:
ca:1f:06:41:27:23:1b:7f:da:08:45:88:8d:ef:9e:af:6e:ed:
ed:0e:25:81:07:7c:17:ce:fb:b5:db:0b:aa:87:28:21:f6:e0:
8d:2e:5e:b6:47:13:15:48:e7:f0:3e:84:74:ce:66:26:2c:a2:
49:19:00:ed:5f:77:f1:51:56:cb:bc:96:dc:0c:c0:3f:bb:77:
4f:df:31:d7:3a:3b:b2:4a:04:d4:6e:6e:03:18:1d:41:ef:df:
fe:f8:97:a6:ea:ab:82:e2:e4:4e:ef:6d:b3:1b:a6:93:69:4c:
e0:df:d3:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 11:25:31 2025 by rpki-client