Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
File: YAluN0CSzDAL0LsGxBZAky7Pi0k.mft (raw, json)
Hash identifier: FnfRa8DC7Da63caUXTf1zdcmE2pCv+jV/CiiT/3VSKc=
Subject key identifier: EA:BE:76:90:74:51:0A:DB:F1:DF:4E:95:66:A0:1E:CD:CD:52:ED:2F
Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49
Certificate serial: 0199239FB844D1483776DE197A2200462FBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
Manifest number: 1604
Signing time: Sun 07 Sep 2025 10:01:33 +0000
Manifest this update: Sun 07 Sep 2025 10:01:33 +0000
Manifest next update: Mon 08 Sep 2025 10:01:33 +0000
Files and hashes: 1: 526G98YrX5YRgU8kSVFlOR-68SU.roa (hash: EfmIyH+1frBE08mLPE+N4lUdJCEbw7QSSljLZgrUP1M=)
2: YAluN0CSzDAL0LsGxBZAky7Pi0k.crl (hash: s0FHOQiV0JQVKm2q2ZlzOtS6cAvxpce3ZPN80ULtaRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:b8:44:d1:48:37:76:de:19:7a:22:00:46:2f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49
Validity
Not Before: Sep 7 10:01:33 2025 GMT
Not After : Sep 8 10:01:33 2025 GMT
Subject: CN=eabe769074510adbf1df4e9566a01ecdcd52ed2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d0:b7:a3:74:a0:f5:a4:80:f1:72:81:70:01:
09:ee:12:23:54:d1:80:b4:c1:35:a3:6a:d0:6f:a1:
c4:d6:52:29:2e:ad:93:a7:3b:1d:fb:3e:ab:13:ca:
6a:47:75:b1:56:85:62:08:35:26:e8:bd:aa:4c:86:
14:67:23:8f:dc:f7:b1:65:33:fd:11:cb:52:a0:d1:
3d:a2:fd:bd:1a:f4:1e:df:ba:e3:c9:ce:ea:57:30:
37:25:4c:f3:78:ca:ab:62:7f:13:01:52:11:90:b6:
49:2e:eb:72:25:55:bb:e0:5d:f5:29:0d:bf:7c:26:
70:20:f1:4a:f9:82:02:32:b5:de:ad:da:d6:f9:0e:
47:de:52:e3:ab:16:b5:d7:96:64:d4:cc:bf:6e:10:
16:07:d5:7f:46:29:4f:41:0a:f9:80:a3:6f:39:72:
30:d1:ee:82:b3:99:15:69:47:7c:9b:d0:7a:12:ed:
b6:30:d8:80:50:31:e8:22:55:02:08:c9:09:66:05:
ec:2d:2a:8a:7f:95:b5:a1:a4:96:41:8c:90:e6:f6:
41:96:8d:aa:d1:b7:8e:45:32:60:01:30:3f:1d:b3:
5f:9d:ab:4c:e0:31:c5:2d:54:94:57:09:69:b7:38:
17:35:64:34:e7:f3:7d:f4:c2:a1:a4:32:a5:03:e1:
fa:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:BE:76:90:74:51:0A:DB:F1:DF:4E:95:66:A0:1E:CD:CD:52:ED:2F
X509v3 Authority Key Identifier:
keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:35:ce:1b:c0:d9:90:ac:cb:d2:0d:11:56:e5:76:4c:97:8a:
2c:b2:ff:fd:6e:fd:9c:4d:16:27:ce:35:b0:aa:7e:44:59:91:
58:76:a9:ae:c6:ca:0c:de:29:8d:e5:f4:58:d4:e2:a8:a5:db:
28:1a:60:0c:83:57:29:3d:d8:f9:50:37:9b:4b:ee:40:47:bf:
2e:ea:35:e7:93:85:e6:df:1b:ec:ca:56:27:92:48:f3:55:82:
14:77:0d:3b:0d:eb:53:bd:af:82:b6:06:ae:99:b0:90:9e:f5:
7c:8b:89:ab:4f:ff:b0:31:e8:93:ae:eb:e1:bb:63:50:17:2d:
ed:b8:2f:28:f9:07:9b:f4:31:b2:1c:0d:ea:f7:51:00:94:8d:
80:8d:42:fb:15:82:07:a6:2b:ec:4a:9d:9c:ee:76:f3:77:4b:
24:9f:38:81:64:d0:7c:c3:56:c8:2a:7e:d4:22:94:dc:18:10:
3f:bb:af:1a:a2:cf:a7:3c:6a:7c:df:91:93:56:5c:95:dd:d3:
23:72:4e:d9:f4:f1:93:3a:4e:ae:a4:3a:ae:56:4f:23:f6:e7:
57:7d:76:0a:65:c7:bd:d5:0c:cb:4d:72:44:0d:c5:1b:cd:42:
45:fd:38:a6:dd:cf:95:20:27:93:a9:91:1f:5e:13:ed:29:cc:
69:1b:06:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:11:17 2025 by rpki-client