Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
File: yjuG5lRw-ZTfptb-6OJk22LiSvk.mft (raw, json)
Hash identifier: EYUfMMQuvHBLTCDKPv7T0rJCbExRlAN987oQGeyava4=
Subject key identifier: 61:1F:81:9B:9A:05:6C:B3:EC:BC:20:5B:3C:A4:0E:FB:EE:78:D9:8D
Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Certificate serial: 01993124A71D7389366369FBEE74D1D11CD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
Manifest number: 1681
Signing time: Wed 10 Sep 2025 01:01:49 +0000
Manifest this update: Wed 10 Sep 2025 01:01:49 +0000
Manifest next update: Thu 11 Sep 2025 01:01:49 +0000
Files and hashes: 1: Db8DTjUYkYFq1VL2utnrt9ZhoOQ.roa (hash: d9GgydKG9uk/HAxIswAdFFBoSDorEX71FTaOERwLhzg=)
2: RfiogXB75ZZcw60YgsMcLXMGreQ.roa (hash: CxagJfgQ+HRjqYYAQUHG4nzSSm5GU9hHUNpe0/HqHLA=)
3: Vsvw7zSK2cjlfLBPzsEjNibepw0.roa (hash: fMTdJF0J/U/sST/3YzLYOWjYa8T84ONedHLdQ86kfmA=)
4: WTl9wt0Rp1_SP8V72BWndXzvVXk.roa (hash: BI9xuqlMchALIUZfnOAm1MAIdvbV4MZUCOFrf3rfZgA=)
5: yjuG5lRw-ZTfptb-6OJk22LiSvk.crl (hash: cGpXTWRChDPukPYbX0Gqdemtv8jXqquOzan7gzWkzRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:24:a7:1d:73:89:36:63:69:fb:ee:74:d1:d1:1c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Validity
Not Before: Sep 10 01:01:49 2025 GMT
Not After : Sep 11 01:01:49 2025 GMT
Subject: CN=611f819b9a056cb3ecbc205b3ca40efbee78d98d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f2:ef:37:1c:bb:25:6c:1b:66:e1:8c:ca:5f:
80:07:67:c9:66:78:bc:ee:3b:13:e1:61:c8:da:74:
d2:dd:be:ff:4d:e7:3d:45:4a:ca:c2:5e:7f:89:cd:
89:99:c6:b9:fe:ff:40:22:42:38:37:35:0c:01:09:
7b:84:b2:ab:94:01:66:94:9c:84:fd:87:1d:8d:89:
72:a4:3c:f1:ae:e7:dd:22:0b:ae:cf:e3:fa:24:d8:
c3:b0:7a:2c:db:b2:43:2b:dd:dd:7d:15:a3:4c:9c:
ef:03:e2:86:58:97:68:a7:02:83:0f:47:f5:bb:53:
74:e6:da:76:85:a2:02:f2:bf:4c:3b:98:b5:f1:7a:
df:17:58:26:92:ab:62:83:3a:32:c4:14:be:a3:33:
07:56:4b:9c:dd:86:69:90:3b:27:ac:85:1a:b5:39:
72:3a:fd:48:73:7e:a6:c5:5f:d1:dd:d5:99:e0:9a:
23:ed:9c:91:62:77:07:89:42:f4:66:21:1f:4c:12:
74:81:cd:00:a4:c4:f7:94:37:28:8f:db:15:65:22:
bd:9a:74:a5:8e:f3:f7:d2:15:5c:03:7a:70:d5:9f:
91:46:bb:67:ba:bc:0e:ba:ba:58:6f:21:e8:5f:52:
73:f7:cb:26:41:a8:a4:2d:bb:7a:6e:a6:62:a5:35:
bf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1F:81:9B:9A:05:6C:B3:EC:BC:20:5B:3C:A4:0E:FB:EE:78:D9:8D
X509v3 Authority Key Identifier:
keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:b3:a3:40:c1:c2:c1:8c:c3:25:bf:ac:91:ca:80:86:d3:e2:
d5:71:e4:38:7f:08:3c:d3:16:6c:09:12:57:02:95:9f:1b:d6:
27:72:26:a7:ef:16:60:83:65:34:b4:a6:e7:d9:7d:52:85:f4:
c6:f5:0c:5b:65:4b:0c:78:55:94:31:1a:1f:a9:75:f8:0d:85:
13:74:74:68:b6:c5:69:9e:35:5b:86:c6:15:eb:a8:2d:a7:60:
02:bc:75:d7:13:5d:e8:82:78:05:f6:b8:a9:4d:88:fd:70:bc:
9e:65:84:be:0d:dc:7e:c6:84:82:1d:21:59:03:da:21:09:f2:
87:cc:1e:76:ec:66:b2:85:37:90:81:a0:1b:de:6d:40:88:93:
25:b5:33:80:49:80:07:c5:64:9b:3b:41:3b:f0:56:fd:67:83:
4f:42:60:04:17:19:ae:73:ef:da:27:36:1b:c6:81:62:f5:46:
53:b1:be:67:60:39:02:dc:24:64:22:e2:2a:0e:b9:c0:a0:18:
7a:48:f6:d4:90:ff:7b:42:95:e7:93:f2:45:7b:fb:0a:79:d0:
cf:e3:9e:6c:3a:a6:eb:01:0b:da:0f:20:83:06:a9:83:95:af:
18:ad:e3:2f:7e:dc:f7:63:47:7a:be:98:a9:f8:3b:6e:50:8b:
45:2e:4d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 04:48:12 2025 by rpki-client