Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
File: kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json)
Hash identifier: RQMrW/qaRg5ryVO6aTeJCYKsSa70lhbgduRzm/pMyAk=
Subject key identifier: A6:38:F1:4A:6D:07:78:14:FE:29:43:55:78:59:FE:D5:B8:D5:12:DD
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial: 01992C6B43C9C15E36F2AAB1FFAA350349C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
Manifest number: 1677
Signing time: Tue 09 Sep 2025 03:00:51 +0000
Manifest this update: Tue 09 Sep 2025 03:00:51 +0000
Manifest next update: Wed 10 Sep 2025 03:00:51 +0000
Files and hashes: 1: A9fnzzZSIyyk78DkykeGYg11L2Q.roa (hash: jan8f+is44AYa9jG93HTE50pBitsknBS00si8XIMwqI=)
2: DHmLK6qv7LDp9GSFF3bVVqiSSSs.roa (hash: 4c04LYJlSQnDFsWUTe3RinfcXPa5HIaLB5gKn1wNfQ8=)
3: X2DKxHgU0pJJ7l0RSAZexJQ4yk4.roa (hash: c4ZqtHFp+NEImgqSyGp/s8/x5ohWKo9ZUlSrkI+FleE=)
4: cM2WijieWcfz1get8DBHQkXXH94.roa (hash: YN463PMg+163k21SmND+h8gKso19maJII2obZdv1r0M=)
5: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: PIItKp/V38pTMlyjqG3ywyhDZrpFYPKMRoyZWAGgPHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:6b:43:c9:c1:5e:36:f2:aa:b1:ff:aa:35:03:49:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Validity
Not Before: Sep 9 03:00:51 2025 GMT
Not After : Sep 10 03:00:51 2025 GMT
Subject: CN=a638f14a6d077814fe2943557859fed5b8d512dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8a:f2:ae:a0:2a:04:09:59:2f:12:2c:ca:b6:
cb:3b:2f:f1:c4:26:86:ea:f8:35:e8:da:4f:bb:f3:
fc:d5:86:37:40:0f:c6:28:59:ed:1f:dc:f0:ab:f5:
70:ee:bf:28:1a:91:a5:31:20:2f:ef:84:18:0b:37:
a2:86:e3:9f:36:ce:4d:42:d2:3f:3b:ee:05:7a:7f:
69:e1:84:b3:62:87:6b:01:c5:a1:88:7f:5d:d0:84:
5e:d3:60:63:d1:d9:0c:af:15:d7:9f:3a:70:8f:f8:
ee:c4:d7:4c:05:01:1a:ae:94:1c:fd:ac:a3:b8:81:
50:d2:2b:8c:6e:ca:df:b8:1d:e4:03:48:c5:e9:bd:
35:f0:3d:1e:84:89:58:6a:51:3e:97:86:c2:d9:20:
0f:6a:e7:b8:b9:2e:cc:87:94:a3:0f:c4:6a:a3:79:
08:91:44:04:dd:82:f0:5e:64:1d:97:77:66:82:c8:
6b:52:df:2a:c8:8e:8c:eb:0c:8d:d8:62:42:f1:bf:
a4:e0:9f:07:5b:8b:ae:d1:f6:80:5b:9c:a0:f2:fb:
13:94:39:ed:49:fe:d8:16:e6:9a:c8:48:76:dd:ce:
1d:37:0c:4d:4c:af:9e:b4:91:8c:71:fb:d3:f6:64:
4b:8b:6d:df:6e:d6:39:dd:63:0c:27:a4:b3:bd:bb:
41:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:38:F1:4A:6D:07:78:14:FE:29:43:55:78:59:FE:D5:B8:D5:12:DD
X509v3 Authority Key Identifier:
keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:69:96:0a:88:64:8d:54:e9:91:2b:62:0b:c5:ba:cd:9b:93:
32:07:84:10:11:b1:bc:fd:0a:cd:24:13:26:3b:97:46:6f:09:
0b:aa:fc:b9:8b:07:69:30:8d:6a:a6:99:e5:b7:cd:3e:80:a3:
94:02:99:6f:03:8f:69:fe:4b:01:21:64:36:f5:76:10:e7:d6:
ec:f7:12:ba:1e:ef:1e:63:81:09:cd:b9:46:47:f0:64:4b:0e:
b4:21:4b:3e:33:be:66:e5:45:ed:06:a6:a0:d9:8f:db:a3:05:
c3:3d:48:bc:6e:12:1b:37:d5:73:fa:6d:33:aa:41:2f:e5:45:
3a:42:a3:0a:76:ed:53:f2:d3:f9:4b:da:92:bd:55:65:87:41:
10:bf:9a:f7:c5:f8:05:2e:dc:03:52:2f:df:a8:03:a3:ce:25:
cd:bf:c2:73:01:6b:9b:f7:99:e3:06:7e:bc:5f:b0:fc:11:89:
ed:48:47:4d:89:87:13:d4:60:c3:4f:9e:9e:51:20:1e:5c:b3:
fd:85:62:5d:d8:a4:64:07:33:3b:c0:e4:bd:dd:2d:0d:e2:05:
3a:ce:b2:84:95:2f:f9:16:cb:84:d7:1f:a4:55:9c:ac:d9:8f:
f9:17:35:9a:72:94:21:ae:43:f8:9a:f5:bf:ca:c0:dc:8f:cb:
a9:b5:2e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 09:51:19 2025 by rpki-client