Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
File: y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft (raw, json)
Hash identifier: J54Fk/U6ouTmS9v0dmU1MCk9S1RfJBDKno3p7+HOPpE=
Subject key identifier: 25:AD:E2:BB:4A:50:F3:3F:15:80:06:A8:A7:B4:CA:2D:2A:A8:C0:30
Authority key identifier: CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
Certificate issuer: /CN=cb608201f88aeae9486b9fa87189d796c54027dd
Certificate serial: 0199315A6B80967613066AFB0CD86BBCA2B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
Manifest number: 0701
Signing time: Wed 10 Sep 2025 02:00:33 +0000
Manifest this update: Wed 10 Sep 2025 02:00:33 +0000
Manifest next update: Thu 11 Sep 2025 02:00:33 +0000
Files and hashes: 1: Nf0Y97WoRq7pU_teevRi4FwBAIs.roa (hash: O1xztXnSDxA9BVjGt2O7JPCTRL9a6O2EeAtFUNC9SMU=)
2: y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl (hash: Vx7ciiJtfevWs/yZAs23nIsING9uotyr8SlMhjmPUnc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:5a:6b:80:96:76:13:06:6a:fb:0c:d8:6b:bc:a2:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb608201f88aeae9486b9fa87189d796c54027dd
Validity
Not Before: Sep 10 02:00:33 2025 GMT
Not After : Sep 11 02:00:33 2025 GMT
Subject: CN=25ade2bb4a50f33f158006a8a7b4ca2d2aa8c030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:34:38:1e:e1:b2:93:e2:7e:5f:5e:33:04:ab:
b5:0c:cc:22:a6:52:00:49:f3:14:65:2a:88:4e:39:
4d:9f:e6:eb:8e:37:be:ca:01:9c:3e:f1:43:b0:22:
a4:6b:b6:8f:16:bc:4b:7f:3a:50:44:2a:6e:d3:80:
0f:66:c3:aa:36:db:8c:a5:0c:36:c8:63:71:15:05:
80:94:3d:c2:88:4b:05:ce:ca:66:a7:d9:04:47:cf:
8d:e0:16:73:13:98:13:28:8b:2c:3a:97:c8:26:d1:
50:72:45:14:5c:65:f7:78:29:27:09:d3:09:b8:e5:
80:61:4b:a4:6e:ac:c9:84:8d:24:f8:8f:ec:9f:b2:
ab:3b:db:77:e3:85:91:9a:e1:7e:4f:69:5f:3e:56:
0e:29:26:bd:64:07:64:6f:cb:2f:3d:e8:60:7b:d7:
f5:72:49:ac:41:20:e3:28:67:0b:ea:4f:4b:f7:a6:
33:7e:68:05:23:ed:f8:6e:b0:6a:f8:0d:a0:0c:5f:
e0:65:31:3d:37:94:cc:0f:36:04:59:4a:03:6b:26:
5c:bb:74:67:c8:73:7a:f0:ec:1d:da:cc:f3:c6:56:
b2:19:cc:11:3c:8b:d9:61:d5:e9:23:f3:df:0b:96:
54:f3:4a:c9:6b:68:24:d4:cd:56:be:40:d7:f3:9f:
92:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:AD:E2:BB:4A:50:F3:3F:15:80:06:A8:A7:B4:CA:2D:2A:A8:C0:30
X509v3 Authority Key Identifier:
keyid:CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:1c:24:dd:f8:39:78:1f:3f:b0:67:f0:80:83:85:5e:6e:78:
b9:fd:34:b2:ec:7a:48:a8:7f:97:44:05:1d:7e:31:6a:cd:e4:
4f:2c:33:b1:42:7b:3c:25:69:2a:e5:a1:2c:c1:fa:bf:8c:5e:
e0:a2:8e:8b:83:ed:28:dc:9c:b5:b1:bf:55:eb:db:2a:d1:ae:
1f:ac:ed:df:17:e1:53:47:f2:d2:49:ac:fa:ac:bf:4e:8d:41:
31:4e:0f:84:9b:04:f2:40:fb:ac:7a:65:f9:11:1f:1a:7a:f4:
91:62:f2:e7:bd:38:fc:5e:b2:da:64:9d:21:96:c6:09:49:f4:
40:47:4d:6a:54:04:23:e4:3a:2a:2b:6a:63:26:09:b7:eb:a6:
b3:ee:d6:47:5a:fc:51:99:f2:5e:e8:c7:90:e7:d2:7c:2f:17:
e6:ff:be:ab:5e:5d:9c:0f:bb:93:d1:ba:00:e7:c6:1e:7a:27:
16:a5:41:10:df:04:5b:5c:45:31:80:a3:3a:b7:aa:f0:42:a1:
85:6a:79:6f:32:87:8a:e0:d6:6e:44:fa:03:3e:72:98:5d:53:
38:2f:7b:8a:3b:96:82:d3:0e:3e:4d:2a:c7:27:80:94:19:2b:
f4:9a:60:f4:53:e3:05:64:33:17:54:9f:34:e6:cf:ba:5e:d2:
ef:21:5a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 12:42:09 2025 by rpki-client