Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
File: yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft (raw, json)
Hash identifier: GRDzbSMglcLncpPdj+GUgeMggedmYP4PLVB0GAj/VkU=
Subject key identifier: F6:4E:29:64:8C:26:C8:12:CB:26:4D:B8:36:53:D3:A8:42:7B:2F:19
Authority key identifier: C8:E5:0C:A1:71:34:83:7A:50:D3:06:3D:43:D4:43:38:5A:BE:6F:49
Certificate issuer: /CN=c8e50ca17134837a50d3063d43d443385abe6f49
Certificate serial: 019961D9BE3C777B668F6C1FE06E8CCFC427
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
Manifest number: 1607
Signing time: Fri 19 Sep 2025 12:01:23 +0000
Manifest this update: Fri 19 Sep 2025 12:01:23 +0000
Manifest next update: Sat 20 Sep 2025 12:01:23 +0000
Files and hashes: 1: kclBuRKTMfByXqrmrwIbc_lZEnM.roa (hash: MQr5fqlXn7Xd/Z8IgiENjDF+OVj4PMx+/5QB1sHm+8E=)
2: yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl (hash: oVSwAYeVeB/6NV29CFgh9ETMrglNrqi/l3v7QoZT4Og=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:61:d9:be:3c:77:7b:66:8f:6c:1f:e0:6e:8c:cf:c4:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8e50ca17134837a50d3063d43d443385abe6f49
Validity
Not Before: Sep 19 12:01:23 2025 GMT
Not After : Sep 20 12:01:23 2025 GMT
Subject: CN=f64e29648c26c812cb264db83653d3a8427b2f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:85:32:3d:1d:e6:1c:eb:f4:50:b3:62:bc:f1:
bb:a6:7a:63:2a:7b:84:9f:88:6c:b7:d8:7c:2f:0d:
c2:80:68:74:29:8b:9b:29:d3:31:e5:a8:0a:70:3d:
2e:0f:0a:c3:eb:a3:22:54:e2:01:ab:73:87:85:59:
8c:9c:b3:0d:c7:a4:3a:52:63:fb:84:d5:4e:f5:0e:
b5:8a:3a:8e:55:35:e8:0a:ea:f1:28:02:cf:c3:99:
ae:a5:3c:7d:e1:96:9c:d4:05:89:35:48:c7:a2:94:
71:e2:1d:19:42:76:cb:74:07:7d:aa:3b:74:f9:39:
8e:c5:2d:d8:b2:f2:56:66:c4:47:da:aa:bf:f9:fe:
24:23:e4:91:0d:d3:a6:c9:9b:ec:82:9e:f1:dd:9e:
cd:ad:c1:bb:68:eb:12:3a:f0:eb:34:9f:e2:30:38:
2c:d4:ef:d6:7c:a1:4b:06:48:8c:f3:10:76:50:d2:
93:05:ce:05:8f:c8:ee:67:18:bb:3b:7f:52:78:0c:
77:e0:56:5f:8b:21:4f:db:8a:6b:f4:cd:9f:8d:4a:
5d:f5:12:04:99:f0:74:22:2d:3f:d8:9a:ba:ba:43:
73:5d:b1:83:cf:5e:b8:e5:08:da:ae:34:a3:da:bc:
21:83:60:29:56:d6:3b:fb:52:54:8c:82:7b:12:c6:
a1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:4E:29:64:8C:26:C8:12:CB:26:4D:B8:36:53:D3:A8:42:7B:2F:19
X509v3 Authority Key Identifier:
keyid:C8:E5:0C:A1:71:34:83:7A:50:D3:06:3D:43:D4:43:38:5A:BE:6F:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:97:26:98:e9:30:3d:fd:d1:42:66:4e:7c:d6:c6:3d:c8:df:
49:1f:d8:4a:bd:e6:20:35:0b:cc:b7:19:c8:dc:41:08:7a:a8:
8b:0d:cd:47:18:31:a9:d8:fe:f0:2b:5b:43:93:74:ef:b7:74:
e0:90:d5:c2:9f:7a:ac:f8:58:75:2b:9e:6f:63:90:f9:0d:25:
45:66:0a:ab:6b:7e:24:16:25:91:52:18:b8:2c:f4:f1:e4:22:
a3:dd:5d:96:04:57:3b:5c:04:f6:eb:a4:1f:92:8b:08:e2:5e:
b5:ee:0f:bb:41:10:f9:5e:b0:5c:b6:39:67:e9:61:9d:76:fb:
c1:8c:e6:3d:53:1f:e8:a7:a6:df:f1:e6:c4:dd:31:e1:5c:18:
09:0f:29:01:f0:f5:e0:4b:7f:d4:5c:66:82:ff:d6:0b:d9:21:
c5:13:e6:11:fa:12:81:79:b7:ab:2e:6f:17:c3:65:ac:4c:9a:
4f:2f:b5:7b:65:67:07:75:a3:b8:4f:ba:79:a8:21:d4:4f:8f:
90:d5:ea:ef:6c:7b:61:a3:55:62:d8:54:53:47:8d:b2:c2:a3:
96:2b:7f:ac:bc:f7:f0:9e:90:65:f0:97:6c:41:38:5c:7e:b3:
50:c5:fd:56:32:5b:04:7e:57:b1:5f:23:97:d1:dc:11:a2:f7:
f0:15:cb:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 17:31:26 2025 by rpki-client