Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
File: 0YHQxAlRpPkA5NndnCDkhWNQkg4.mft (raw, json)
Hash identifier: zshBroPH+fD1KhApBXVGMS9BcG8WlhsEeftm1L92NiA=
Subject key identifier: E7:64:17:F3:DA:E9:6E:90:C6:38:31:3D:BE:61:EE:F3:1F:F4:04:62
Authority key identifier: D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
Certificate issuer: /CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Certificate serial: 01992BFD4CD8D65898EC0C6D2EFE67B8D8B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
Manifest number: 167B
Signing time: Tue 09 Sep 2025 01:00:44 +0000
Manifest this update: Tue 09 Sep 2025 01:00:44 +0000
Manifest next update: Wed 10 Sep 2025 01:00:44 +0000
Files and hashes: 1: 0YHQxAlRpPkA5NndnCDkhWNQkg4.crl (hash: qu5oHeC5OrCf+UC/L6HtlGQYf/xXSdTiC9HjG1HJ/o8=)
2: 2VAk9AH_jCxBcmS3UFNJkQWmjmM.roa (hash: OTJmVbnhsENHWSTSM66puZiLKu+kw6NtZbXCQeGN/YQ=)
3: 5kzmDTi0KIXTn8Ss2d36rIX1bZA.roa (hash: VgZeJy91lZpXmzMfyFbTui1JSN8xoQwBbcwBQ01/D0A=)
4: SA8oSTczcAjgQR1zXNlc0Vgrtd0.roa (hash: fw6Ud0wGZN9ltnlpcBVHmq+wSri7RZaFK71pfthgGyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 01:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2b:fd:4c:d8:d6:58:98:ec:0c:6d:2e:fe:67:b8:d8:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Validity
Not Before: Sep 9 01:00:44 2025 GMT
Not After : Sep 10 01:00:44 2025 GMT
Subject: CN=e76417f3dae96e90c638313dbe61eef31ff40462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:41:45:c7:54:58:0a:40:44:47:5e:47:9e:cf:
ff:4e:f3:de:03:08:9c:ed:25:e2:d7:1e:40:18:60:
59:a1:46:e2:2c:3b:4b:ab:d1:28:9e:f1:8b:e7:87:
b3:53:31:62:ff:a7:6e:f9:9a:eb:69:e3:56:6b:26:
6c:f5:96:b6:08:2f:d2:74:c0:b0:e4:2f:58:a5:61:
20:70:eb:6f:48:90:29:02:90:b3:91:c5:5b:99:16:
2f:79:af:e4:84:3f:f8:cb:1d:b5:2a:b5:75:ab:34:
6c:58:ff:8b:0f:6b:9a:11:2a:ad:9b:d9:42:e6:12:
3c:7a:04:d8:ae:3f:a0:d9:84:8c:49:55:83:97:a3:
d6:90:c6:a1:72:cf:56:3a:48:1c:f7:53:a2:08:68:
94:d3:04:79:65:c8:2f:f9:82:29:2e:00:3f:3a:18:
0b:d6:e4:d0:66:35:8f:8b:64:da:82:d9:30:ea:9f:
75:b5:80:07:8a:b7:32:fa:af:5b:cd:4b:60:bb:66:
bf:cf:77:e3:56:3f:1e:04:a4:67:3c:d1:42:ba:bf:
e7:5c:b5:f9:0d:1a:50:11:f6:d7:25:48:66:1e:96:
a3:7f:81:b6:7a:8f:41:67:98:6f:59:ff:51:41:58:
92:f5:6b:10:83:bb:17:6d:40:fd:65:a2:53:24:34:
82:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:64:17:F3:DA:E9:6E:90:C6:38:31:3D:BE:61:EE:F3:1F:F4:04:62
X509v3 Authority Key Identifier:
keyid:D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:7e:e0:dd:cb:e3:74:cd:f8:84:2f:30:b0:cd:a9:89:b6:13:
95:c2:f2:6c:cd:41:84:3e:4b:83:ef:cd:18:d7:54:34:a5:2e:
0d:88:48:11:05:8d:bb:b8:67:bc:7d:a2:dd:54:8a:f3:8b:ca:
80:1a:31:7f:45:34:78:41:d8:48:b2:da:31:39:01:d8:46:e0:
62:13:87:45:23:84:84:32:fe:a2:7c:9e:e8:7f:df:33:0d:25:
c9:03:11:88:44:8b:4f:ac:26:32:04:1b:6c:c4:c2:2a:44:69:
2c:af:01:d7:2c:7f:e7:cf:f4:7f:e4:8c:d0:25:f9:42:7e:ab:
97:f3:f4:a0:bd:c3:52:f1:b3:5e:75:67:f3:11:9e:47:c4:87:
e0:46:c0:30:09:ed:00:50:c7:4f:e5:8b:75:dd:a4:96:ba:89:
52:a1:0e:83:d5:eb:49:7b:56:7d:5c:a8:dc:41:f1:cf:65:fc:
4c:b0:fb:b3:41:b0:ae:4d:da:1e:a3:3f:0a:11:1d:f1:b3:c3:
a1:2c:c3:d2:67:46:f9:dd:e6:52:91:2b:a0:26:63:38:3b:43:
4a:c1:07:4c:85:9b:77:df:19:f5:8d:8f:f1:8a:b1:f0:85:15:
b9:ec:43:59:6d:d4:50:54:d0:b7:92:fd:2d:29:3e:ac:8e:39:
0e:9e:3b:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 09:00:20 2025 by rpki-client