Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: Ms9H7peQe9BP/5QlcOvOvMB2eJbl+3SmNRBiVcNjZIM=
Subject key identifier: 10:A8:44:F8:46:8C:EB:CC:07:55:E2:DE:E6:1E:60:09:97:1F:8C:E6
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 019921E76F2EF6616EE4802F22A659E268A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 0156
Signing time: Sun 07 Sep 2025 02:00:39 +0000
Manifest this update: Sun 07 Sep 2025 02:00:39 +0000
Manifest next update: Mon 08 Sep 2025 02:00:39 +0000
Files and hashes: 1: WJ8mDGp2R9SerzYw88vehn3HSik.roa (hash: h5SXKLsi4QXI6eIjbslnIuS0eoxKGY5pZRrkhG82mKM=)
2: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: pQDaNY9IWXcskXqWmt7kcUEmUTiOPpUXNiF2CNg4zis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:6f:2e:f6:61:6e:e4:80:2f:22:a6:59:e2:68:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: Sep 7 02:00:39 2025 GMT
Not After : Sep 8 02:00:39 2025 GMT
Subject: CN=10a844f8468cebcc0755e2dee61e6009971f8ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c0:6f:26:0d:d5:78:53:e4:a6:49:46:c8:00:
a6:c7:11:07:5b:fb:e6:f8:0c:58:82:bc:8b:f4:7b:
d1:c9:e4:5d:0f:7c:07:13:96:40:a8:2c:2a:ec:29:
f0:78:1a:54:bc:09:8f:d5:d5:69:9d:a1:f6:59:dd:
ab:68:76:9d:da:e6:50:3a:40:e0:51:db:5b:5f:a9:
76:e9:63:3b:c5:32:69:4a:95:15:84:f7:12:f0:db:
2a:26:0d:92:e8:52:80:e4:1f:67:8b:c9:2e:44:ed:
46:4b:6c:a0:0a:43:c8:fb:d7:22:4e:0b:72:0c:97:
8c:fa:00:41:bb:b6:37:b0:3c:d1:a7:77:3e:5d:90:
f9:60:2a:bd:e9:23:26:12:c3:ca:6f:30:57:c5:9e:
46:b4:2f:8b:c1:09:d8:05:ca:21:48:2f:9b:4e:a0:
6c:2d:5e:10:36:31:21:9f:fe:c7:46:da:3d:d1:c0:
21:d8:b4:d5:ee:f1:d4:64:9f:55:f5:cd:cb:32:c8:
b5:0f:26:59:67:4a:5f:68:90:cc:85:e9:e9:3f:0a:
aa:b2:48:a5:c8:27:66:0c:60:e5:35:07:18:b4:71:
42:1c:b8:97:20:e7:58:bd:f4:2a:14:2b:20:c3:6a:
35:1c:5f:1b:d1:72:e2:5e:1b:e8:5a:f4:4d:59:e8:
cc:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A8:44:F8:46:8C:EB:CC:07:55:E2:DE:E6:1E:60:09:97:1F:8C:E6
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:67:bc:2f:74:22:a2:5c:5a:51:11:e1:c4:83:18:f6:c1:94:
e1:74:d8:6f:1a:a7:4f:f4:ff:52:e1:54:1b:0a:e9:96:a0:da:
08:34:87:6c:7d:c2:35:9b:2b:7e:7d:2b:cd:2b:93:41:14:7f:
d5:19:9b:33:ac:d3:27:9a:12:9a:a6:2d:00:27:9f:6e:c9:8f:
11:72:79:ff:be:32:0a:fd:10:49:e3:56:a6:c1:c3:ad:3d:50:
31:68:b0:e3:1c:01:f8:b8:78:95:d3:6e:a6:68:84:88:e1:fd:
e8:64:ca:47:d9:10:5f:2c:84:d0:89:46:ef:ac:30:6b:e7:e5:
ac:df:5a:a2:f3:a4:ae:da:9c:5f:f7:87:af:dc:76:28:b4:05:
8a:81:56:de:37:7a:93:f2:0a:23:80:ea:c3:8a:5b:87:46:22:
d9:fd:e5:a4:28:f5:b2:0f:cc:f4:8a:e5:b3:7e:0a:28:8b:f0:
25:fc:ca:8e:82:69:b3:49:ce:23:1d:28:ac:45:fb:4a:e4:8f:
aa:6b:30:75:51:a2:55:f3:7e:8e:7c:63:5e:5b:e7:40:7f:3d:
3c:20:d8:7b:74:e0:03:08:83:c5:fc:2a:b9:5b:0c:22:d9:69:
42:ea:65:cc:97:e6:b7:76:52:37:8c:5f:e1:5e:72:e1:7d:dc:
b5:89:69:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:18:43 2025 by rpki-client