Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
File: YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft (raw, json)
Hash identifier: Bnroa7jpbnXClBsZ+LqZS/PclB5vXzezMP4/QOKICiQ=
Subject key identifier: BF:57:4B:80:94:D4:DB:F5:B5:7F:CE:5B:12:E2:E0:C6:75:F3:16:81
Authority key identifier: 61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
Certificate issuer: /CN=61041121ccc6e65d933961fd572d59e261f21a31
Certificate serial: 01992BC6BAC229CEE78C35187CFDA37FE9A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
Manifest number: 1677
Signing time: Tue 09 Sep 2025 00:01:08 +0000
Manifest this update: Tue 09 Sep 2025 00:01:08 +0000
Manifest next update: Wed 10 Sep 2025 00:01:08 +0000
Files and hashes: 1: EwMUoWYW4dc0tRkkx15ciptmQak.roa (hash: IxyoruIJ2PWmvP6nW1K1qsmgYgo96Vwp6Gm5YCkQlWE=)
2: YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl (hash: Wx/ojyXGvd4xBbqwsWuNPO4/9wfARTY1SfKCYnfXs1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2b:c6:ba:c2:29:ce:e7:8c:35:18:7c:fd:a3:7f:e9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61041121ccc6e65d933961fd572d59e261f21a31
Validity
Not Before: Sep 9 00:01:08 2025 GMT
Not After : Sep 10 00:01:08 2025 GMT
Subject: CN=bf574b8094d4dbf5b57fce5b12e2e0c675f31681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b2:a6:f7:2a:57:f4:16:67:e6:de:e0:b7:b6:
30:66:bc:c8:d5:4d:f4:a9:33:a1:21:2a:2a:c2:b9:
90:42:3d:91:3f:bf:10:71:cf:e4:d7:8b:f4:0c:db:
2c:1c:bf:db:cc:df:83:98:54:33:f3:6c:2f:16:9f:
c4:aa:d6:36:69:f6:c9:56:4a:2c:b1:16:b7:34:4c:
2a:e8:f8:bd:2a:7b:2d:5d:fa:b4:ff:d0:33:6f:60:
b0:6c:3b:ff:ee:3c:2d:c4:c1:84:8d:21:fa:bb:5e:
3e:5c:05:c5:bd:81:22:05:77:3e:fe:bd:14:52:7a:
38:37:6f:fc:45:bc:5f:eb:78:4d:5e:45:9e:5c:e0:
aa:2f:2d:ac:9b:8b:3b:97:33:22:ec:d7:f4:7c:3b:
90:66:dc:e3:b0:86:72:85:f1:f2:29:0c:44:8d:04:
52:80:19:49:05:e8:77:9b:fb:8b:3b:60:94:54:7b:
09:25:87:12:41:c1:44:96:76:d7:1b:b6:41:a8:23:
a5:2e:64:93:02:26:db:46:3f:2b:8a:31:a5:1f:fc:
c0:35:07:ce:f6:2d:44:98:34:f4:a5:d1:13:5f:9d:
a9:06:b2:07:8a:83:c0:b0:28:b2:f8:c7:7d:41:13:
35:35:c6:87:50:eb:f9:de:62:2b:9c:e6:9d:05:bc:
6a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:57:4B:80:94:D4:DB:F5:B5:7F:CE:5B:12:E2:E0:C6:75:F3:16:81
X509v3 Authority Key Identifier:
keyid:61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:cf:5a:f4:0e:04:cc:03:63:4e:93:b4:d8:04:a4:a2:32:23:
11:c5:17:30:96:d6:27:7a:ad:7d:85:15:55:29:56:e8:24:69:
57:ba:87:77:73:ec:99:9b:50:54:ba:4c:05:bb:2b:94:ba:0f:
96:c2:d8:59:37:fb:87:c5:84:57:f5:b5:a5:cd:a9:23:e9:46:
a8:f7:4b:40:ae:4d:05:76:6f:a9:57:42:6d:ad:5f:00:df:52:
2a:1a:fc:61:5f:bc:97:cc:6b:99:ba:b2:7d:b5:d5:59:06:c7:
7d:07:1e:90:7f:7f:f1:bd:02:10:23:86:16:70:c7:bc:8c:af:
01:3f:ef:5e:39:65:db:ac:82:c2:95:a4:be:47:ed:5b:9e:27:
41:00:e8:f6:81:e9:ac:0b:84:2d:11:37:25:14:6f:dc:f9:ab:
f6:ab:a3:8d:b4:d6:bd:24:cd:bd:6d:e4:32:9c:7c:a7:ba:56:
6a:69:c0:a1:31:ee:99:90:cb:25:f9:af:da:3b:c7:57:9b:a5:
e6:b1:44:00:12:71:6b:9b:31:36:8a:e0:07:ca:ff:23:ed:cb:
d2:4c:90:9c:ea:00:17:95:0f:2c:ca:98:c7:fd:61:ef:2b:49:
ec:c3:32:37:e5:38:51:3e:cb:93:32:1f:ab:b8:d0:88:c4:06:
4e:18:12:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 08:45:05 2025 by rpki-client