Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
File: YdOLN5gKDfrpz5osW1at6X-vUC4.mft (raw, json)
Hash identifier: wfm1aEAF9ytgjClJ2HFCB/yOPvvMOJ4xD1gxGxam1R8=
Subject key identifier: 11:B9:DB:08:85:DC:84:B1:01:87:E1:0E:47:AB:22:2E:53:F3:95:4C
Authority key identifier: 61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E
Certificate issuer: /CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e
Certificate serial: 019938DF81E71B4C6F3B7D91EF975F919D0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
Manifest number: 0B08
Signing time: Thu 11 Sep 2025 13:03:15 +0000
Manifest this update: Thu 11 Sep 2025 13:03:15 +0000
Manifest next update: Fri 12 Sep 2025 13:03:15 +0000
Files and hashes: 1: C_VxgsrOTNHfcbo19nO36kuNZTY.roa (hash: elP/uo536peeHFglZZfLB7X6uPEm9F3vZkqB1C65yyw=)
2: YdOLN5gKDfrpz5osW1at6X-vUC4.crl (hash: nOUcjyMt0cNgfYOuPOmhai74WPLaMMlq7pvJVjjywQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:38:df:81:e7:1b:4c:6f:3b:7d:91:ef:97:5f:91:9d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e
Validity
Not Before: Sep 11 13:03:15 2025 GMT
Not After : Sep 12 13:03:15 2025 GMT
Subject: CN=11b9db0885dc84b10187e10e47ab222e53f3954c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:eb:bd:55:53:b4:d2:3d:f1:49:8c:76:26:0a:
a2:11:61:1d:8f:ec:27:b6:8c:58:8f:ab:85:2a:ef:
53:f0:b5:df:ec:ef:77:1a:b9:b6:c2:72:0a:aa:f4:
b8:c4:e5:1d:cc:10:80:2b:4d:d1:8e:2d:8a:0e:d3:
6f:91:9c:4b:eb:66:25:ab:91:54:76:8f:5f:20:3a:
8f:21:7a:d1:70:57:4c:b3:e2:aa:bd:c1:3b:2c:1d:
fc:89:84:c4:09:ee:ae:21:dd:4d:dc:66:ea:38:d7:
b3:0e:c8:89:f8:c0:0f:ad:bd:e2:52:99:3b:70:d3:
5f:0f:4e:04:2d:1f:71:97:c9:eb:1c:0d:0d:83:c3:
b5:dd:99:a8:4b:c9:bf:3c:1c:9a:ad:43:34:05:ac:
7d:8e:cc:37:e2:4f:9d:33:de:b3:b5:a0:03:41:db:
81:84:ac:95:98:8c:99:85:f6:83:53:7f:79:e3:73:
87:c0:5e:8e:9a:38:2b:50:fa:c5:46:e1:cd:bd:5a:
10:c1:5f:07:13:98:f1:b6:c3:48:a7:01:e8:1a:bb:
58:ac:26:0c:40:aa:7b:74:3a:25:be:48:f8:30:cf:
a2:69:e1:57:7f:7f:69:3e:45:a6:99:22:d0:aa:08:
6a:53:05:5c:16:ec:17:3c:41:e5:68:68:30:d1:8e:
48:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B9:DB:08:85:DC:84:B1:01:87:E1:0E:47:AB:22:2E:53:F3:95:4C
X509v3 Authority Key Identifier:
keyid:61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:9c:e2:49:65:9d:fd:41:eb:c4:d9:8e:f9:f4:93:a0:04:e9:
8e:c6:a3:c9:da:71:e7:4b:32:ce:e8:c0:f2:ac:19:24:8c:d2:
46:53:51:7c:bf:e2:61:5b:67:a2:84:70:65:f5:ae:e7:68:30:
86:53:e7:12:3f:84:cc:f6:20:84:b6:d3:59:86:b9:98:2a:ea:
9b:0c:92:13:0c:f2:48:e9:ec:11:3c:3c:0f:9e:42:47:d4:60:
bb:0e:c0:e8:cb:83:f4:fe:c3:e0:b3:ac:b6:ef:04:35:8d:79:
2d:88:f7:7b:57:05:5e:f5:e1:eb:c7:44:ab:47:07:ab:64:c5:
10:3f:d2:b2:7d:17:98:44:0c:c4:b9:21:75:e0:29:b1:39:8f:
21:e7:a5:3b:a1:8e:cb:7a:ed:ed:01:73:23:20:15:98:f0:2a:
13:b7:08:1a:0d:85:3c:d4:50:58:5a:ec:06:bc:25:1a:6f:e7:
11:1f:aa:5e:f9:4b:80:b4:99:65:27:4e:38:ac:d0:ea:01:4a:
44:ba:a3:f3:ed:88:8b:89:af:d4:e1:be:aa:9c:58:52:2e:1d:
7f:54:be:8c:b4:6e:78:7e:6f:0d:12:74:10:bf:4e:f8:69:30:
e4:1a:09:6e:13:42:f2:55:dd:24:d1:fa:1c:f9:96:55:78:03:
66:c5:ba:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 14:47:13 2025 by rpki-client