Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft
File: 2yOWhUCfZLocOlSo7xQckk5x2JI.mft (raw, json)
Hash identifier: h1v4NUjYLdE30Ld06ZaRa+t5s+PRcBM4ffba20sxkXc=
Subject key identifier: CA:F8:79:EE:14:E5:D1:28:3B:E8:A7:57:A4:91:B0:8A:05:5B:E4:FC
Authority key identifier: DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92
Certificate issuer: /CN=db239685409f64ba1c3a54a8ef141c924e71d892
Certificate serial: 01993501D5DCDE695DC2DB51E71D705CF39D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft
Manifest number: 1688
Signing time: Wed 10 Sep 2025 19:02:16 +0000
Manifest this update: Wed 10 Sep 2025 19:02:16 +0000
Manifest next update: Thu 11 Sep 2025 19:02:16 +0000
Files and hashes: 1: 2yOWhUCfZLocOlSo7xQckk5x2JI.crl (hash: xIoyJiYxcT++OgLnUeFtY6xGYeGMN8cUGaDHMz1K86k=)
2: 9AJVL74Koo20QslQbsW5LgWmuN0.roa (hash: ywfcVkqztZIsa4yV5w7CN7DaKI/bsZeXQWa9VUzq1PU=)
3: J0YtvwjSdo7VUDjhuTN3dGHM7bY.roa (hash: 44Y8BMgB+sH5b8+axfLWpVcHTARgYoCnMt7xMsge5P8=)
4: _SYIhCf3pmsd3GO_bPZ9LmXX9yI.roa (hash: yLq+2S7VzCleP2MSt8WxD7vanT3ofV/BHsfwwfGB6uA=)
5: k8SmLkdRoGivF16GFM2hqIOouBo.roa (hash: Ktq3us91dVySgQu0CPwEqVesPVx0pk3gPFhcWjBn49E=)
6: qHajeM7KS0OkvXZ6gKIN6UcTzPg.roa (hash: 9Inme+UM24UQgsOmhNMhOS7m0XYuhceY/GRE7b5eI94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:01:d5:dc:de:69:5d:c2:db:51:e7:1d:70:5c:f3:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db239685409f64ba1c3a54a8ef141c924e71d892
Validity
Not Before: Sep 10 19:02:16 2025 GMT
Not After : Sep 11 19:02:16 2025 GMT
Subject: CN=caf879ee14e5d1283be8a757a491b08a055be4fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9d:db:4b:59:b9:f2:f3:85:98:fe:39:3c:b0:
f7:ff:43:9f:85:ef:91:31:90:10:18:5c:23:71:46:
05:de:08:95:23:ce:0a:53:83:a9:01:10:df:9d:92:
d8:96:9b:97:d1:0c:07:a9:82:bb:ff:9d:03:94:8c:
39:e4:d1:3f:3a:2c:c4:d0:6c:a0:e0:e1:2e:8d:96:
43:8b:d2:03:79:49:38:70:a6:13:b3:2a:5a:39:18:
ad:5c:b8:8f:90:f7:e2:94:37:91:21:f1:bf:7e:44:
fc:ea:ea:95:d0:54:61:b9:42:19:bd:e8:33:37:32:
2f:08:c7:a0:6b:ab:d8:13:b6:bd:09:7f:85:ed:2a:
42:fc:44:30:41:c0:fa:a4:c1:9c:3e:80:78:5e:94:
ff:f1:41:a4:9a:43:cd:68:d2:40:2b:64:b1:43:ce:
bf:33:20:7a:1e:62:35:59:46:98:05:8b:60:c1:c9:
38:13:45:58:63:e4:c7:62:72:6b:62:c1:61:ee:9a:
96:6e:74:44:29:f1:65:57:77:dd:61:3c:e9:79:27:
6f:c8:2c:25:dd:6e:d1:ff:b2:4a:c1:88:f6:0c:ae:
6a:41:94:8b:2a:3e:bc:0a:75:b3:24:c9:e9:3a:cd:
bb:68:a0:21:4e:98:d9:bc:20:a4:12:b3:ec:bd:06:
74:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F8:79:EE:14:E5:D1:28:3B:E8:A7:57:A4:91:B0:8A:05:5B:E4:FC
X509v3 Authority Key Identifier:
keyid:DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:7b:4c:26:93:1c:a4:fd:b4:c5:f8:5c:43:20:a1:88:7b:86:
45:39:89:2a:47:cc:8d:72:61:b6:e4:16:68:dd:78:25:96:10:
32:e1:64:7d:d2:28:30:8d:32:1f:05:eb:ce:0a:c7:dc:9e:69:
cf:85:9e:b0:49:60:dd:2f:39:35:13:da:87:3d:d4:f3:25:ae:
64:99:72:ed:6e:7d:bd:ad:b4:68:83:f3:07:82:cc:f1:44:5a:
24:d8:5a:81:c8:3f:5f:63:33:72:c2:d9:c6:da:72:15:a5:75:
81:e9:31:e6:4b:2e:36:5f:13:1d:e7:12:9b:e8:3b:65:89:71:
f6:9d:dd:2b:b1:55:37:37:b9:c8:8d:86:28:70:90:58:bb:48:
4f:b9:02:02:bb:b8:04:37:f7:75:85:23:2c:0c:6e:20:0f:8a:
10:1b:ac:d1:c5:5b:3f:0b:a4:4d:9b:38:f8:a4:46:7d:cb:bf:
9a:f9:2d:05:3a:75:26:e3:74:fe:5a:7b:32:a1:aa:09:d5:67:
45:97:ad:4d:a8:46:14:35:2a:a1:f4:cd:67:16:e9:6d:9a:55:
aa:73:68:39:e7:77:fb:95:3e:b0:6d:27:be:a8:59:84:2e:40:
ea:6b:75:27:eb:be:de:fd:80:3b:c0:22:2f:7a:95:c3:52:5b:
01:ce:f7:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 00:58:25 2025 by rpki-client