Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
File: YAc2XgzzDKj86YxiZg0YapebyVk.mft (raw, json)
Hash identifier: Z44/WtmF8BKJ4APGDxxaiSzbS9BMiPh+YBIhfFYFKD8=
Subject key identifier: B2:D4:0F:83:8A:7F:60:F1:45:22:A0:0B:8F:7C:5A:ED:5D:D7:21:D1
Authority key identifier: 60:07:36:5E:0C:F3:0C:A8:FC:E9:8C:62:66:0D:18:6A:97:9B:C9:59
Certificate issuer: /CN=6007365e0cf30ca8fce98c62660d186a979bc959
Certificate serial: 0199228C684D00E8854B0AE32C406BFD9FEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
Manifest number: 09CF
Signing time: Sun 07 Sep 2025 05:00:50 +0000
Manifest this update: Sun 07 Sep 2025 05:00:50 +0000
Manifest next update: Mon 08 Sep 2025 05:00:50 +0000
Files and hashes: 1: Oc_LJaADC2cknQ1kKmCdsTOaMZk.roa (hash: JMTbvNQOvHmoLJzyFa8UDUWlgTHr2CpWgpqDOMIvsck=)
2: YAc2XgzzDKj86YxiZg0YapebyVk.crl (hash: 3qa7TuHa+BZDUFclsnJ8rbldIjFt5C9eTjA++sGuwy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:68:4d:00:e8:85:4b:0a:e3:2c:40:6b:fd:9f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6007365e0cf30ca8fce98c62660d186a979bc959
Validity
Not Before: Sep 7 05:00:50 2025 GMT
Not After : Sep 8 05:00:50 2025 GMT
Subject: CN=b2d40f838a7f60f14522a00b8f7c5aed5dd721d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:25:c2:ed:b4:ef:a4:7a:9b:1e:c0:ee:96:3b:
5d:39:00:63:57:f4:02:9b:ca:d5:05:1d:ff:7d:3e:
ea:56:99:55:2e:fe:af:90:26:e6:09:8a:12:e1:56:
32:56:96:3f:ef:11:7d:ca:83:a7:79:06:2d:6b:ef:
e3:a6:76:f2:ce:c7:d5:aa:5a:fe:54:15:93:5d:5d:
84:d5:26:f9:95:cf:3c:3a:e4:20:43:46:c3:1d:05:
d3:73:7a:bc:c4:97:5d:d8:c2:5f:34:ff:2a:6b:54:
cc:b7:b7:7f:07:be:0e:01:3b:84:9b:7c:a8:51:a4:
46:23:8a:d7:14:5f:08:99:54:31:ce:a9:f2:4d:53:
67:c5:20:38:41:37:9f:f6:06:86:d1:50:62:06:4b:
50:e5:0f:d3:41:0c:7e:53:3e:db:ed:be:8b:76:a5:
d0:66:fe:2c:30:9e:f6:7c:5d:58:7e:2f:f9:67:7a:
a5:b7:69:50:7a:30:db:c4:3a:08:dd:6c:27:01:f3:
b8:29:2e:65:e7:7b:b6:28:61:32:c1:09:d4:1f:4a:
22:0e:3c:b4:d5:73:68:ea:a9:fd:97:c8:5c:a5:71:
a1:0c:68:9a:bd:95:9f:8b:de:4e:39:7f:7b:ec:6b:
f6:ad:e3:ac:2b:aa:27:9d:34:18:3b:08:dc:76:06:
45:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D4:0F:83:8A:7F:60:F1:45:22:A0:0B:8F:7C:5A:ED:5D:D7:21:D1
X509v3 Authority Key Identifier:
keyid:60:07:36:5E:0C:F3:0C:A8:FC:E9:8C:62:66:0D:18:6A:97:9B:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:28:ca:33:6f:5e:46:68:3a:2b:40:05:6c:7b:73:a7:e0:b2:
38:68:46:18:58:56:c4:d1:4c:61:74:65:ed:a5:98:5f:c0:ef:
d4:cf:89:f7:37:16:40:88:9e:e3:8d:23:cf:81:d3:f4:67:1c:
85:d6:b7:e8:3d:cd:56:96:3f:38:25:4b:63:35:53:4e:71:92:
40:90:53:9e:c2:9a:b7:fe:d2:0f:54:7f:bb:b7:18:43:1f:a8:
9d:12:d4:c3:90:d2:6b:e9:4b:7d:31:31:79:ed:bc:60:82:6d:
7c:6e:ea:f0:82:12:03:38:46:9b:ce:b9:37:25:47:54:c7:20:
ef:bb:0d:7d:c2:e4:3c:96:7a:7b:9d:e5:8b:d8:bc:70:7a:a2:
b2:b0:28:b4:91:b4:1a:a6:44:4b:b0:2b:ec:94:2d:72:6c:8b:
d6:9e:b9:91:b8:6c:74:d9:ad:ab:81:67:dc:08:f3:7c:1c:ec:
9e:5e:ae:b6:ef:97:c9:1c:63:39:81:56:47:23:67:f1:3d:9d:
71:1a:d8:92:ee:c1:4c:01:ad:05:81:15:6d:d1:b3:03:a1:89:
f9:9b:ab:e7:b1:07:86:60:5e:63:6d:fb:ba:ea:1a:fe:66:0c:
f2:5c:cd:91:ca:a4:b1:85:c7:48:c7:59:8b:ea:d4:69:e6:63:
ed:0a:bc:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:43:57 2025 by rpki-client