Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
File: y9lerW0qHa8u9oestMKedgdrKAk.mft (raw, json)
Hash identifier: QigL5oPnYDgWhR8IbKA3Tm9Z1YqK3FspZsjxKxcGyNE=
Subject key identifier: A0:DD:D4:86:15:1D:CB:DE:5F:71:E8:15:96:7E:2F:35:DC:61:93:61
Authority key identifier: CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
Certificate issuer: /CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Certificate serial: 019922C37B24BBA61493210BD0013E45E2FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
Manifest number: 0A53
Signing time: Sun 07 Sep 2025 06:01:00 +0000
Manifest this update: Sun 07 Sep 2025 06:01:00 +0000
Manifest next update: Mon 08 Sep 2025 06:01:00 +0000
Files and hashes: 1: dLJ0i3DKxKOgLSZU6DT_1_-wzDs.roa (hash: R+7BGQyfLFShlywgi4Re33H2XJ0XnH/YSJRVXJB4EDE=)
2: y9lerW0qHa8u9oestMKedgdrKAk.crl (hash: kvf1PL3W8XDvxkY6DG6GJXVxo3Au0ODoSyQf2/Y5qAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:7b:24:bb:a6:14:93:21:0b:d0:01:3e:45:e2:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Validity
Not Before: Sep 7 06:01:00 2025 GMT
Not After : Sep 8 06:01:00 2025 GMT
Subject: CN=a0ddd486151dcbde5f71e815967e2f35dc619361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:47:50:4a:4e:29:d4:ee:59:d0:50:bc:6c:cc:
e9:78:b0:5e:9f:b9:0b:dc:52:93:0b:40:32:f0:97:
36:7a:51:97:c2:f9:cf:5b:59:61:46:cf:1b:cd:7a:
83:2b:c8:da:5b:c4:8d:1c:ad:88:db:53:50:5b:e9:
44:3c:34:28:6f:4b:de:08:32:2c:33:78:28:e9:a1:
e2:3f:29:ac:5a:cb:4e:bf:4c:e8:32:4d:af:54:9b:
9f:64:95:60:7c:b7:d1:a3:34:21:41:1a:99:e5:a9:
70:05:8d:23:9d:5a:ce:e7:e1:4a:5a:55:53:01:30:
79:97:84:ce:7f:de:14:12:9f:a9:1f:49:e1:f2:bf:
ba:d0:0f:fc:da:f2:cb:70:d2:26:16:5c:cd:f5:9a:
29:14:c4:0e:1c:af:49:f9:b1:ce:23:a4:04:fe:18:
ea:8a:dd:5b:1c:2b:1e:85:40:50:b0:50:81:9d:cf:
ec:9e:8e:95:5c:bb:12:94:06:50:53:1c:b6:17:57:
e4:9b:30:69:68:f3:22:bd:18:bb:4a:7e:87:be:24:
0b:6d:3d:07:4d:5e:a6:5c:5c:35:22:fc:9d:68:88:
b5:2b:f3:1e:f3:91:ce:05:b1:77:88:45:c3:9a:68:
88:29:3b:86:1f:c2:f3:f5:d1:50:93:fd:d9:32:7b:
a5:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:DD:D4:86:15:1D:CB:DE:5F:71:E8:15:96:7E:2F:35:DC:61:93:61
X509v3 Authority Key Identifier:
keyid:CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:e9:ec:bb:d5:62:d3:65:ff:d6:58:79:e4:9c:57:df:75:28:
8b:46:7a:f4:b2:76:4f:62:92:f9:13:ae:02:31:a6:16:32:42:
b9:75:d7:54:71:6c:e3:56:ea:e1:52:0c:25:24:0c:a8:00:de:
29:44:70:dd:68:38:e8:27:5f:23:22:9b:3a:0f:8f:d4:e4:fa:
cf:78:2b:66:83:ce:dd:29:13:76:2b:8d:cf:8b:0f:c8:bf:d9:
2c:ca:29:e5:7e:b1:3a:00:74:72:01:93:4b:6f:69:60:cd:ac:
80:17:77:ca:a0:c3:4a:e3:7f:2a:82:6b:78:a2:c5:e7:d8:8c:
46:19:f5:f0:04:7c:cf:30:e6:7f:e2:37:42:3a:9e:ed:85:49:
94:ab:be:9a:25:f8:d5:eb:92:e5:b9:eb:88:c6:14:78:39:8a:
c7:95:ac:6b:7d:49:27:b5:de:c6:83:39:3a:f5:c0:5c:1f:15:
84:95:1b:60:f7:22:69:95:ff:9e:22:a3:ad:59:30:cd:a5:ff:
44:d1:45:fa:3f:e6:69:76:39:81:84:60:d7:fb:0a:9f:27:81:
3b:2b:e4:fc:ad:18:25:07:b4:04:19:05:86:f4:36:1b:12:e7:
be:21:b0:14:9b:65:cb:2b:ba:a2:3a:1e:fa:2f:bc:b8:35:b1:
d0:ec:8d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:53:48 2025 by rpki-client