Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
File: cnOYybFuqY0iKkwpyvey68mE8oI.mft (raw, json)
Hash identifier: /6vZSqsQLgObBD4drKQTuJR894Ye/6AUs1tg5uzHvdc=
Subject key identifier: A9:D6:0C:15:60:B3:B4:95:36:F8:CB:E1:AD:76:49:AD:77:51:5C:40
Authority key identifier: 72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
Certificate issuer: /CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Certificate serial: 0199239FE35F02A6FDABD64D89B3654572FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
Manifest number: 020A
Signing time: Sun 07 Sep 2025 10:01:44 +0000
Manifest this update: Sun 07 Sep 2025 10:01:44 +0000
Manifest next update: Mon 08 Sep 2025 10:01:44 +0000
Files and hashes: 1: cnOYybFuqY0iKkwpyvey68mE8oI.crl (hash: xJD2a/d9c5hKZjAUp5joTXdvNL4WSrUmwRC86SPLFU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:e3:5f:02:a6:fd:ab:d6:4d:89:b3:65:45:72:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Validity
Not Before: Sep 7 10:01:44 2025 GMT
Not After : Sep 8 10:01:44 2025 GMT
Subject: CN=a9d60c1560b3b49536f8cbe1ad7649ad77515c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a2:cc:0d:f1:57:b8:74:85:1e:c4:99:aa:ed:
b0:a2:68:a6:e3:3a:f0:85:66:74:43:34:ea:40:80:
e7:e7:1d:ab:14:5a:41:37:7d:1b:4d:de:4b:06:c6:
14:ec:d7:50:d0:5a:6e:91:a0:e7:b7:b7:3a:4c:a7:
a5:d2:7a:c1:9d:91:97:a8:96:43:3b:3b:4e:7e:34:
67:c4:d0:66:18:74:9b:20:3b:13:d5:35:69:53:4e:
e4:e4:9c:9e:2a:10:f4:b1:3e:3e:27:d7:3b:84:75:
f7:c9:90:50:56:05:45:e9:8e:4a:14:64:85:f3:e5:
55:82:7e:38:5d:f6:73:cb:7b:cb:9c:ad:f4:5a:ae:
01:70:6b:96:88:7a:f5:5b:bd:53:19:8a:c1:4e:da:
20:78:d4:df:d4:a5:97:75:55:73:a9:a5:32:db:27:
33:e1:d4:fb:31:eb:bf:98:ab:a3:a3:ab:96:8d:0a:
05:62:08:d2:f9:0d:3e:ee:0c:2b:ed:c4:29:1d:0a:
ea:79:3e:27:20:f2:ce:81:6f:90:78:3d:f5:e5:8f:
31:06:d2:5a:c8:b7:51:86:e5:d3:f5:a4:88:99:cc:
67:66:42:be:e4:f1:7c:cd:b1:b2:84:6a:df:5f:cc:
71:9a:da:13:84:ff:cd:1b:dc:cc:b3:54:dc:8b:5d:
b2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D6:0C:15:60:B3:B4:95:36:F8:CB:E1:AD:76:49:AD:77:51:5C:40
X509v3 Authority Key Identifier:
keyid:72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:8b:74:53:bc:12:93:c2:c6:94:b5:ff:c9:58:cc:00:86:cf:
51:8f:c1:8d:d6:d4:09:cc:e5:48:8a:28:1b:4e:d2:29:c7:fe:
1e:a1:18:89:47:9a:34:e5:83:7e:20:5f:bc:6e:23:5f:8c:7b:
96:6d:19:1f:11:64:55:50:9f:a1:f9:f6:2d:83:b4:c6:e1:f7:
a6:7c:7e:6b:db:ec:8f:80:db:92:1a:e9:e5:1e:d2:95:3b:9d:
b2:c7:f8:e5:f0:8e:16:22:2c:ef:51:af:b3:76:37:db:05:4d:
7b:ec:2e:90:f9:88:5a:b3:53:27:8e:26:df:a2:24:0d:c1:4b:
fa:70:94:02:68:e1:92:c6:f6:e7:73:0a:28:ca:bf:53:b4:f6:
cc:b7:87:3e:a2:43:22:e1:cd:fd:02:52:e0:ca:8b:c8:60:a2:
b1:30:7f:f7:a2:ce:3a:88:da:8b:1d:f0:c0:3c:ec:4e:cd:84:
41:21:30:92:fc:15:45:15:42:20:9e:38:20:00:5e:57:87:f3:
f0:6d:d0:39:11:ad:9b:98:e9:b5:40:7e:93:1e:1b:36:69:5e:
48:88:cc:2b:a6:bf:42:68:8e:6c:35:4f:5b:de:01:e4:0e:15:
82:3a:23:62:6e:b7:bf:98:5a:57:83:18:0e:ea:ee:1c:12:13:
a5:4f:b1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:57:01 2025 by rpki-client