Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
File: 0627YSN4H_DjVBNEaseTHP9KSQ0.mft (raw, json)
Hash identifier: gmcfiVMk6hnvLFnkLrF/PI0pFvgtIday9SxPYOwqcO8=
Subject key identifier: A1:A9:83:7B:4C:50:A2:12:1D:18:23:24:E3:C9:C4:0D:DD:7E:96:13
Authority key identifier: D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
Certificate issuer: /CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Certificate serial: 019922C347C918490D14AD776A2CD694E145
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 06:00:47 +0000
Manifest this update: Sun 07 Sep 2025 06:00:47 +0000
Manifest next update: Mon 08 Sep 2025 06:00:47 +0000
Files and hashes: 1: 0627YSN4H_DjVBNEaseTHP9KSQ0.crl (hash: kz8xsbsSTGE5ydXtyWC9JE0PQIwu5kyJKViipSulRSY=)
2: yWi1Y-nakOmyfRqesRZIzBZCSpo.roa (hash: XIYZfLdl8kZlRiSAj90PT17pvRJ8h9U9zRjI6i+BCkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:47:c9:18:49:0d:14:ad:77:6a:2c:d6:94:e1:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Validity
Not Before: Sep 7 06:00:47 2025 GMT
Not After : Sep 8 06:00:47 2025 GMT
Subject: CN=a1a9837b4c50a2121d182324e3c9c40ddd7e9613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c3:80:5f:2b:c3:55:98:33:47:48:3e:a2:c0:
87:af:4f:93:05:f5:64:73:15:81:83:04:1e:f4:19:
d6:95:f8:0a:5d:ee:8e:f5:8e:f1:a9:9e:6d:08:d0:
74:13:b8:a3:6c:95:e7:fe:91:b3:8e:47:6b:17:f2:
e5:b9:af:91:70:7e:fa:93:a8:70:dc:ef:ba:39:3d:
97:13:bf:6a:e7:2f:70:e3:8b:44:22:32:99:c0:da:
cf:0d:e1:25:56:61:1c:75:62:a4:5e:04:03:1e:e3:
e0:a7:62:59:ce:b0:2a:0b:3a:4a:7a:13:bc:86:4d:
cb:3c:31:ee:3e:9b:a5:5f:e2:40:8f:af:77:fa:4e:
fc:ec:26:5d:22:58:f6:5f:4e:93:e7:22:cd:4c:0f:
7a:fe:a0:32:6c:31:6e:c3:6c:37:4b:74:79:63:13:
2c:e1:c5:e7:63:8d:c5:7e:28:04:f8:ac:07:26:e1:
16:09:38:2d:90:2d:a3:b9:2a:c0:5e:49:69:8d:ec:
62:d9:4e:41:0d:25:c7:41:88:27:30:c9:ab:61:60:
d4:4d:29:90:b7:a7:88:bb:ae:8f:d8:76:60:58:63:
24:3e:7c:ee:4a:65:62:f7:b5:1e:36:87:8e:5c:69:
ff:4d:33:5a:8a:ab:98:82:e2:63:4d:6c:5d:af:68:
76:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A9:83:7B:4C:50:A2:12:1D:18:23:24:E3:C9:C4:0D:DD:7E:96:13
X509v3 Authority Key Identifier:
keyid:D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:88:af:72:3f:31:59:6d:22:2c:de:fb:7b:e6:55:12:04:05:
2d:d7:74:dc:2b:c7:6d:74:41:68:a8:ce:15:a2:0e:7c:19:0c:
ce:69:61:24:7d:6a:ec:86:8a:05:de:de:e7:b0:4f:c6:d2:71:
d4:16:d7:e2:a2:23:5e:6b:4b:8f:3d:86:5d:f7:58:23:65:97:
12:18:20:67:22:08:a2:8c:11:df:a1:2f:83:2d:9e:7e:58:49:
fa:52:c4:16:08:0d:8f:6d:92:76:91:c3:37:21:c4:5c:79:d7:
a2:5a:65:5a:27:fc:79:46:a1:5e:54:f2:5f:92:18:e4:8f:31:
61:4f:e1:24:67:cb:13:44:7e:48:cc:e0:2b:48:f7:9c:2c:0e:
96:17:38:72:aa:d0:31:81:32:89:88:01:e8:41:6a:2a:94:f0:
b8:53:d4:df:24:cf:57:4e:6f:d6:3e:37:41:02:ab:d4:ab:e5:
c7:0c:e6:a8:56:5c:b0:8c:3c:75:60:31:3d:42:07:85:3a:fc:
8b:f0:12:2a:64:8c:b4:75:5e:30:f3:20:19:c8:f2:2e:60:6b:
d7:ed:8c:06:e2:c4:b4:42:e0:de:b7:88:19:cf:47:b0:8c:e0:
46:da:cf:7b:cd:d7:4c:55:09:4d:de:f6:a4:5c:59:b2:b2:93:
58:59:79:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:00:41 2025 by rpki-client