Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: x+QH8KYc/ZBf7edIGXMwAkCawm4l4zDhjk5FYQso/JU=
Subject key identifier: 9C:E2:EA:68:E8:C2:12:E7:D3:C2:D6:0D:66:63:DA:87:8E:18:22:A5
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 0198D4E02E82142EE6DE7608ADAA41075920
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 0EBC
Signing time: Sat 23 Aug 2025 03:01:58 +0000
Manifest this update: Sat 23 Aug 2025 03:01:58 +0000
Manifest next update: Sun 24 Aug 2025 03:01:58 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: 6HPExFrVCZRdp18YZicSCPYfJAz0PJH+kqdPAH0Z3wc=)
2: v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa (hash: g731f8Kk7ZRmBzHdANv/XJyJm7Gc4rKXDwNwW3MJnpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:2e:82:14:2e:e6:de:76:08:ad:aa:41:07:59:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: Aug 23 03:01:58 2025 GMT
Not After : Aug 24 03:01:58 2025 GMT
Subject: CN=9ce2ea68e8c212e7d3c2d60d6663da878e1822a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:e6:f4:d9:1e:e8:d3:5d:b9:c6:97:54:a9:1f:
b1:39:66:72:27:c9:45:93:17:2a:43:47:88:9b:3c:
1b:ab:9c:07:bd:bc:2b:4d:58:f3:6b:dd:2a:c2:a4:
f2:c2:0f:17:9a:78:76:7a:5b:f2:58:cf:79:ad:a6:
c7:c8:80:43:ad:b9:79:1e:b3:26:33:ea:4f:88:0c:
91:4f:fd:03:d4:86:9b:3a:ee:f4:02:8c:4b:21:a2:
ad:98:ef:05:fb:5d:4d:76:19:df:60:88:c0:ef:71:
3c:69:b9:3d:d0:2b:66:89:c2:32:22:f3:60:47:10:
dc:5d:f1:77:19:a3:03:eb:02:57:39:ee:0d:87:d8:
8b:a7:cc:94:b3:d7:8c:66:f5:c4:8f:36:17:50:59:
20:a6:58:c9:13:49:94:d7:31:aa:4c:de:d5:bc:7d:
d5:ba:d4:ce:a0:4b:88:2e:3e:e3:42:a8:ca:00:a7:
9d:1d:b7:fb:15:b5:92:8b:25:25:3a:c5:7f:ab:5d:
be:a6:3a:0f:54:13:cd:bb:c6:80:cd:77:25:9d:77:
d7:b7:f1:2f:15:bc:c5:32:39:09:13:5b:1c:f7:e4:
8e:c7:e5:af:6f:52:2d:7e:35:39:be:eb:e7:2a:33:
e4:43:28:2d:14:c2:58:c4:f3:9b:1f:4b:00:95:7a:
51:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E2:EA:68:E8:C2:12:E7:D3:C2:D6:0D:66:63:DA:87:8E:18:22:A5
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:1a:7d:84:b4:be:94:1e:4c:27:d3:79:ef:3c:8f:cb:72:54:
07:34:f1:fc:19:e2:ba:e7:34:a6:a3:78:bb:8f:c0:f8:10:d7:
a7:c2:f9:28:3d:43:9f:7d:5c:97:fd:9f:b7:02:55:4f:83:3c:
1c:d7:51:bf:b9:98:2a:0e:a7:1d:0b:50:2a:f7:ac:69:ca:13:
5f:c3:06:91:ad:7d:bf:d5:6b:21:0f:fc:48:49:e0:28:a2:57:
f4:13:db:6a:47:15:96:60:97:2f:eb:63:e9:81:37:c6:37:e1:
31:84:12:20:8f:cd:45:c7:8b:da:1b:f0:66:82:0e:f5:0e:d8:
04:ae:cd:df:7b:6a:9b:3b:0b:67:7b:c4:50:f6:81:ac:97:54:
60:65:e4:ac:1a:d5:d1:3d:65:28:8d:fc:53:64:60:a6:3d:b1:
a6:25:69:b7:fb:54:3f:a9:75:ae:f1:54:06:5d:9f:a9:cb:63:
1a:35:a0:5b:9b:95:81:98:7b:00:54:3a:c0:35:84:56:c2:71:
1e:ca:0f:ef:6e:bd:bc:dc:bf:a6:18:ec:27:4c:e2:72:12:a1:
9a:c1:ce:bf:c3:27:0d:3d:bf:f9:f4:8a:36:a5:cf:53:8e:f5:
3e:a8:c8:4a:6c:e4:64:92:d0:1e:5c:9d:e1:c2:1b:e1:11:15:
0c:75:20:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:28:14 2025 by rpki-client