Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: m3MIOwrKvT3iWNnC28TuytVZIcBCbIxF3RTTCL21LaU=
Subject key identifier: 3C:D4:9D:0C:29:66:5D:C8:63:E3:1D:77:EF:49:11:58:E7:12:CE:86
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 0199FC58E144431C8CD2AAC4860EF853B48F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 0F55
Signing time: Sun 19 Oct 2025 12:01:47 +0000
Manifest this update: Sun 19 Oct 2025 12:01:47 +0000
Manifest next update: Mon 20 Oct 2025 12:01:47 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: oVrlvD/3QZ1sgeysNynLTZ+tM1RhAX8j7ysN/CFoi3k=)
2: v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa (hash: g731f8Kk7ZRmBzHdANv/XJyJm7Gc4rKXDwNwW3MJnpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:e1:44:43:1c:8c:d2:aa:c4:86:0e:f8:53:b4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: Oct 19 12:01:47 2025 GMT
Not After : Oct 20 12:01:47 2025 GMT
Subject: CN=3cd49d0c29665dc863e31d77ef491158e712ce86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:17:6e:49:cf:8a:46:9f:c3:f2:e6:ab:4f:a1:
0a:ba:1c:9f:fa:c3:89:26:b4:35:65:18:5c:45:8b:
f8:41:bf:cf:de:7b:40:98:7a:b2:95:eb:28:fb:71:
41:69:df:17:65:c5:47:e8:b2:aa:17:21:73:64:c2:
57:bb:f0:0f:49:9f:44:98:0b:22:f4:7e:9d:77:bb:
70:6b:3f:cf:5a:63:38:c1:e6:bd:81:61:ea:69:c7:
19:92:6e:ad:eb:68:a1:4d:d7:cc:ff:3d:74:bb:44:
7b:47:7c:c2:19:7b:49:99:e3:56:13:08:84:e4:22:
30:bc:e0:14:5a:95:c9:a0:6e:f7:0f:a1:69:2c:64:
64:7e:59:17:72:fb:8c:04:02:89:93:49:a7:a2:27:
30:ca:b8:fd:fe:74:b4:9c:19:7c:bf:c3:cb:99:0f:
75:1f:d5:db:74:31:c4:74:62:63:03:64:eb:9d:97:
e8:97:17:4c:cd:50:35:c8:15:c2:ad:71:28:fc:02:
7b:56:d8:e3:13:2d:7d:2b:51:05:53:dd:2d:35:3b:
da:b6:c5:eb:5a:c8:b4:e0:b7:63:3f:49:fb:79:fe:
82:15:dd:db:0a:cf:a2:d2:bc:17:fe:07:29:cb:98:
9d:c6:69:0a:58:cc:52:47:42:1b:a1:ba:52:86:f8:
87:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D4:9D:0C:29:66:5D:C8:63:E3:1D:77:EF:49:11:58:E7:12:CE:86
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:27:64:9b:36:a5:4f:5b:f6:aa:24:eb:76:af:2e:1e:4a:87:
eb:f8:83:83:dd:dd:00:e8:b4:b6:fe:4e:62:7c:05:87:32:ca:
7e:2b:57:dd:d2:b9:3c:e1:a2:7e:16:d4:98:4d:6f:42:6b:7c:
1e:75:7c:6f:d7:16:7e:74:9a:74:cd:1a:e7:26:dc:bb:a5:82:
33:fd:ab:0e:ae:0f:41:fc:b1:c7:ec:ca:87:03:ed:00:30:38:
4f:f3:cf:d9:12:29:ba:bc:a4:d7:49:34:32:1b:76:b0:34:9c:
1b:4b:15:8f:e5:6e:16:1f:07:d0:b4:bc:03:e9:05:09:9d:82:
17:66:86:9e:ec:7b:b0:f2:7a:e9:c4:97:00:18:23:d1:99:4d:
ff:3d:9d:72:99:21:1a:9a:46:da:46:8a:a9:e0:c4:17:03:2f:
9a:7c:b3:a3:ef:d4:d5:19:c1:7b:f7:99:1c:0b:c5:c5:93:34:
ee:69:36:cb:18:3d:a5:d1:d9:e2:53:6e:9d:11:54:0d:fe:31:
e1:47:3e:46:6a:dc:89:fb:d3:51:25:d9:5a:63:8d:78:f7:dc:
0e:a5:90:92:b0:0a:b9:e6:00:e0:0e:eb:c4:1a:78:44:e3:38:
45:0f:c2:e6:db:16:a5:9e:ec:7e:dd:66:f1:5b:53:b4:cb:53:
5e:98:98:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:10 2025 by rpki-client