Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json)
Hash identifier: 5AgsqAUApbknppjvK7FxYRunoBOpMoM54NX4192JEPY=
Subject key identifier: D9:A6:88:B6:AA:05:6B:3F:AC:AD:02:39:87:05:AF:7C:C7:34:D9:59
Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Certificate serial: 019A0147F52411C83E8C1B0D998823590F26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
Manifest number: 034B
Signing time: Mon 20 Oct 2025 11:01:24 +0000
Manifest this update: Mon 20 Oct 2025 11:01:24 +0000
Manifest next update: Tue 21 Oct 2025 11:01:24 +0000
Files and hashes: 1: 1-PJ8uFT3vIGcdh8Ryvstj5V11gs.roa (hash: flh68N5wBml9poaLXGZmGeNQ/HSV3CHvsWwwddNW1dc=)
2: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: x11tl/0suoQC2InTVmxdyb294N/bmp8DqoG3wDLzoSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:47:f5:24:11:c8:3e:8c:1b:0d:99:88:23:59:0f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Validity
Not Before: Oct 20 11:01:24 2025 GMT
Not After : Oct 21 11:01:24 2025 GMT
Subject: CN=d9a688b6aa056b3facad02398705af7cc734d959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a3:6f:c6:97:1f:71:92:de:7b:97:eb:83:a7:
05:20:0a:63:b2:78:12:57:51:b7:0a:33:d6:17:23:
62:0b:a3:d9:60:c5:8a:d1:fd:5a:c6:f1:4c:b4:fd:
d8:36:43:4f:ac:f4:e7:05:e8:d4:b6:e4:54:1c:f2:
62:48:cd:94:2c:79:d4:96:ce:22:7a:18:1b:47:22:
27:07:d4:db:c5:77:1b:76:65:db:a5:92:cd:6f:68:
f3:68:97:bd:43:a3:52:25:41:71:8a:c5:a2:f4:af:
0a:19:5c:ec:07:e4:66:7f:d0:24:73:e0:8d:bc:bf:
cc:15:41:a1:95:17:d6:10:ac:94:08:5f:17:e0:f9:
ca:77:24:ba:72:da:24:10:9a:43:9e:5c:fe:57:69:
9a:53:0d:18:1c:4e:3b:b4:66:5e:b6:51:bc:38:5b:
4b:58:54:c6:ff:24:5d:a0:6c:7d:28:cf:b2:80:5f:
e5:46:1d:0a:2a:54:25:8b:29:ff:d2:eb:b1:e7:c5:
26:e4:77:53:31:42:cc:c7:b5:45:06:22:b7:7a:5b:
3d:51:07:ee:96:9a:a1:04:96:54:d7:21:4b:ce:ff:
b8:02:b8:6b:63:e6:95:4e:58:37:9c:4d:5b:47:32:
eb:1a:8b:45:f4:5b:b5:6f:05:26:70:e1:53:99:c3:
db:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A6:88:B6:AA:05:6B:3F:AC:AD:02:39:87:05:AF:7C:C7:34:D9:59
X509v3 Authority Key Identifier:
keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:9c:df:66:34:a4:71:db:ee:12:ea:b5:9b:35:7d:8f:da:e6:
5a:5b:a4:fe:0f:28:1e:5c:95:59:f4:03:2d:75:69:c4:a5:ac:
8a:29:3f:c7:23:74:8e:5f:c1:53:21:8f:78:01:61:24:0d:7f:
d0:82:c2:01:de:9b:c2:b4:10:6a:f2:5f:20:77:ff:2f:3e:cf:
4a:e1:e1:e3:38:c3:f7:ba:0a:9e:15:8d:78:85:ce:23:56:1f:
de:e0:03:24:b9:1c:f2:12:06:d4:b7:7d:20:bc:c8:4b:50:52:
22:8b:b7:bc:86:0f:c9:03:0b:01:1a:b4:38:29:de:7b:8a:49:
cb:8e:a4:0e:5c:92:27:14:72:40:d3:69:61:e6:23:53:8e:65:
d2:e8:7d:08:db:cb:45:c7:d4:8d:f8:5f:c4:a6:4f:db:fe:47:
f6:5b:e6:0a:f9:6b:d9:8e:00:f4:97:f4:38:ca:08:dd:84:fb:
a9:55:4b:7e:92:32:81:b2:d6:7d:a5:d2:13:7b:ff:85:b2:29:
16:b5:b0:2b:a7:dd:44:2c:01:43:1b:a5:49:c8:c4:fb:3c:fa:
f2:69:3a:45:12:cb:90:3e:f2:12:c0:36:e7:30:9b:6d:0c:7c:
9f:5c:29:17:f0:2d:b8:fa:68:5c:a0:e9:a4:1d:76:45:8e:97:
f3:66:17:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:56:32 2025 by rpki-client