Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: awkRBZMnrEz831ImZNDEc1h0YyeWFWXNTOsKv2FqEpU=
Subject key identifier: 8A:C8:D6:FA:A0:81:4E:42:FC:EA:FA:75:51:9C:B5:84:5C:B2:34:CE
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 019A04ED59E98B2D90E541A585DDCFCA0892
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 0735
Signing time: Tue 21 Oct 2025 04:00:55 +0000
Manifest this update: Tue 21 Oct 2025 04:00:55 +0000
Manifest next update: Wed 22 Oct 2025 04:00:55 +0000
Files and hashes: 1: GP-mcsPVfkxFR6BakAdLWMHzvnk.roa (hash: 46Gy5AnSQQR4RzlnLScg9/HmedHrQU8V47NDaOoaI7E=)
2: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: o59JqFD8uGU+tw9a3RV2pTQ9nYVhf2rJsuPGrQsPAt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:ed:59:e9:8b:2d:90:e5:41:a5:85:dd:cf:ca:08:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Oct 21 04:00:55 2025 GMT
Not After : Oct 22 04:00:55 2025 GMT
Subject: CN=8ac8d6faa0814e42fceafa75519cb5845cb234ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b7:2b:11:82:a7:41:bd:08:c9:ba:b1:07:d9:
9a:06:fe:89:61:70:39:f1:f3:25:18:1c:5a:7e:0b:
c7:43:b8:a0:a0:f0:ec:30:99:80:74:61:10:32:07:
91:1a:8b:dc:05:bf:ce:13:8f:8b:cb:22:81:a1:c7:
83:d5:08:e4:c5:0c:2f:b9:7b:42:a1:2a:67:52:f4:
2c:fc:9d:88:ac:f9:4a:f3:6d:80:3b:ed:4f:48:17:
9a:8c:3c:df:0b:a6:c2:6d:25:0f:be:ec:39:b7:ed:
02:24:73:fe:7e:86:09:d7:ad:1a:8a:45:f3:6e:bf:
36:8d:ab:04:24:9e:e7:5c:f2:e9:b7:77:7a:7d:d6:
b8:b4:a9:ba:86:15:cf:17:5e:e9:21:39:bd:7a:bf:
68:8f:b2:4f:49:c2:3d:14:06:63:ce:2f:85:52:7a:
3d:6f:ac:49:bc:ad:f3:6d:28:ca:91:8c:51:6e:ee:
bf:a4:bb:ae:31:15:df:78:a0:54:ea:97:b9:a8:6f:
31:ff:4a:ec:93:39:4e:e4:ce:9d:bd:c1:a8:20:00:
c8:f2:60:0a:6f:e5:0a:01:75:07:49:b8:12:cd:cf:
25:03:94:69:65:91:e2:2f:d5:b8:cc:42:ad:c2:50:
46:92:80:68:97:3e:9b:e5:49:dc:07:58:e0:a3:22:
e5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:C8:D6:FA:A0:81:4E:42:FC:EA:FA:75:51:9C:B5:84:5C:B2:34:CE
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:8c:40:78:fc:ad:cb:ae:1d:52:d7:78:ec:93:0c:29:bb:cb:
13:dd:fe:98:50:7d:de:05:0b:e8:ea:06:ba:ec:2d:03:9d:21:
91:48:04:df:ca:e3:3e:67:6e:83:08:1a:cc:20:ad:fb:b9:a6:
9c:4d:bf:8e:08:90:5b:64:37:ae:1d:71:d3:e4:b8:e8:79:62:
39:19:f0:51:fb:7e:7b:45:cc:eb:b5:f4:9d:94:ed:18:76:c4:
7f:4d:05:03:94:74:73:d3:c6:1d:36:75:0f:55:52:7e:0c:ce:
86:47:60:10:43:d8:38:d3:a5:b6:11:fc:9e:a4:2d:76:6f:d2:
1e:43:ae:28:72:ac:9a:24:06:d8:db:63:cc:3a:13:5c:fd:da:
48:a7:ae:42:07:dd:51:79:f1:24:07:cb:b2:03:d7:88:96:26:
05:03:00:2e:15:ce:b0:07:12:50:77:15:5d:4c:3c:20:17:a5:
fa:fd:fc:8e:4c:28:fb:7b:0b:f2:3a:29:3c:b6:83:d6:c4:66:
25:e9:d7:2a:5b:8c:a4:66:63:9a:b2:b4:21:02:82:d3:07:93:
2b:9c:4b:13:69:30:03:4d:0f:1c:2e:90:f3:4a:fb:4e:44:43:
89:8b:b1:34:3e:9a:04:1f:78:0e:58:d3:70:cd:da:2a:5d:a1:
70:61:bb:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 07:17:30 2025 by rpki-client