Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: odZjkZBgsaCFYdW+ZZkTzXfmH823ilpp+k0MhtccqeY=
Subject key identifier: A3:00:64:7A:15:6A:C4:5C:6B:37:B9:2E:C3:F0:6B:3B:A7:41:87:6E
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 0198D5BC38217B48B74B19E154C9741988F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 0698
Signing time: Sat 23 Aug 2025 07:02:18 +0000
Manifest this update: Sat 23 Aug 2025 07:02:18 +0000
Manifest next update: Sun 24 Aug 2025 07:02:18 +0000
Files and hashes: 1: GP-mcsPVfkxFR6BakAdLWMHzvnk.roa (hash: 46Gy5AnSQQR4RzlnLScg9/HmedHrQU8V47NDaOoaI7E=)
2: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: L+yvVUeoFDo8SpHtqwfqdKwMNJ5Fl19dy0dc1Wm6I3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:38:21:7b:48:b7:4b:19:e1:54:c9:74:19:88:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Aug 23 07:02:18 2025 GMT
Not After : Aug 24 07:02:18 2025 GMT
Subject: CN=a300647a156ac45c6b37b92ec3f06b3ba741876e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f6:c5:d9:32:be:63:08:6a:fb:39:fa:62:2d:
f5:3c:8d:a1:23:1a:ed:89:e6:91:72:04:50:54:e1:
e4:29:70:6d:6f:e4:2d:07:a2:b2:6b:d6:d6:c4:24:
08:00:a4:11:8e:19:0d:88:c0:6b:c5:55:2c:1a:62:
61:cb:d0:dc:3e:80:21:00:b5:f9:96:0f:98:9f:e7:
44:2a:77:6d:f0:38:8e:59:9d:ac:c6:35:1d:25:20:
16:30:b8:d3:97:46:d1:18:62:62:59:ff:0f:50:2c:
83:f7:8b:7d:30:49:57:f5:6f:d5:08:93:e8:90:0d:
e1:35:71:9f:c2:b4:31:f7:95:3d:e2:23:87:b7:e8:
a9:4a:6e:01:cb:b2:6b:21:f7:72:07:74:2d:c6:f9:
4d:28:7c:48:04:c9:91:4d:d9:5b:d8:ae:d0:01:36:
a2:23:05:48:55:5d:d5:a7:e3:d6:98:f8:4a:6f:1b:
46:fd:06:ef:22:74:c9:c0:a5:7d:ec:12:c2:fe:fe:
0a:55:8b:99:ee:0a:c2:85:1f:f0:d8:76:33:22:da:
17:da:61:61:8f:4c:51:28:76:39:f1:a4:12:56:1e:
6a:26:43:70:37:dc:2c:c4:d8:1e:3b:38:d1:94:31:
4a:09:88:05:cd:81:3f:f3:6c:74:19:2b:1b:c9:5a:
b7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:00:64:7A:15:6A:C4:5C:6B:37:B9:2E:C3:F0:6B:3B:A7:41:87:6E
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:78:87:cb:90:59:a5:38:26:2f:40:a0:7c:80:3f:8b:9b:34:
a7:db:4c:41:1c:4a:bc:0f:f7:01:f1:4e:a7:ea:f1:30:7d:3b:
e7:14:af:cf:11:47:8d:01:79:15:c9:64:04:33:f3:20:1a:6d:
0d:55:a4:32:a7:61:1e:a6:3a:d9:17:ac:bf:8f:66:7b:0c:30:
6e:2c:ed:b0:d7:e6:27:38:3c:ca:ab:f7:ff:f7:59:db:6e:a1:
8f:ae:07:ba:c9:71:97:10:99:82:cc:87:32:54:73:95:a4:5c:
0a:35:a7:6f:f5:70:93:7e:3c:3f:28:0b:1c:5e:e0:ca:7b:f6:
e6:51:7a:af:32:80:dd:d6:1c:fa:82:2a:c7:7c:b6:94:7c:46:
19:4b:4b:63:91:0a:79:08:22:58:4f:7e:92:da:dc:ef:86:67:
47:81:e3:06:06:79:8e:81:ce:ec:cb:f5:fd:26:e4:12:c2:d8:
9c:a9:58:30:b6:4b:da:79:61:c8:39:44:b9:d1:7f:f0:85:b4:
fe:82:fd:42:20:5a:49:05:3c:87:61:de:98:a5:98:8d:a4:c2:
8a:e9:0e:7e:0c:a9:09:79:89:38:a5:2c:5c:dc:d5:82:3b:f6:
5c:f7:d7:d7:08:c6:4f:c7:81:38:cc:1d:b3:47:85:20:3e:35:
33:da:e6:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:27 2025 by rpki-client