Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json)
Hash identifier: 2iWtY0WUqq9HJAbbGmQXheyKno5nKsX7BC23rnny64s=
Subject key identifier: DD:F4:12:71:FE:5C:88:AA:94:FB:B8:8E:84:BA:9D:49:B5:E4:CF:5A
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 0198D5BBE10418869EBE5ABAAFD1868E1E23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
Manifest number: 1670
Signing time: Sat 23 Aug 2025 07:01:56 +0000
Manifest this update: Sat 23 Aug 2025 07:01:56 +0000
Manifest next update: Sun 24 Aug 2025 07:01:56 +0000
Files and hashes: 1: N1MG3ptUi6lRkgCQgC4sjQwbS5E.roa (hash: JXk8TsLqv4eNpEsTxzdAoUG6ec7BUvgM4Lyhjc+WI9U=)
2: pMIZZEHYcO0IlQ8lJ-JaDY1xnJs.roa (hash: KI7tUZnJYI1JaBjFs0d5L727l5SVVoE+xByQFUZQZZI=)
3: uiLIHzK4-mf16_OjnZc2yUpW0us.roa (hash: RlQY7OlYxlif+RwnDDphDKPVhonzC8U4YVG2wYszXJM=)
4: wmxHtvcKqJtTUqnf5sR3cyCPMeg.roa (hash: /EPsVJFiMZ3O3IoH+IOAZdQSfyIhjr2V/FlxWvt6e5c=)
5: xF5VKoGOYu4SuTkWFtzR0bzZqmI.roa (hash: rdwu1BaRed5RxmIo/GH4jXiyNp3cFaIjeNX4kVrFm70=)
6: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: GclZROg5Ib8WKSJJqelgJKjFv7bSIF2DpxutZPEnaVQ=)
7: zPFc5xzrxxMWf2K11uBlgIiWqTo.roa (hash: 3x/T35aDdfP5Wrtlu3UJYc2NEgecLDM5KH+dyoNyYx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:e1:04:18:86:9e:be:5a:ba:af:d1:86:8e:1e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: Aug 23 07:01:56 2025 GMT
Not After : Aug 24 07:01:56 2025 GMT
Subject: CN=ddf41271fe5c88aa94fbb88e84ba9d49b5e4cf5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5e:79:91:75:79:2e:69:6f:f4:f0:f5:22:6b:
c3:a9:fe:4a:09:f8:6e:89:58:8f:48:ea:b1:6e:81:
b9:3f:a6:ce:97:20:c1:f6:e1:9d:a2:bf:32:f5:bb:
87:3c:b3:a1:8e:a9:d4:b2:f4:b0:76:93:87:97:b9:
96:7a:bf:f4:a7:a5:23:66:25:c7:20:aa:79:bb:a5:
92:4e:ce:d0:18:91:6e:99:35:f7:61:fa:a9:75:1c:
52:16:76:43:57:9f:ff:51:4b:48:1a:d1:1c:fe:fc:
3b:64:8e:f7:b6:24:df:fe:0d:5a:ac:a8:ea:81:39:
c9:7e:fe:47:b2:86:c1:63:f3:aa:6f:32:38:1b:23:
0a:66:53:27:1e:fe:ec:6f:51:2c:96:10:c5:7c:fd:
f1:10:43:79:b7:45:9e:4a:a6:82:10:4c:a3:8c:ee:
9d:13:7d:72:4a:f6:c1:db:fe:69:a1:d6:ab:f5:df:
1e:67:bd:12:d2:40:47:f2:6b:fd:fd:59:fb:72:8f:
6f:b4:41:85:b7:01:65:55:80:17:32:32:64:56:c5:
1a:c0:2d:29:4b:05:d6:82:9c:3c:d7:3b:fc:0c:40:
f0:f8:4e:84:97:11:06:b9:39:15:ae:7a:4b:42:37:
d8:b8:0f:12:76:b7:18:e4:fa:46:b7:59:e3:23:c0:
3d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F4:12:71:FE:5C:88:AA:94:FB:B8:8E:84:BA:9D:49:B5:E4:CF:5A
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:8c:06:17:7a:01:ad:a2:38:bc:f2:d7:4b:df:81:e2:05:e7:
7b:cc:26:ff:3a:1b:d2:65:87:e0:26:f5:1e:7f:2f:bc:6f:8b:
34:f0:df:bd:14:0e:51:cf:c0:20:20:c9:14:81:14:d2:fe:75:
9c:dc:1f:25:c5:d8:00:e0:78:e9:33:f1:d5:2c:7b:9c:00:fa:
0b:37:cb:fd:e4:3f:bb:85:06:b2:fe:67:ab:e4:06:b5:3d:8b:
40:0f:6c:bf:de:72:a5:65:9b:08:d3:b5:47:a3:2b:2c:88:3d:
a1:c4:4c:9d:4c:5a:f8:f7:a9:95:d2:c1:c2:bb:e5:17:3e:c9:
7f:e6:52:7c:95:59:d1:04:13:fb:d4:e3:ec:33:9f:1a:57:3d:
f6:2d:54:c6:0e:07:22:7d:ee:d3:af:08:00:bf:63:19:71:72:
84:72:80:53:a5:75:f7:2f:b5:e9:30:a1:dd:58:a5:a7:da:78:
88:b8:92:92:fd:b6:26:b3:9e:67:17:af:5d:d9:a6:a6:e2:34:
44:81:ab:4c:4e:a9:eb:a1:66:9a:c8:83:92:04:a5:95:48:f8:
2c:03:3b:04:f4:7f:3d:57:84:86:37:97:ef:85:05:95:8d:95:
67:83:16:c6:04:73:29:64:b9:d7:fb:de:59:bb:95:f9:64:bc:
94:e9:58:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:19:23 2025 by rpki-client