Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json)
Hash identifier: lANUprZg8esvDsGuLaocERk/20N+/8EYDGYIeYfrITs=
Subject key identifier: 73:8E:7B:32:34:56:68:F9:A3:99:EE:3C:66:4C:D8:6E:4E:CC:4F:3A
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 0198D4729853871AC51D0B80D1BFCB74D4C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
Manifest number: 041F
Signing time: Sat 23 Aug 2025 01:02:16 +0000
Manifest this update: Sat 23 Aug 2025 01:02:16 +0000
Manifest next update: Sun 24 Aug 2025 01:02:16 +0000
Files and hashes: 1: UVQQxsyFxE5G_GAZUd3A6ZXjkCE.roa (hash: zpm9oScjJUHtNk/CwO+EVZyjIHRYFCB8FAgH34Qnsvo=)
2: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: lJhfTdGbRzo1DCVLJ/8ESOZcGENG+GUK7G+JwVv1RrQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:98:53:87:1a:c5:1d:0b:80:d1:bf:cb:74:d4:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: Aug 23 01:02:16 2025 GMT
Not After : Aug 24 01:02:16 2025 GMT
Subject: CN=738e7b32345668f9a399ee3c664cd86e4ecc4f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f8:e8:35:d3:0d:11:12:d5:95:01:88:09:c7:
a6:f6:09:32:38:d7:59:72:50:f1:2c:d4:50:53:48:
b0:d3:92:c7:56:b6:d2:72:70:6b:92:f4:1c:f0:be:
a9:c7:3d:25:bc:29:f6:8f:30:e0:f4:09:2f:9f:a4:
b3:d1:d8:0e:44:49:1a:91:04:85:06:80:6b:25:a8:
2c:70:7f:ae:77:c9:47:b4:79:81:7e:9d:0c:f9:d4:
ed:ef:45:fb:09:58:1a:51:1b:f0:11:b3:14:ce:0f:
f5:b0:d9:08:54:db:71:ef:fc:cd:ae:ae:a0:1c:5e:
ca:80:4a:3b:da:2c:1a:ff:07:70:8e:29:eb:c0:80:
59:0e:69:45:c7:cd:89:2e:2f:f0:a6:21:8a:f6:36:
2a:c3:ef:3a:1f:b4:5b:7d:0c:6d:ad:41:82:3d:f5:
8e:ec:58:83:05:aa:55:f3:2c:1f:a2:bd:62:8c:fb:
3f:5f:31:3b:0c:7b:98:9d:82:dc:9f:94:54:7c:7c:
c8:7f:6c:46:e0:ea:dd:ee:27:33:19:81:c1:40:61:
da:9b:3b:fc:68:ed:f7:89:b3:3a:55:98:83:1d:43:
7c:fa:a4:cd:90:66:8a:30:51:8b:68:b5:4f:73:4e:
67:58:3b:a3:85:62:2a:b2:7a:9c:7a:c7:90:14:7a:
2c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:8E:7B:32:34:56:68:F9:A3:99:EE:3C:66:4C:D8:6E:4E:CC:4F:3A
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:ab:ac:36:02:d4:81:bf:7a:84:be:4b:ba:7f:f5:d9:3f:4e:
b5:27:14:31:27:b2:d9:9c:9c:95:cd:ab:6b:ba:0d:ba:33:0b:
31:a7:8d:f5:4f:28:c2:3d:4d:e5:ed:6c:5b:7f:40:6e:d3:80:
07:96:b2:82:d0:c2:28:64:cd:84:86:ea:ff:8d:29:06:db:45:
21:48:5b:94:27:6c:40:22:50:63:8c:90:5e:f4:59:f8:56:7d:
17:1f:79:29:3f:db:e3:de:9d:50:54:59:54:a0:cb:8c:05:f3:
51:cf:a7:0d:ea:01:21:72:e7:5f:c5:7d:cf:14:0a:fd:be:8d:
22:ff:68:d4:45:4b:6d:69:24:55:66:7b:98:18:93:bf:f3:1f:
e8:49:18:d4:99:56:cc:28:d0:c7:04:98:68:2a:cf:89:6f:28:
66:c7:eb:79:12:27:77:c4:e4:f4:fd:f4:66:32:7f:4e:c8:e1:
9f:3c:85:52:82:7a:ba:4b:53:df:f2:16:d6:a3:9d:df:5a:35:
2d:42:16:cc:7d:7b:fb:c2:a2:f2:c7:e6:59:52:a0:2e:7f:93:
04:12:9d:b0:2d:15:e6:0e:eb:78:1d:53:c7:58:89:8a:5c:4c:
1e:82:f8:39:96:03:9c:d9:0d:4f:47:e8:e9:eb:c3:80:96:a6:
93:3b:bc:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:17 2025 by rpki-client