Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json)
Hash identifier: Ga5bQSbMHU/9/PWUx9Utqt5VDcN4jPKDrYMtL4eqisE=
Subject key identifier: 5D:13:5A:83:48:DD:77:35:38:FF:D7:C4:CC:96:76:1E:11:25:B2:17
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 0199FC8F744C40785A3A6B18FE428B083173
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
Manifest number: 1281
Signing time: Sun 19 Oct 2025 13:01:23 +0000
Manifest this update: Sun 19 Oct 2025 13:01:23 +0000
Manifest next update: Mon 20 Oct 2025 13:01:23 +0000
Files and hashes: 1: nPtNOVhjTVbNoPzqUJGa-Eqnb0Y.roa (hash: Yuz9f1rxV7S4atM+GycUQVhSQinvjc3oT1lXV1zOVuE=)
2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: mu7Mhwx0RIlZYcLnrIWVXUPOjD9jXXIxiNiELQNiJA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:74:4c:40:78:5a:3a:6b:18:fe:42:8b:08:31:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Oct 19 13:01:23 2025 GMT
Not After : Oct 20 13:01:23 2025 GMT
Subject: CN=5d135a8348dd773538ffd7c4cc96761e1125b217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:36:d7:7b:fe:58:cb:b8:5e:e0:23:5c:95:3e:
10:2a:c5:b9:16:14:f4:a5:27:ac:8d:45:2e:71:b5:
50:83:b4:51:f0:c7:fc:98:cf:08:5b:9b:18:fa:f3:
fe:e8:f5:65:24:de:1b:02:8d:98:8e:ba:c9:ec:97:
9b:12:8d:fb:c7:da:83:1d:31:57:fb:6e:2e:93:b6:
4c:63:43:16:e4:9e:30:fe:67:11:91:66:1c:5f:ab:
d0:09:6a:55:37:00:88:b2:27:ab:ef:10:65:76:72:
de:9f:b6:53:bd:1a:6a:45:6c:91:fe:4f:a9:68:af:
1a:6c:6e:2c:5a:e3:df:f2:37:89:1d:54:7f:6c:f2:
50:a5:07:03:8f:b3:e5:f6:dd:d4:f6:60:20:94:6d:
c5:79:48:f8:ef:ec:08:f4:f6:47:a0:be:4a:8c:b1:
87:97:39:bd:cd:21:55:98:75:98:d0:bd:a6:fb:ff:
27:c0:b7:25:6d:db:0c:8b:96:cd:5b:d8:23:6b:d6:
fc:e4:bf:a9:7e:d3:ee:fa:6e:cb:f9:4f:5f:1c:5e:
bc:8c:d0:e6:df:0f:40:ef:12:9a:1d:4e:6c:c0:23:
a8:d3:b2:78:55:88:7a:8f:51:a0:10:cb:a1:a6:ef:
7a:72:b0:3f:88:c8:e1:92:65:aa:5f:95:ce:3d:c1:
ec:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:13:5A:83:48:DD:77:35:38:FF:D7:C4:CC:96:76:1E:11:25:B2:17
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:3c:5f:9f:da:6a:bb:1d:c7:46:0e:d9:a8:74:29:35:57:c2:
02:5b:f3:31:7d:44:92:8b:91:56:2f:7a:d5:60:ae:f9:24:e1:
ca:d5:59:b7:f0:b5:1d:77:9f:ee:16:c4:ad:1f:b8:ce:66:d3:
e5:eb:76:de:03:e2:7e:e5:ee:20:e8:ea:40:8f:7b:03:27:9f:
bf:18:b4:c4:e3:99:f0:eb:28:7b:b5:bc:bc:26:27:9a:a2:bf:
de:48:ba:1a:88:4c:61:57:29:3a:b3:7e:73:71:cc:e0:63:1c:
7c:12:72:43:f4:0e:4d:c3:40:3c:2d:4f:15:de:2e:8d:3a:bb:
54:be:20:cc:ff:f2:ae:bf:b8:76:2f:9f:45:3b:ca:04:79:7d:
b4:d5:a2:d0:a2:c0:ef:4c:da:ee:f6:b4:ef:ca:54:d3:c3:48:
12:79:c2:b3:7c:31:ba:95:76:2e:80:76:ac:ca:f2:6d:37:56:
a9:a1:c2:9e:c3:7c:fa:8d:03:cf:db:81:44:82:87:60:55:2b:
c3:54:a3:e1:4b:39:9a:9c:8c:5f:12:7c:b8:83:a4:1b:2c:ef:
51:3d:bd:b7:51:7f:d0:d0:9c:14:a3:a9:0e:01:32:73:2f:dc:
ea:bb:02:57:f9:69:fc:a5:d2:95:47:2e:b8:a5:ce:a9:01:41:
60:26:89:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:50:09 2025 by rpki-client