Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
File: Y3A8pQxDKs1_HLunwH2iICKZymM.mft (raw, json)
Hash identifier: TLz8n/EbqQijG24FMKRsI0wIXe/sC0RZksmDeOXVuPA=
Subject key identifier: DE:3F:B0:4A:4B:DC:F7:23:40:76:CC:B2:23:0E:55:2E:0A:BD:57:C9
Authority key identifier: 63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
Certificate issuer: /CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Certificate serial: 0198D404EF76999E7616B752DB6C8DE15387
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
Manifest number: 134D
Signing time: Fri 22 Aug 2025 23:02:29 +0000
Manifest this update: Fri 22 Aug 2025 23:02:29 +0000
Manifest next update: Sat 23 Aug 2025 23:02:29 +0000
Files and hashes: 1: Y3A8pQxDKs1_HLunwH2iICKZymM.crl (hash: 6Bqz501OZ4n34xNYl2NrKmVPWRkyBIl3tRB2sCR/UvM=)
2: uKlqiwtoXkp9xjLftlQ9vTMqqrs.roa (hash: EwwfvCJkfqVqVmU0gYHOqumHmaTFzwTDUQGR86XAOZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:ef:76:99:9e:76:16:b7:52:db:6c:8d:e1:53:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Validity
Not Before: Aug 22 23:02:29 2025 GMT
Not After : Aug 23 23:02:29 2025 GMT
Subject: CN=de3fb04a4bdcf7234076ccb2230e552e0abd57c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:13:8f:a4:26:06:0b:f8:db:50:96:cd:7b:48:
b0:76:7a:28:39:45:9f:85:df:ea:0f:52:31:3c:06:
1e:8c:51:b4:0b:27:16:ed:15:22:0a:76:27:2d:12:
e9:c3:1f:58:ce:9a:33:f6:2c:66:e3:b7:4b:47:63:
bf:c5:57:8e:1b:01:b1:75:ea:b0:e3:05:a3:c6:f5:
26:d2:bf:cb:1a:d7:6a:01:f0:bc:d5:9b:59:6e:16:
57:5b:d4:99:aa:9e:36:3f:31:49:f9:cb:28:6d:4f:
b8:ac:31:9c:65:e5:f1:d4:a7:21:47:f8:a2:78:92:
48:17:3e:7d:dc:4c:eb:64:5b:a0:c9:64:a4:55:f0:
b5:9d:5e:e7:6b:1a:97:a8:58:75:81:49:37:12:db:
93:99:18:67:c9:1f:87:49:f5:d1:78:d8:e2:1b:4c:
85:2d:3c:17:30:1a:b8:6e:31:6a:f5:9d:9a:d6:ef:
9c:c7:d4:e5:6f:b3:c1:70:58:24:39:a4:cc:77:4b:
70:16:76:da:2d:a5:4e:f6:12:52:8f:46:a0:b2:65:
32:0f:1a:28:8a:70:f2:40:54:88:64:fb:d1:30:d9:
bc:fb:e8:66:2e:91:d8:40:4a:c8:c2:8c:36:ed:b9:
71:6a:27:c8:ec:22:dc:e5:f9:4a:ec:f9:b2:63:49:
4e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:3F:B0:4A:4B:DC:F7:23:40:76:CC:B2:23:0E:55:2E:0A:BD:57:C9
X509v3 Authority Key Identifier:
keyid:63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:92:3f:e8:08:39:0f:21:a4:2f:09:49:d7:f6:44:e4:7a:21:
32:96:76:f5:7f:93:9e:0b:0b:df:99:bc:54:7b:c0:54:7c:ce:
34:74:4e:e2:9c:33:00:bf:4d:ed:e6:7c:3d:86:17:18:86:8e:
38:8c:c3:a0:6a:9f:15:2e:f3:f5:30:1b:99:f6:5b:14:1e:94:
8f:6b:44:4b:51:c2:32:b0:60:70:47:9d:6e:f9:3d:39:aa:48:
7c:36:78:a5:1c:72:17:c8:ba:54:17:58:7f:a2:6e:14:17:6c:
3a:30:4d:1b:bf:85:4e:f8:a2:0a:d7:03:d4:b8:52:06:e1:8a:
7e:f5:dc:fc:c3:1a:e9:48:13:4f:6d:6b:b3:50:cb:e3:5a:b6:
41:76:f2:ce:5c:d1:0a:5b:e9:28:ea:52:6b:3e:73:2c:a6:61:
e6:23:a6:fe:d2:a4:1e:05:8a:9a:8e:42:b0:a9:6f:70:b0:6c:
f5:63:20:c8:85:09:ca:a6:47:b1:2a:f4:88:d2:af:2f:b2:02:
f7:26:ba:d9:b7:c7:0a:f9:de:4e:50:2c:00:14:53:d3:6a:2d:
db:f3:82:de:8a:0c:52:cb:ff:17:cb:0a:e8:c5:e1:b3:c6:18:
e6:68:89:86:d7:fc:20:4a:8c:ca:86:93:cb:66:29:be:b4:88:
e1:fc:3f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:37:49 2025 by rpki-client