Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: 6aoeA7sc4rse+KJ1qP/EY/kxTNaKlUxm6G1T5m6ElFc=
Subject key identifier: 00:C6:18:30:C9:5D:03:4C:41:C3:EA:A0:00:FA:9E:6C:01:75:D3:61
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 0198D705D551611D235ACDB2053D2F250CED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 13C7
Signing time: Sat 23 Aug 2025 13:02:20 +0000
Manifest this update: Sat 23 Aug 2025 13:02:20 +0000
Manifest next update: Sun 24 Aug 2025 13:02:20 +0000
Files and hashes: 1: cpaYv-AQ-t9zhgKKXsvKBzFcSaQ.roa (hash: QH8X2hDISDdQVFPt9W1N705nATkeCHCrQhlKJMRWx8A=)
2: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: bmyoUp7sFwnHn7S38zTmON+wIqgFp2a8Ia2K70FffC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:d5:51:61:1d:23:5a:cd:b2:05:3d:2f:25:0c:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Aug 23 13:02:20 2025 GMT
Not After : Aug 24 13:02:20 2025 GMT
Subject: CN=00c61830c95d034c41c3eaa000fa9e6c0175d361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:63:2c:2f:23:5f:c0:10:00:01:e2:73:96:47:
e2:9b:e2:7d:1a:21:e9:01:77:c0:10:41:4d:36:68:
64:bd:c8:22:45:32:93:3e:47:11:06:a4:25:30:ef:
f0:20:f8:be:2c:46:1f:57:b9:31:4b:ab:84:2f:87:
66:eb:12:d9:01:e6:40:64:f9:ec:67:8e:25:02:52:
bc:ae:ca:b4:c8:55:aa:5c:ba:eb:f2:b8:ce:a6:5d:
93:e6:d8:4d:e3:3f:16:08:02:2e:62:7a:14:62:7d:
07:5f:1e:fd:65:10:b5:64:2e:b7:b6:1f:1b:cf:37:
98:53:04:89:e7:d7:ac:c8:70:3d:1f:d6:57:a2:e9:
52:75:05:11:f3:9b:86:1a:ee:b6:42:08:99:fd:c0:
76:a4:11:1a:b7:b7:40:28:f6:ab:18:1e:cd:22:6e:
61:e7:21:cc:32:a6:f1:12:f2:8c:0c:cd:64:fa:2d:
af:fa:9e:51:2f:41:39:a2:72:d8:e3:b8:37:6b:0e:
fb:49:38:1f:a1:f4:e2:05:86:1c:34:aa:86:39:72:
6a:50:1f:e1:0c:06:0c:34:41:00:97:10:35:0f:cb:
79:a3:41:48:66:49:df:d5:e1:9a:16:9f:58:61:63:
f1:7a:c1:1f:8c:40:e3:71:aa:08:e0:3f:a4:ec:6c:
80:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C6:18:30:C9:5D:03:4C:41:C3:EA:A0:00:FA:9E:6C:01:75:D3:61
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:38:eb:db:03:e1:6c:d2:57:22:3e:00:f1:c8:82:7c:41:18:
7f:c8:66:06:9f:3c:6e:18:ef:c8:d0:f8:92:3a:8a:73:57:45:
f0:28:af:8e:80:c0:7c:09:07:36:c7:2e:48:e6:ea:d7:90:9c:
7a:5f:2c:65:74:c9:11:a5:a5:16:d4:0a:3c:7b:29:6e:09:a4:
1b:ad:6c:3d:59:90:6d:9b:4f:93:e2:5c:02:b2:0e:76:6c:b0:
db:5e:ba:7d:4f:3d:34:fd:f8:67:a3:f9:cd:cc:45:59:c3:49:
9b:dc:a6:b6:b0:2c:ab:d8:67:71:5c:79:73:20:9b:56:74:36:
8c:e8:a9:46:77:76:23:38:5b:93:2b:64:cb:0c:a1:b1:cd:01:
0b:c2:5c:b0:42:4d:35:91:19:93:fa:4e:63:24:49:89:52:83:
ff:f7:0f:ef:05:3b:34:04:eb:f7:83:9a:d9:14:f9:6c:39:69:
fe:36:87:93:7f:08:04:ac:bf:ad:59:12:96:37:3a:d1:da:e5:
36:e5:06:ee:fc:b6:24:5d:9e:f6:18:97:58:ab:63:97:05:99:
f0:c6:22:07:f1:8d:90:af:dd:f8:a6:89:8d:c2:35:a7:40:00:
08:bb:e3:bf:e2:0e:c7:d7:99:e8:c6:ab:2a:47:ab:b2:a7:e3:
ea:25:92:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:49:57 2025 by rpki-client