Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
File: yQDvPdXdG-FdCLuTy91jtKyGDms.mft (raw, json)
Hash identifier: yn0UHARs89w/gXIRxlpHV/sXF1rEqiTn/NHA7YB7dJI=
Subject key identifier: 2F:5B:52:F2:B6:29:C6:93:BC:E7:2E:4C:DF:89:45:80:D7:72:B3:F4
Authority key identifier: C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B
Certificate issuer: /CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b
Certificate serial: 0198D5BB8549B147DF170FAA66F50B2AC3A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
Manifest number: 10BA
Signing time: Sat 23 Aug 2025 07:01:33 +0000
Manifest this update: Sat 23 Aug 2025 07:01:33 +0000
Manifest next update: Sun 24 Aug 2025 07:01:33 +0000
Files and hashes: 1: kNwo0JsX3ICm84nVo9dsXQUG9kE.roa (hash: NK1ts8W0/zMpiUmbhnMjlz816+vYjFkNttYVHl02NWQ=)
2: yQDvPdXdG-FdCLuTy91jtKyGDms.crl (hash: w6iKF0L1ciLEhBXFl5l2Q+kPeDY6//IMTTD7ZVDMhAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:85:49:b1:47:df:17:0f:aa:66:f5:0b:2a:c3:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b
Validity
Not Before: Aug 23 07:01:33 2025 GMT
Not After : Aug 24 07:01:33 2025 GMT
Subject: CN=2f5b52f2b629c693bce72e4cdf894580d772b3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:82:84:5c:e2:e3:7c:7d:ef:2a:e0:bc:fa:4e:
64:3e:c4:bb:8b:fc:a6:e5:c4:d9:45:d1:b8:6a:17:
19:97:f1:d7:44:79:d8:d1:b9:a8:aa:ab:bb:cf:22:
fb:59:6f:64:04:5b:06:53:d9:fa:15:1d:66:68:9e:
fd:af:18:9a:b3:96:8d:85:b3:46:f6:94:a4:b4:c3:
dd:3b:9d:c7:f5:23:67:31:1e:5d:d1:e5:15:5d:92:
04:11:be:bf:98:c4:31:14:cd:16:09:6d:f6:53:4c:
a9:39:cf:f3:25:8f:e4:c9:70:a7:3d:a7:94:75:41:
63:33:7f:dd:03:5d:ed:20:d9:54:1d:a3:50:28:10:
f7:94:d5:ea:d3:ff:de:db:c1:ef:2b:f1:59:a8:4e:
d9:46:3e:ef:da:f7:92:c8:80:5b:95:10:8b:8b:76:
14:08:06:38:80:77:43:13:8e:99:bf:00:07:57:1b:
f8:d8:66:87:2f:ba:6f:0c:ee:b4:0d:80:94:24:30:
bb:60:00:4e:86:4c:46:e6:4a:88:2e:7f:28:38:fc:
02:70:a9:e4:12:00:28:3c:37:92:80:2b:96:6a:9d:
5c:c0:01:3e:b5:cf:07:e0:90:6c:0f:31:b9:7d:e5:
03:fd:ea:16:80:0d:ae:77:6d:11:c7:26:67:67:4d:
54:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:5B:52:F2:B6:29:C6:93:BC:E7:2E:4C:DF:89:45:80:D7:72:B3:F4
X509v3 Authority Key Identifier:
keyid:C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:c4:f7:60:52:81:9e:e4:9d:bc:73:db:9f:c4:f4:16:2c:81:
34:14:fc:3c:a2:f1:bd:c5:4e:99:c0:51:10:38:a8:1b:42:5a:
17:e3:39:89:c7:66:8d:c6:7d:68:5d:95:c6:a2:26:cc:b1:b2:
4d:b4:00:3c:0d:2a:fe:a3:58:9b:4b:f4:6a:e7:49:c5:a2:5a:
fa:be:25:8b:ef:67:bb:3a:b1:0f:5d:4f:2d:f3:de:dd:a8:ba:
2f:b3:d5:36:f6:1a:1f:bc:97:9b:ce:4f:71:bf:31:fb:14:35:
9b:a9:37:fe:69:70:11:4e:e5:bf:ad:c4:74:8c:16:dd:48:8b:
52:2c:2e:d9:8c:ae:c7:7d:06:14:27:3d:c7:f3:d2:0a:7e:bd:
63:44:d6:21:69:a7:57:b2:9e:a6:29:84:7e:73:a9:86:ef:87:
56:90:4f:02:af:29:d6:f2:0f:cc:73:6c:29:59:57:5f:8c:84:
d7:04:7b:d8:e8:26:da:9c:1f:88:61:49:23:2f:7c:70:13:cd:
ac:10:a0:f0:72:cf:84:c5:21:c5:9c:5a:f0:a1:4f:1b:e7:f3:
b8:fe:85:30:92:55:bd:21:07:aa:88:28:84:61:c9:90:0e:59:
1d:cf:15:5a:39:dc:ca:b2:52:2a:0c:31:b4:7c:3d:89:9a:3f:
9a:ef:7b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:35:53 2025 by rpki-client