Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: RaJe3iEGLqVsS3gEd6vPn0VAyxbkw66SBA5yF9XHIZQ=
Subject key identifier: D3:65:F7:48:FF:2D:81:F5:F2:6D:43:20:B7:4A:2E:2B:87:04:C6:9C
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 0198D69871D5787A05F4CE284CF0DB17F75C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0B69
Signing time: Sat 23 Aug 2025 11:02:51 +0000
Manifest this update: Sat 23 Aug 2025 11:02:51 +0000
Manifest next update: Sun 24 Aug 2025 11:02:51 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: XZ1xN6leOfL9tPwvH49hfHWPQIQ+vP0coTIJUw7z+8s=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:71:d5:78:7a:05:f4:ce:28:4c:f0:db:17:f7:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Aug 23 11:02:51 2025 GMT
Not After : Aug 24 11:02:51 2025 GMT
Subject: CN=d365f748ff2d81f5f26d4320b74a2e2b8704c69c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2d:cd:38:9c:cb:61:33:1e:f6:6b:1d:7c:0c:
e7:75:22:cd:14:6b:ad:71:ea:d1:02:e0:c2:96:bd:
b4:5d:7e:7c:f4:12:07:44:a3:91:27:b0:2e:89:41:
b0:f1:e9:fc:51:56:f6:42:0b:1a:a7:29:eb:cf:4d:
9e:ee:e1:2b:b2:7d:88:5a:db:61:12:53:22:2a:64:
73:07:27:88:86:7d:93:e0:02:10:a9:61:e4:7b:49:
3c:7d:14:f5:4a:46:31:03:b8:c5:79:ae:b5:d6:ca:
fd:67:96:9c:d0:36:82:2c:06:72:40:0a:02:9c:1b:
88:53:0a:64:e0:3a:02:e9:46:37:c8:9b:23:d7:9b:
52:07:ab:74:c2:c8:6f:43:9c:fb:8e:af:e3:72:66:
63:e2:8b:6b:cf:2f:09:00:32:3b:8d:85:b9:4c:39:
ea:7c:1e:4c:17:ee:9c:94:d5:d1:0e:b9:a2:8c:ab:
ab:6d:4e:aa:20:90:53:c9:d5:db:24:42:7f:38:72:
ce:63:d3:72:4a:97:62:a8:5f:02:01:12:9f:e6:37:
cb:2f:f5:a6:a2:1a:97:21:f3:fa:f1:1e:6c:91:49:
08:d9:1f:2c:46:03:9d:c4:ff:b8:b7:68:ea:9b:b1:
cf:bd:76:92:27:35:75:91:58:8e:78:c5:c4:f0:ce:
6f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:65:F7:48:FF:2D:81:F5:F2:6D:43:20:B7:4A:2E:2B:87:04:C6:9C
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:7d:77:4a:f8:39:dc:01:a1:45:cd:cc:39:b6:1c:55:b4:a2:
95:a9:7e:62:e8:74:c8:64:c0:06:b1:16:f8:ea:15:8a:64:f0:
21:50:4d:ad:d4:c6:70:3b:94:53:aa:f8:d4:11:e5:db:75:63:
a9:47:5a:4b:c8:53:80:4e:fb:73:66:bb:f3:d0:82:2b:c5:42:
a4:a0:d7:09:a7:2e:4b:23:ba:05:1b:6b:e6:65:fa:76:af:dc:
09:47:5c:0c:ef:81:dd:66:9c:d9:58:f7:79:29:b9:c6:35:8c:
47:96:81:47:28:c3:eb:07:5b:94:05:f0:72:7b:74:4b:17:a8:
47:c3:d5:11:07:5f:1a:a9:53:77:47:77:61:ec:90:6a:a5:6b:
c3:b9:59:06:f9:ff:3c:be:9c:e4:ff:89:23:a6:31:84:01:61:
dd:03:64:85:bd:61:00:0d:5a:3b:89:19:74:56:2c:92:e3:9f:
f9:52:aa:d3:5d:38:80:d0:1b:cf:2f:a5:43:1d:32:36:f3:af:
95:1d:22:f6:27:d5:a8:a4:f1:4d:f6:b7:9b:8e:11:4d:6b:f6:
b3:a3:f0:83:79:ca:af:97:5d:cf:31:98:45:bc:44:27:ec:36:
c5:6e:15:d8:cc:c1:52:a6:eb:81:af:d5:06:cd:b1:42:7c:46:
64:08:ad:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:09:42 2025 by rpki-client