Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json)
Hash identifier: /E5UWqZgTQctxqe/KDbl4lhyykzFRs0P6lqhaMJUVzM=
Subject key identifier: A5:B2:9C:D0:32:4C:F8:BA:F8:8B:B0:5C:44:1E:89:E8:BC:D3:1F:8B
Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c
Certificate serial: 0198D660485723EDF0310FE1A0E2C7DBFAAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
Manifest number: 10D8
Signing time: Sat 23 Aug 2025 10:01:30 +0000
Manifest this update: Sat 23 Aug 2025 10:01:30 +0000
Manifest next update: Sun 24 Aug 2025 10:01:30 +0000
Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: 2/PgnoaO0AajKAEuNBelQ7G1MZXwmdDomxrS0h7RRbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:48:57:23:ed:f0:31:0f:e1:a0:e2:c7:db:fa:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6117d6158043150b0ad224a0648df0185706019c
Validity
Not Before: Aug 23 10:01:30 2025 GMT
Not After : Aug 24 10:01:30 2025 GMT
Subject: CN=a5b29cd0324cf8baf88bb05c441e89e8bcd31f8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:64:cc:18:5c:55:13:74:e5:94:0c:17:46:df:
be:01:a4:8b:04:f3:3f:0b:ec:02:ba:da:ec:21:1d:
41:58:6c:18:1b:aa:9f:a5:9b:55:0e:ab:f3:84:29:
eb:59:20:66:79:eb:1d:ca:06:29:a8:ca:57:6c:06:
7a:8c:ee:58:71:8b:45:40:44:e0:06:d4:d6:51:2f:
b2:a9:61:4d:d4:2a:cc:e3:f5:b0:5c:2d:7a:05:54:
1d:b8:2b:ee:1a:78:05:2f:cb:cc:f8:6b:f6:47:29:
8d:2a:2a:16:46:7c:4b:b1:d7:7d:2f:e7:e5:7b:e7:
81:95:a4:a1:0b:07:6d:1e:7d:ea:27:df:9f:67:6a:
f9:71:7c:3e:86:2d:45:7e:da:15:bd:4f:e0:7a:ab:
e1:80:9a:05:02:af:bd:4b:cb:9d:ab:3c:27:69:c6:
b7:91:47:20:98:fc:ca:18:97:1c:25:08:39:79:8a:
d5:7a:58:19:04:e8:35:9a:5d:5b:b8:c3:87:46:7f:
ba:03:74:7d:8a:cb:73:4c:59:5b:72:d2:cf:d1:ce:
0a:ed:50:c1:ae:c3:48:e2:94:83:63:f5:67:c0:80:
7f:65:ab:82:d0:fd:ba:dc:b7:27:40:94:87:a3:af:
bf:c1:0f:4d:ec:97:df:c4:f6:98:9d:7b:4d:57:7e:
fb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B2:9C:D0:32:4C:F8:BA:F8:8B:B0:5C:44:1E:89:E8:BC:D3:1F:8B
X509v3 Authority Key Identifier:
keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:dc:2e:23:ff:a3:60:5b:a3:11:e9:3b:70:66:80:01:c2:d6:
93:60:06:b7:34:47:73:65:f3:ff:ce:fa:4d:82:70:e9:4d:e7:
79:ff:39:70:cb:a3:51:55:c3:04:1b:12:f1:e2:4d:c3:a0:65:
01:23:ed:1f:cb:0c:7e:f3:73:52:0a:d1:22:e9:8f:9f:78:44:
f1:80:dc:30:8d:86:23:d0:f6:c6:c2:34:b2:82:22:2a:fb:e1:
f9:d3:fe:4b:05:4c:af:8c:80:f8:a8:02:c1:32:06:26:4d:b0:
86:c1:d0:ae:1f:01:d7:7f:48:67:b5:c9:49:23:d2:e5:2c:bb:
c7:37:6c:81:bd:86:f4:d8:a2:67:fc:40:39:f3:c4:ed:76:51:
f1:34:29:25:56:6a:40:13:59:18:77:e0:f5:f9:30:03:a6:cc:
0f:06:0b:19:93:19:40:c1:c7:48:f4:8d:fe:d3:e4:de:96:e8:
71:18:19:0b:54:d6:bf:ec:bb:bb:bf:11:d1:0b:bc:11:d3:bd:
67:09:35:fd:8d:b7:e5:26:e0:cb:1e:46:c9:4d:9f:6a:27:df:
8e:da:6f:71:5c:6f:e4:af:f4:85:48:7f:48:92:68:20:c3:46:
c2:e4:dc:c5:91:8a:e2:3b:a8:e3:45:88:2e:50:f1:91:34:f6:
95:34:d5:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:37 2025 by rpki-client