Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
File: cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft (raw, json)
Hash identifier: 1B8VSasBC2Xf0fL+171Uzb/xIwj5nifLw8Z56MBVbRk=
Subject key identifier: 9D:61:17:2F:8A:E7:FB:9C:CE:51:D8:B3:F2:10:5D:B7:96:AD:33:53
Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd
Certificate serial: 0198D4E0A64CAD06F3698D027D61B20ACA7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 03:02:28 +0000
Manifest this update: Sat 23 Aug 2025 03:02:28 +0000
Manifest next update: Sun 24 Aug 2025 03:02:28 +0000
Files and hashes: 1: X75BC-oQSIZ_Eow4PmOQdnEFFSA.roa (hash: 9fCRye0I7SNN/gpC5nOojc7Nk1BoVgXxf8JAD5uwXBE=)
2: cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl (hash: YEzyGL6FGh9RNZG9yhtfHxBxZ+hV0MhRapjDkKiYodA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:a6:4c:ad:06:f3:69:8d:02:7d:61:b2:0a:ca:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd
Validity
Not Before: Aug 23 03:02:28 2025 GMT
Not After : Aug 24 03:02:28 2025 GMT
Subject: CN=9d61172f8ae7fb9cce51d8b3f2105db796ad3353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:46:f6:0f:80:dd:86:9c:2d:2e:01:c4:be:6e:
b7:64:aa:d5:0b:1c:ec:e6:6c:2a:1c:f5:62:ea:97:
53:8d:3b:5c:69:7c:40:90:83:c0:a5:42:98:92:88:
95:fb:5b:17:10:33:a9:a6:5c:17:4d:3d:e2:32:dc:
7a:ba:fa:9a:fe:f3:5a:00:55:03:bc:85:a2:b6:1c:
fd:ca:dd:c1:1c:d3:35:1c:44:5a:27:1d:ef:86:98:
3c:69:5c:bb:d4:06:d8:1c:f2:4d:5e:f2:02:ff:45:
cc:b5:c4:20:7e:b1:fc:ed:f8:54:aa:a7:25:63:21:
ff:31:fa:b8:1e:77:a7:34:3c:95:5a:3d:04:29:63:
6c:56:59:cc:5c:64:1c:73:50:a0:6b:4b:65:c5:9a:
cb:32:35:d3:1a:cd:02:41:da:08:9b:3b:fa:b3:67:
51:35:23:5f:72:e3:69:32:02:45:a0:9a:69:ba:ee:
73:1b:ba:fd:9d:3d:ff:88:45:c1:47:d8:36:33:fb:
86:a5:32:7c:b6:9d:72:32:c8:3b:6a:48:d7:dc:32:
c8:f3:9e:89:96:a7:dc:b4:8c:17:65:98:6e:51:c8:
9c:72:52:dd:99:8c:85:d5:34:6c:17:5a:0d:c5:67:
ff:42:0b:85:47:d7:b0:e5:d4:e0:c3:42:53:31:f2:
63:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:61:17:2F:8A:E7:FB:9C:CE:51:D8:B3:F2:10:5D:B7:96:AD:33:53
X509v3 Authority Key Identifier:
keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:82:8e:4a:79:00:c6:c3:1d:79:97:6f:0a:cf:88:af:7d:a6:
5d:b3:5f:5f:7a:74:0b:8e:b2:7a:6e:39:fd:90:0b:14:d1:4e:
c3:90:97:59:50:54:f2:e6:16:16:ba:6e:dd:c9:84:c3:fa:09:
9e:ab:81:e9:32:32:4e:58:f6:c4:c5:1a:3e:02:a4:bb:d8:2f:
2c:b1:1d:01:2e:b6:b7:56:07:11:03:62:9d:4a:8c:04:43:59:
85:ca:ff:50:e7:0f:8e:c7:54:2d:4d:75:8b:60:20:61:24:3b:
5e:67:f9:4e:2d:98:ba:e5:bc:de:bc:4e:89:81:09:8c:e6:be:
50:7c:aa:05:cd:bb:08:e0:d0:30:50:f5:1c:fe:b9:5e:d7:9e:
9d:15:0b:48:25:b5:2d:fd:b1:a9:6f:a8:21:62:44:7c:d7:0a:
f2:33:1b:22:a9:3f:f4:8b:58:cc:7e:46:de:5b:e3:83:0e:89:
77:22:49:fa:e0:5e:a3:f7:f7:5f:67:cf:cb:a9:63:8b:8b:1b:
80:6a:e1:52:e3:2b:0b:6b:d1:17:c5:fb:cd:d1:ff:92:89:da:
3f:fc:a7:d9:bb:6c:22:5e:26:57:7a:69:dc:41:ff:23:7f:3a:
ea:43:61:5d:3b:bb:98:db:30:1d:94:8b:73:6c:e7:a1:e7:b3:
dd:13:6d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:19:54 2025 by rpki-client