Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json)
Hash identifier: t8WyyehMwAopexA7d8ZFu+QyBAWwSL2IxYUF1Hv8cHA=
Subject key identifier: 39:35:62:F2:BF:7F:C3:3B:DB:7E:81:A0:80:BB:7F:1B:D8:78:0C:62
Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40
Certificate serial: 0198D404AF9278BE5309047945E8DBB759D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
Manifest number: 1648
Signing time: Fri 22 Aug 2025 23:02:13 +0000
Manifest this update: Fri 22 Aug 2025 23:02:13 +0000
Manifest next update: Sat 23 Aug 2025 23:02:13 +0000
Files and hashes: 1: a0gi81K4PU-mZZPSh82aNeLjsVI.roa (hash: Id1bqvDurbpWKdNvf29qBzclAu3m5HKcR5Kg3lRHGKE=)
2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: hG6S/s8ZUw4AQ4zBqwNcBBLOOxW7p07XS4q9yBgAjxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:af:92:78:be:53:09:04:79:45:e8:db:b7:59:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40
Validity
Not Before: Aug 22 23:02:13 2025 GMT
Not After : Aug 23 23:02:13 2025 GMT
Subject: CN=393562f2bf7fc33bdb7e81a080bb7f1bd8780c62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6c:42:01:c0:f8:bc:23:af:82:59:b5:ce:5b:
37:5e:b6:a1:41:ce:8d:b8:2b:da:41:72:58:b5:30:
28:27:3b:4d:48:ae:49:02:ee:b6:48:0c:ee:03:00:
b9:75:2f:60:7e:2f:c0:52:10:f1:32:25:41:91:f4:
87:41:ad:b5:0f:7f:dc:c8:7c:db:41:c0:e0:ca:50:
3a:1b:17:b9:a5:09:72:ad:09:6e:db:2c:66:36:c1:
f6:6c:90:7b:bb:f7:20:a4:07:af:09:ba:91:07:e2:
ff:11:0d:d0:bf:81:84:fe:4d:99:49:31:73:8e:d1:
99:71:1f:f3:3b:b4:50:26:fe:9e:c8:66:4e:38:5b:
2f:e4:23:dc:d6:99:a9:bb:87:9c:02:28:97:c2:22:
7d:cc:2e:db:43:f9:f1:9f:af:37:ea:6c:4f:c0:14:
f3:d0:96:9a:6d:92:1c:bc:74:bc:71:4c:05:9c:dd:
67:0a:30:7a:fc:85:b0:e9:b8:72:bc:68:41:e5:32:
de:b0:51:02:ed:2c:60:ca:2a:1e:b3:21:41:b0:ca:
ac:95:4d:55:97:c1:1e:a3:00:6a:fd:19:36:b5:85:
fe:fe:86:27:be:59:ae:68:34:fb:35:17:a6:b4:f9:
49:58:5e:bd:53:70:2e:68:e9:a0:75:69:1f:af:13:
78:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:35:62:F2:BF:7F:C3:3B:DB:7E:81:A0:80:BB:7F:1B:D8:78:0C:62
X509v3 Authority Key Identifier:
keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:af:23:3f:4c:3a:36:a5:56:74:7d:17:14:f9:53:b6:19:36:
f9:3a:ba:94:e4:45:f4:8c:c5:7f:be:b9:be:99:e8:27:a7:a2:
e6:bd:51:3e:14:5f:81:25:e8:66:f7:8a:dc:3d:70:ce:16:80:
1d:51:74:01:95:3d:d5:59:bb:5b:2b:04:6f:b8:e3:50:22:5a:
d9:61:3f:46:7a:0b:9c:4b:90:7d:be:bc:20:15:26:8f:fd:98:
03:0f:df:ca:f6:3b:0a:48:56:ff:52:6e:52:55:9f:1c:77:c1:
3c:a7:10:bd:b6:a0:89:1e:de:dd:ed:d3:60:15:cc:6c:68:e8:
1f:4e:c5:13:cb:03:03:a3:11:b6:0c:d2:e8:a1:a8:27:c1:6a:
b1:8d:05:ac:fa:6d:ae:a1:c5:28:90:48:47:cd:3e:83:30:a9:
0a:19:13:5f:c1:8d:59:00:ae:f6:da:b9:7e:2b:e5:4a:0f:25:
33:b2:d1:00:fb:ae:cc:f5:05:c6:1b:b0:6d:dc:7b:b1:6e:37:
d5:30:d6:dc:1b:bb:0a:7a:05:79:6d:d0:ed:45:84:b1:cd:03:
57:4e:90:3b:62:6a:e7:d6:9d:74:05:0f:3e:cd:36:bb:ed:c1:
3e:b9:70:04:76:dc:c4:1d:02:71:d1:19:68:4b:cd:1a:94:94:
5f:61:60:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:02 2025 by rpki-client