Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
File: YG03z4fxLyqy3vMTgMOGuCbBnWU.mft (raw, json)
Hash identifier: 9pl/FJO1vgv5mmmZmOG9MKoV1ExeVyu7ywyUQhkNseQ=
Subject key identifier: 11:F7:E0:E9:71:E3:02:4D:F5:E2:18:C6:2F:C9:D5:F5:FE:F8:67:19
Authority key identifier: 60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
Certificate issuer: /CN=606d37cf87f12f2ab2def31380c386b826c19d65
Certificate serial: 0198D4E0F0AF09D5370D92C8C3F0898E3D1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 03:02:47 +0000
Manifest this update: Sat 23 Aug 2025 03:02:47 +0000
Manifest next update: Sun 24 Aug 2025 03:02:47 +0000
Files and hashes: 1: YG03z4fxLyqy3vMTgMOGuCbBnWU.crl (hash: r3mzQgQi4SBDHcKBAD4f5WkqWaJJsWYbzezxr3SiWeA=)
2: nLsyVuehs4jeCS4JRJE2VO5aV5I.roa (hash: ypIKdtNC4Ic9Sqbxvpei64KUmu5yr6lYiqShQ2+fMBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:f0:af:09:d5:37:0d:92:c8:c3:f0:89:8e:3d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606d37cf87f12f2ab2def31380c386b826c19d65
Validity
Not Before: Aug 23 03:02:47 2025 GMT
Not After : Aug 24 03:02:47 2025 GMT
Subject: CN=11f7e0e971e3024df5e218c62fc9d5f5fef86719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e4:22:70:85:35:99:a2:cf:6e:55:50:bf:d3:
e8:ca:93:ce:79:37:a5:00:6c:c9:b2:87:e7:ae:b5:
23:b4:c5:37:a0:8d:40:36:b3:76:19:0f:95:c2:c5:
27:75:44:49:41:43:86:86:fc:45:bf:c5:a9:a7:98:
32:ab:b7:a2:2f:97:53:61:4e:eb:48:2b:cc:5c:7f:
70:51:2b:aa:ab:94:6b:13:2a:cf:64:04:42:31:ea:
1c:38:bd:58:8e:e3:82:63:0f:43:bb:ff:13:3d:1d:
43:0b:24:8c:fa:f2:84:62:ae:6c:a3:8a:8c:ea:90:
27:ec:75:e3:80:0b:42:fb:6f:6f:7a:0b:c3:cd:0f:
e7:5c:21:3c:84:bc:f8:15:b9:0e:6d:2b:36:19:25:
31:87:95:80:27:82:83:b1:03:be:ca:6e:de:0c:a4:
04:cb:49:c7:5c:fb:c6:d8:a9:11:e4:3c:33:3b:45:
b0:94:5b:c5:24:06:1d:66:b7:44:26:f0:27:62:ab:
45:25:9a:98:f1:b9:e4:1e:17:e3:8e:fa:a1:7d:52:
7c:2e:07:ac:1c:a7:f2:d4:e9:97:6f:8e:70:9f:c0:
08:71:35:d0:f3:a4:60:c4:e3:d4:3a:37:d5:60:13:
99:60:58:24:eb:27:3e:f3:8f:19:b1:df:53:6c:f7:
41:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F7:E0:E9:71:E3:02:4D:F5:E2:18:C6:2F:C9:D5:F5:FE:F8:67:19
X509v3 Authority Key Identifier:
keyid:60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:62:c3:db:b2:30:9d:15:ac:a7:6f:25:0e:ed:42:f9:b3:41:
13:45:82:27:20:66:b7:3d:f5:df:b1:6c:07:1f:fd:44:bd:b3:
9e:06:20:7c:d0:98:dc:e3:bb:9d:01:7b:38:5e:15:f0:ff:53:
16:b6:f2:35:2e:a6:1d:f5:a4:90:54:bf:49:0c:7b:c5:72:04:
3a:9c:17:bb:f5:e0:97:fc:17:31:a7:94:55:ee:4c:33:00:de:
97:f9:e1:20:ab:ad:36:ae:b8:2b:55:20:24:e0:62:6d:5f:f1:
e7:75:61:74:8d:57:5f:f6:72:aa:4d:1b:24:12:56:fb:0f:6b:
84:be:e0:45:ad:66:d7:8f:e8:72:e5:7a:4a:6d:a3:b3:f9:d1:
bc:d1:55:43:c0:58:4f:7c:3f:79:45:d2:07:38:9e:bc:3e:54:
3e:92:b9:10:10:bd:56:dc:94:e0:b5:60:5c:d9:b0:b3:56:a1:
e1:23:f1:d8:4f:81:82:ef:e3:89:ab:e2:e3:e3:78:40:62:2f:
e9:0b:c6:b1:e1:85:ab:ee:05:e4:d6:b1:a3:6d:f2:91:bf:3e:
01:80:1c:07:bd:b9:fb:8e:26:43:c6:20:a1:2a:44:2f:a9:d8:
a2:98:7f:35:cb:df:0e:8b:10:13:17:0a:d9:18:7b:a4:aa:d7:
d9:75:52:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:16:54 2025 by rpki-client