Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json)
Hash identifier: uOEuQkANDiDuKA9JZTh4tZG8O4V2Ea5XcMgmuhsAHIY=
Subject key identifier: 8F:2F:7D:D1:E3:58:72:42:E4:C6:6D:78:D3:B9:0E:DF:BD:B0:8F:DF
Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Certificate serial: 0198D5BBD2E8DA032B7F766039222606DE11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
Manifest number: 02FD
Signing time: Sat 23 Aug 2025 07:01:52 +0000
Manifest this update: Sat 23 Aug 2025 07:01:52 +0000
Manifest next update: Sun 24 Aug 2025 07:01:52 +0000
Files and hashes: 1: q6cfXUDveWHdgQWTYKqVwvvOAe0.roa (hash: BJPMM6GNYN6IqCj9i2G5fXzbZjuTVnz0OtAPd8t+eZk=)
2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: GGZe54FKt40sTzzk+OcG5hDtFbO96celQj31R5r+8Pk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:d2:e8:da:03:2b:7f:76:60:39:22:26:06:de:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Validity
Not Before: Aug 23 07:01:52 2025 GMT
Not After : Aug 24 07:01:52 2025 GMT
Subject: CN=8f2f7dd1e3587242e4c66d78d3b90edfbdb08fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f9:d9:39:81:2a:e1:ca:ae:79:c1:e3:fa:78:
2c:01:5f:43:3d:98:aa:72:08:d8:2e:23:a9:e5:85:
63:8c:56:4b:21:04:40:f4:80:1c:02:44:30:52:9b:
4c:5b:83:28:59:1f:62:6a:7d:33:d5:7c:59:0f:cb:
08:a8:2e:88:08:71:f2:15:d5:b8:a5:ba:c9:de:ef:
ec:4d:72:77:ee:d2:db:74:b3:eb:2d:c4:be:54:63:
a3:f4:9f:0c:d1:55:62:c8:18:87:15:a0:07:7f:fc:
b0:9b:0c:8b:92:77:1e:65:22:47:72:84:f3:f2:e6:
5b:2e:1f:7b:19:28:13:37:b3:4e:b7:67:80:71:a3:
52:d7:ce:11:76:fa:f1:91:49:63:46:a0:7a:5c:e1:
36:25:e0:62:9d:27:03:a4:ba:07:1d:ae:bb:2a:45:
6e:97:5e:77:30:7f:e3:de:23:ec:b6:d1:de:dc:a6:
52:85:14:5f:de:2f:00:64:63:ab:d3:9a:d3:f4:87:
71:55:0f:3a:13:e5:20:e3:5e:a6:48:44:78:d5:2d:
d7:20:1c:7e:ba:de:07:28:b3:b9:2b:8c:22:5a:8c:
aa:89:3c:78:a8:8a:40:d7:cf:c4:39:bb:cd:9c:56:
db:8a:27:c4:a2:c1:8f:48:9b:23:12:1a:77:b0:d8:
75:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2F:7D:D1:E3:58:72:42:E4:C6:6D:78:D3:B9:0E:DF:BD:B0:8F:DF
X509v3 Authority Key Identifier:
keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:85:b1:55:4e:89:ad:f3:09:12:56:8e:b1:4b:43:ee:62:5b:
e6:0e:a5:a4:7a:f0:77:a4:a5:37:04:ef:ca:1b:d9:ce:11:ad:
e0:dd:26:78:c5:b5:a6:75:99:6d:cd:98:fe:47:61:4e:85:44:
2b:04:9d:e0:ea:94:23:b5:c1:2d:64:c1:66:f5:a4:9b:b7:b3:
36:6a:38:8f:dd:8d:63:12:60:bd:0c:e1:0a:16:99:9c:99:03:
9f:ee:05:d4:b3:af:ea:34:f6:53:13:96:b8:13:48:b4:8a:6e:
55:c1:f5:80:63:48:58:14:23:62:0e:c7:36:59:1d:90:03:69:
fa:bc:f8:80:34:7d:b6:97:48:9b:f2:c7:c9:dc:43:d5:ca:f3:
6b:cf:6c:91:e2:57:e6:cd:95:ec:ea:ca:62:35:d7:39:82:40:
4b:54:bb:93:dc:7a:b9:ba:2c:2c:89:2b:be:e0:c0:7c:70:cd:
ff:7e:da:3d:72:4c:b8:7c:76:6c:70:eb:de:6f:60:be:d3:17:
54:81:d9:f7:6b:37:17:85:a1:32:5f:37:6e:70:d7:8c:44:a2:
36:07:d4:a2:45:34:bd:75:95:db:f1:24:6c:7f:8a:4c:c2:27:
b6:f4:21:ee:86:ee:eb:3e:8f:cd:8b:ff:bc:b6:5a:8f:14:1a:
20:8e:1e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:48 2025 by rpki-client