Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
File: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft (raw, json)
Hash identifier: 0GS3O8nyAK9wI/saGMy5GoOCc7DwjoL0wRGO9IRgCPc=
Subject key identifier: 61:18:17:A1:A6:7E:31:7B:0E:8C:B7:75:F7:C7:91:F3:CE:1A:DF:3D
Authority key identifier: C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81
Certificate issuer: /CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
Certificate serial: 0198D54EACCB580CE463A3C11FA95AAA5F8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
Manifest number: 0E17
Signing time: Sat 23 Aug 2025 05:02:39 +0000
Manifest this update: Sat 23 Aug 2025 05:02:39 +0000
Manifest next update: Sun 24 Aug 2025 05:02:39 +0000
Files and hashes: 1: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl (hash: 4Bp1ZiYaDnN+tjQO3Rwg0mkMfnrWRsWW4735FpV28b8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:ac:cb:58:0c:e4:63:a3:c1:1f:a9:5a:aa:5f:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
Validity
Not Before: Aug 23 05:02:39 2025 GMT
Not After : Aug 24 05:02:39 2025 GMT
Subject: CN=611817a1a67e317b0e8cb775f7c791f3ce1adf3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:87:2d:5e:72:d6:55:07:02:dc:f9:31:02:43:
e9:ab:e5:96:13:5e:e9:1e:43:cc:25:a7:4e:02:a6:
68:9f:d9:41:93:9e:d5:3c:94:30:19:53:2b:f9:ac:
5a:56:24:69:8b:cd:54:ce:7c:77:2e:91:ce:2b:b2:
13:5c:22:a5:3e:e0:aa:40:2a:dd:20:af:0e:5b:fa:
2f:ad:81:00:50:42:8c:b1:de:30:62:81:ee:ea:bb:
77:5b:36:cc:69:02:a6:61:79:13:54:36:5d:41:23:
b0:a2:b5:c3:e1:01:ce:2a:3a:23:42:30:b2:0f:76:
c4:77:68:7d:63:38:d8:60:83:c8:4f:1a:38:cd:32:
15:3b:e7:be:b2:4f:e1:03:ab:33:cd:38:b6:7f:65:
51:f0:cf:d2:1b:b9:25:03:28:bf:03:0a:ab:67:2f:
27:0a:32:23:03:cb:c3:a7:a7:c6:de:90:7b:b1:c9:
61:8a:44:f9:2c:0e:6c:51:76:a3:cb:c4:a9:8e:29:
b1:bc:91:0e:57:8d:e4:02:d9:41:d6:26:9a:b8:29:
af:0b:58:bd:c3:15:a0:5d:2d:95:63:bb:41:8c:80:
a9:21:2e:f0:cb:de:6b:f2:3c:e0:a7:38:51:96:b3:
34:e6:d7:89:a4:dc:65:cb:d5:6c:ed:35:38:eb:6a:
b2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:18:17:A1:A6:7E:31:7B:0E:8C:B7:75:F7:C7:91:F3:CE:1A:DF:3D
X509v3 Authority Key Identifier:
keyid:C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:e8:d5:1a:c2:65:27:75:84:cd:37:3e:61:8e:7d:01:0c:cf:
f5:45:6e:c4:fa:a9:0d:2e:a6:fc:88:94:b3:34:92:33:ef:b8:
6b:2a:2b:2f:d1:50:1d:d7:b6:7f:b9:d5:e3:18:44:60:50:e2:
14:15:52:c3:90:89:9a:0a:b9:0b:81:8f:84:5c:bf:d9:8c:74:
3c:01:06:ac:96:82:d2:48:75:68:9f:5d:b8:5d:77:44:41:70:
cc:e1:30:a5:e5:13:46:4b:0e:58:ff:d6:74:52:ff:fa:1c:d1:
5a:d0:8d:31:4c:97:45:57:da:6a:82:cc:ab:c7:3c:a1:28:39:
e5:a1:b5:1b:50:a5:e4:e2:86:a5:80:02:22:d2:cd:44:4f:1f:
f9:66:7f:0f:d1:8a:f1:6f:b3:42:9c:0e:d3:ef:fd:a7:50:9f:
a7:7b:47:5c:f0:bf:3e:af:9e:8b:c7:f6:88:d2:5f:ac:f2:6d:
8c:f5:51:82:4d:99:7e:7a:0b:42:4c:ae:7a:f9:79:9b:59:97:
7a:ba:92:71:0a:c6:bf:6c:1e:9d:18:68:fe:10:5c:82:31:93:
d2:a6:fa:75:d6:68:e8:e6:b9:0c:40:33:6a:74:fb:04:7a:11:
1b:fe:8e:d7:2c:43:88:5f:e1:62:cc:75:a4:e5:90:f1:81:b1:
04:b8:17:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:16:11 2025 by rpki-client