Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
File: YIYxT4djXnk7wuPbvtZkBbisZ3E.mft (raw, json)
Hash identifier: 3Jy9BxuZfNOms7Kt3Ab4aVzab0HEX8/aAEzeFLcBAIg=
Subject key identifier: CB:1A:90:79:4C:FA:40:26:19:62:12:B0:84:18:05:D8:85:5F:B8:E1
Authority key identifier: 60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
Certificate issuer: /CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Certificate serial: 0198D4DFE0A63CA20A36FB2F8B51AE6A5A8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 03:01:38 +0000
Manifest this update: Sat 23 Aug 2025 03:01:38 +0000
Manifest next update: Sun 24 Aug 2025 03:01:38 +0000
Files and hashes: 1: YIYxT4djXnk7wuPbvtZkBbisZ3E.crl (hash: pPPECiUjPXd0d5lghpxgmBLWIPE7CNWkmyPZbasSchk=)
2: ul5EPC9Jg-xhzDe3-EnpTxgh7Dw.roa (hash: pDodgoORM1hTtwe+JSl0g3mWRdcfDqaXlT1wiKFyqck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:e0:a6:3c:a2:0a:36:fb:2f:8b:51:ae:6a:5a:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Validity
Not Before: Aug 23 03:01:38 2025 GMT
Not After : Aug 24 03:01:38 2025 GMT
Subject: CN=cb1a90794cfa4026196212b0841805d8855fb8e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6d:1b:05:cf:18:c3:e8:59:ad:e9:b8:f8:be:
cb:31:be:d9:2b:94:5e:db:78:bf:90:fe:5a:cb:e6:
2e:f2:39:1f:2a:cf:91:8d:15:1b:2d:86:9c:cc:eb:
6a:34:61:89:ec:44:02:83:73:5b:74:f8:88:db:e6:
c1:1b:45:e6:89:e2:94:2d:a5:02:88:60:69:81:c9:
4d:ad:37:9b:6d:ef:86:d3:d0:03:68:b9:52:8a:1e:
62:39:b6:f9:30:ac:1b:c9:32:87:1f:02:2e:6a:cf:
aa:68:6f:88:3f:be:af:7c:e5:bd:d1:91:66:79:9d:
95:6f:bb:80:cb:1b:8c:35:ba:35:f0:10:ee:2d:48:
3e:2d:95:44:d8:c2:4d:ac:09:6b:1c:e0:97:f9:9e:
69:9b:9d:68:2a:e8:60:81:89:57:19:e3:66:31:b9:
ef:fc:7a:9f:c7:f5:cf:03:e2:68:12:9a:9b:8a:77:
a1:3d:c0:bf:a2:0e:c9:fb:78:da:ef:0e:d1:6f:dc:
05:c6:63:35:32:8e:be:c7:d9:b9:24:00:65:bc:d1:
26:84:1c:c7:6a:d8:85:2a:b5:77:a9:f2:e2:25:51:
aa:8e:0c:40:c1:50:2e:19:71:ee:71:df:82:d2:de:
fc:1b:e4:8d:57:50:9b:02:2d:bf:db:ca:79:08:45:
cf:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:1A:90:79:4C:FA:40:26:19:62:12:B0:84:18:05:D8:85:5F:B8:E1
X509v3 Authority Key Identifier:
keyid:60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:d4:3f:be:50:1f:cf:1c:7e:e2:02:b2:b6:71:e2:70:da:ff:
1c:b1:ea:94:70:28:42:71:a5:16:23:62:d9:70:6a:c5:30:7e:
05:b9:db:54:b2:e1:6b:f9:ac:ba:86:d3:22:4a:3e:02:70:a5:
b8:70:fb:ae:b0:c9:c0:b0:00:f3:9f:ae:89:73:6d:16:23:d7:
9e:ad:92:08:07:c2:b4:01:9d:7f:06:4f:89:db:6d:a1:41:b5:
ff:d7:a5:ee:a3:01:26:1f:74:d8:d9:be:8f:41:0f:d6:66:6f:
40:e9:40:aa:ff:00:01:35:a0:d1:7b:8e:68:82:21:2d:ad:92:
46:4b:1d:27:21:dd:ee:90:70:84:a8:14:19:6c:2c:67:d5:8e:
98:17:ce:82:bb:b1:7a:b0:fa:de:b3:49:35:c3:fd:d4:a4:11:
8e:5b:d3:1e:b7:07:e1:c9:ba:61:f8:0b:2a:94:3c:cb:0e:c8:
62:b2:57:05:b0:70:b8:d2:1c:f3:96:a0:57:f3:6c:39:d2:81:
5d:de:f4:0d:8a:12:9c:bb:c4:50:13:20:fe:e6:5d:28:e7:6b:
f9:bf:b5:20:3a:2a:da:3d:a6:84:d2:1e:19:0e:4e:ca:da:26:
ba:90:94:bc:aa:26:43:65:04:f5:ee:93:38:05:3b:41:e6:e2:
7d:da:c9:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:15:01 2025 by rpki-client