Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
File: YdnzrFCGTRj_Jokzx04qia7GEJ0.mft (raw, json)
Hash identifier: eZRxQIHxokITw8KhXCK/YrQRizFyF58zXy1jq5lGaqo=
Subject key identifier: 61:DC:43:96:58:54:C3:A9:5E:F5:89:54:1F:DF:19:41:78:C0:1E:DF
Authority key identifier: 61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D
Certificate issuer: /CN=61d9f3ac50864d18ff268933c74e2a89aec6109d
Certificate serial: 0198D65F777AB5072C539B0FF57E473A1F47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
Manifest number: 0385
Signing time: Sat 23 Aug 2025 10:00:37 +0000
Manifest this update: Sat 23 Aug 2025 10:00:37 +0000
Manifest next update: Sun 24 Aug 2025 10:00:37 +0000
Files and hashes: 1: Q0gUuxATATDf6JEQ9fzt1u3IZsc.roa (hash: 3y/S39XmNPx0DoVA3l0EHWQrU4S+Z88s+G6ph2XRAwc=)
2: YdnzrFCGTRj_Jokzx04qia7GEJ0.crl (hash: H2APZW7WDIkogJH/jiNxJUdzjPBnm1JaPU5rOPwqvYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:77:7a:b5:07:2c:53:9b:0f:f5:7e:47:3a:1f:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d9f3ac50864d18ff268933c74e2a89aec6109d
Validity
Not Before: Aug 23 10:00:37 2025 GMT
Not After : Aug 24 10:00:37 2025 GMT
Subject: CN=61dc43965854c3a95ef589541fdf194178c01edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:75:ac:d9:fa:e5:f2:dc:56:49:07:d7:4a:de:
e0:bd:f4:6c:53:7c:bf:99:79:05:04:d6:55:ce:37:
c1:a2:75:50:e2:4f:eb:7d:1e:36:2b:c0:0c:5d:83:
fb:f7:02:8e:57:8e:ce:bd:54:36:c3:32:03:ef:81:
0b:55:13:e6:bb:87:db:73:22:b2:24:29:e7:9d:e1:
23:fd:00:03:33:d7:90:c8:a5:2f:21:0c:ed:39:1a:
77:30:70:1a:9f:f1:5d:32:87:73:0d:00:48:7d:a7:
6a:fa:28:cc:24:f6:49:9f:47:1a:d1:ae:31:27:3f:
84:fa:ed:cc:60:86:da:b1:be:8f:87:3a:50:cf:93:
7e:11:7d:d4:11:7f:f8:2b:12:0e:9d:66:4f:c1:cc:
5d:d4:3a:07:2d:54:6a:eb:fc:ea:d6:4b:7e:d4:d9:
da:a4:0d:7b:3f:ce:bc:29:87:75:47:21:26:a7:0c:
6d:0a:8a:ad:b0:4f:d5:c7:1b:e1:fc:3b:2b:82:c1:
ea:5b:25:0e:5d:0f:27:ab:54:c8:93:63:71:78:ce:
fe:cc:47:d3:b3:d0:c6:8d:d6:41:90:4a:85:f9:e7:
36:66:04:a3:1a:be:3d:8e:d5:97:dd:34:33:0e:df:
96:94:af:1c:09:ed:a9:0e:be:9e:35:b4:1e:c2:c2:
a7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:DC:43:96:58:54:C3:A9:5E:F5:89:54:1F:DF:19:41:78:C0:1E:DF
X509v3 Authority Key Identifier:
keyid:61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:d5:80:bc:20:4e:e3:54:10:eb:fa:fd:c5:7f:80:25:42:f0:
e1:05:54:69:ed:6a:3c:d1:af:65:a6:1f:d7:86:0b:bd:cd:e4:
30:3d:5d:cd:3f:dc:4c:9d:75:ac:de:49:52:cc:99:f8:4a:f2:
31:68:49:09:94:3e:c6:c4:2b:c8:b5:41:6a:02:90:50:7a:7f:
72:11:ad:dd:98:53:d2:65:f1:2d:24:39:11:48:48:0c:86:b8:
84:00:7f:a3:9e:ef:df:26:2e:b5:2a:52:94:34:f3:7d:1e:ea:
49:58:73:7e:01:b0:c1:84:ba:71:b7:6f:f0:8f:b5:47:d8:d7:
7b:94:a0:95:57:e0:d7:35:f4:bb:12:cd:0f:ff:9c:af:e7:28:
6f:ac:a5:57:ec:a5:e5:e6:c5:0b:2b:b9:05:62:9d:b1:96:d6:
fb:2f:db:78:27:a2:85:32:e4:db:bd:f3:c7:78:c0:94:9b:c2:
0d:55:01:22:4e:7e:a8:ee:43:50:0d:8e:55:77:86:f6:1b:77:
ae:f2:13:ea:64:32:b7:cb:c9:29:91:db:f7:76:c9:ae:58:eb:
03:02:91:50:66:eb:21:07:7d:72:87:0e:13:fd:85:1e:84:b1:
b1:85:df:1d:13:31:66:0f:e0:13:9c:80:cd:bb:e9:65:91:eb:
03:45:eb:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:44:15 2025 by rpki-client