Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
File: ypQrJwZ2HCunUyiXg-35heM48Xc.mft (raw, json)
Hash identifier: 8q3DP+G7y9GrG15FI7Pd5VPIUmkjIXamOq5H0/kUetQ=
Subject key identifier: B3:CA:19:E6:E9:36:B5:F3:30:A9:99:93:12:67:98:76:DC:7C:13:FD
Authority key identifier: CA:94:2B:27:06:76:1C:2B:A7:53:28:97:83:ED:F9:85:E3:38:F1:77
Certificate issuer: /CN=ca942b2706761c2ba753289783edf985e338f177
Certificate serial: 0198D583BB3E01B44D16715CDF3AFE4866EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
Manifest number: 0BD7
Signing time: Sat 23 Aug 2025 06:00:36 +0000
Manifest this update: Sat 23 Aug 2025 06:00:36 +0000
Manifest next update: Sun 24 Aug 2025 06:00:36 +0000
Files and hashes: 1: eiXFhQbxCQpcEPNruQeHmSAD-Z0.roa (hash: MfMam3uqTveTnOv++uzEyTkwTSJ0lTcdAkWlcL+odNo=)
2: ypQrJwZ2HCunUyiXg-35heM48Xc.crl (hash: s12qXgtAZYzmF1VzqCgsurBcCFBRl81nUXBkZPdFoWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:bb:3e:01:b4:4d:16:71:5c:df:3a:fe:48:66:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca942b2706761c2ba753289783edf985e338f177
Validity
Not Before: Aug 23 06:00:36 2025 GMT
Not After : Aug 24 06:00:36 2025 GMT
Subject: CN=b3ca19e6e936b5f330a9999312679876dc7c13fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:01:6f:1d:d6:97:d0:39:6f:5e:7e:58:e4:70:
77:0e:64:bf:36:d5:a9:4b:0b:1e:e9:b2:82:d9:e4:
5c:99:46:0a:ba:f7:60:68:2d:6b:d5:10:b7:8a:b0:
08:bc:41:a7:24:dc:7d:ce:5f:1a:86:87:3d:52:5c:
5c:17:29:85:a5:87:9b:f1:04:1c:4a:b4:cc:d9:8a:
9d:9f:b7:5b:64:5a:bb:f9:15:f5:0b:f4:5e:e5:2e:
eb:b5:6b:9d:1d:84:02:4b:d3:9f:f6:11:b2:c9:64:
28:4f:3d:ca:20:5c:da:74:9d:4d:08:56:a4:15:16:
17:63:e3:f3:b0:35:59:fc:69:38:91:b4:26:5e:8a:
9d:6d:c2:ff:e8:4c:12:e2:d8:f4:bc:9e:71:20:b5:
52:ed:31:4c:0c:71:57:05:41:47:52:29:d5:66:cb:
4f:f1:7d:9c:50:95:72:27:9e:a5:06:b9:67:aa:d3:
bc:38:ac:3b:20:3d:a9:a7:3c:8c:66:ab:66:a3:18:
15:b2:93:24:25:26:3f:2c:8d:ef:d8:b5:72:2c:91:
3e:84:bf:ad:f0:2d:57:6a:4c:fb:8b:9c:51:80:29:
b0:6e:05:a9:d3:c5:21:d5:da:bc:2e:7a:c4:9c:18:
7b:55:e5:3e:ec:b3:c3:35:8b:01:e3:fe:cb:2e:9c:
86:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CA:19:E6:E9:36:B5:F3:30:A9:99:93:12:67:98:76:DC:7C:13:FD
X509v3 Authority Key Identifier:
keyid:CA:94:2B:27:06:76:1C:2B:A7:53:28:97:83:ED:F9:85:E3:38:F1:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:44:e2:24:98:55:63:1b:dc:69:59:b9:14:f2:17:09:23:2b:
88:22:0c:66:20:5a:30:e4:15:62:96:65:a5:c9:d5:3d:c5:9b:
5a:f3:98:fc:25:a8:a5:51:42:1f:00:83:b7:05:15:b3:3e:71:
a9:7b:93:17:6b:e6:33:95:26:93:80:fb:cf:d1:86:57:31:61:
fe:76:dd:5e:87:8c:c2:e7:df:14:26:56:00:6b:62:dd:b1:59:
81:18:be:a3:8a:5c:9c:a2:6a:1d:39:74:b3:bd:3c:c7:fb:c0:
7b:e4:66:e5:2d:7c:f5:80:3a:a7:10:01:49:11:1f:53:5b:36:
ee:78:c5:25:76:c3:2f:49:fe:1f:0e:2b:b6:5d:b6:e6:24:8a:
86:48:54:ca:38:0d:6a:ae:37:6a:cb:db:0b:a8:2f:91:ad:93:
32:e8:ab:9f:5b:4c:96:77:ec:40:dc:79:de:30:23:a2:c9:2b:
b0:6a:ed:9b:ef:d2:73:68:ed:ca:b0:7f:9d:8e:e5:15:e0:45:
4c:e1:22:58:d7:ae:9f:38:dd:ac:0b:c7:70:7d:67:e3:c4:cf:
e1:e5:5f:5a:a4:7f:c1:ec:73:ea:ae:70:8b:d3:0e:cb:01:49:
4c:14:7c:fb:48:f9:66:51:d4:60:56:7c:e6:19:26:18:ac:98:
41:39:d6:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:24:01 2025 by rpki-client