Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json)
Hash identifier: tBM4qBW5QDNCYxjNjoQ0xLgzubHxWVkP+NjObzNSV0U=
Subject key identifier: 09:01:A4:B8:43:94:37:C4:E9:E8:76:66:AD:E0:CB:D0:F2:E2:0D:9D
Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848
Certificate serial: 0198D54DE6787C53FDF9A868CE1D267C1EBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 05:01:48 +0000
Manifest this update: Sat 23 Aug 2025 05:01:48 +0000
Manifest next update: Sun 24 Aug 2025 05:01:48 +0000
Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=)
2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: q8Obr8m7ZkYWW/LyZVBMFZilGBO2agnpdRoLGgEJj4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:e6:78:7c:53:fd:f9:a8:68:ce:1d:26:7c:1e:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848
Validity
Not Before: Aug 23 05:01:48 2025 GMT
Not After : Aug 24 05:01:48 2025 GMT
Subject: CN=0901a4b8439437c4e9e87666ade0cbd0f2e20d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bc:8f:9f:c3:22:2f:1b:0a:f8:e7:03:9a:53:
6b:6f:ab:ae:19:11:f2:25:a4:df:a5:71:8e:b4:0d:
88:2e:ab:dc:db:2f:a7:bd:65:a5:b1:9b:49:9a:98:
9d:e4:87:43:58:ea:d9:87:07:df:03:0a:13:e2:53:
6e:8e:96:ca:d9:2b:71:51:e8:ec:42:c2:75:46:54:
77:31:f0:f7:7b:6f:de:75:e4:6e:68:e3:b7:28:62:
90:05:ea:51:a6:b4:4b:d1:61:0e:1c:30:c6:d6:96:
5f:9a:f9:b6:12:4b:c6:dd:ac:9c:0b:7e:cf:d8:ec:
b0:28:63:2b:e1:fb:c3:88:6c:7b:40:58:2f:64:a7:
8f:d2:18:71:9e:ee:8a:fd:07:9c:31:8d:fa:49:8c:
58:b1:f3:1f:25:c6:07:e5:2a:26:f7:b0:a6:94:eb:
a4:58:81:cf:99:7b:f6:d5:c2:b6:12:07:19:a5:3d:
27:06:bc:86:f5:74:6d:3b:a9:9e:d6:3e:96:e4:23:
3f:fb:a1:0a:f4:7c:cc:29:86:a8:36:75:7b:73:79:
d9:c1:05:b4:f0:f3:2c:94:6d:7e:09:e6:32:a3:c9:
a5:c6:4e:bd:2a:c8:b5:11:f2:ff:11:ad:82:8b:bf:
75:ac:77:60:d0:35:dd:c9:1d:b9:60:64:64:80:41:
72:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:01:A4:B8:43:94:37:C4:E9:E8:76:66:AD:E0:CB:D0:F2:E2:0D:9D
X509v3 Authority Key Identifier:
keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:73:94:04:f3:aa:c3:c2:28:72:5a:a4:e8:96:d8:35:7a:38:
9f:18:e7:26:ab:73:79:0f:bd:90:a3:e7:68:38:a6:a5:44:28:
30:fd:30:2f:b1:ad:7b:39:3f:36:3e:8a:41:7f:61:0d:a5:b5:
d1:43:f5:fa:de:77:6a:5b:de:06:9e:cc:e0:a6:da:ce:e4:6f:
6d:a2:3f:f8:d5:18:bc:a0:80:5d:94:8a:63:58:d0:45:95:84:
1b:a8:d6:aa:33:e5:43:2b:9c:3b:64:39:34:38:53:44:68:db:
f7:ee:21:5d:29:f1:c9:54:c5:55:b6:6f:54:1d:f1:56:47:e5:
c5:c2:9f:04:08:51:a2:84:11:17:f6:64:5b:cd:7d:39:f8:fe:
4f:f7:9c:2c:1c:bf:ee:c7:43:f2:0b:8b:32:18:b0:bf:4b:43:
74:65:5e:a6:3d:f5:86:2e:fc:01:7b:7d:c2:67:2f:f6:59:28:
eb:ab:0b:46:46:ed:06:f2:89:8d:df:c6:2c:a3:eb:c0:9e:86:
4f:7a:8e:f5:85:62:b5:5a:19:19:ce:6f:27:a2:a4:8b:a4:86:
ff:4a:aa:9b:37:bc:83:7d:c1:03:98:a7:47:14:b1:b9:6a:2b:
64:94:86:fc:a2:6a:8b:9a:24:8d:79:1c:fe:c8:33:e9:01:ab:
cb:54:93:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:40:36 2025 by rpki-client