Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json)
Hash identifier: aOvcM9RvJsWGBwaS/pSCC1ABdzjWHJQEHUC8GmWIi2I=
Subject key identifier: B6:24:E9:AF:78:41:72:07:C9:06:6C:91:37:CC:77:76:7F:14:79:CD
Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Certificate serial: 0198D4723E3A162A8251B557F378A7ED31E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 01:01:53 +0000
Manifest this update: Sat 23 Aug 2025 01:01:53 +0000
Manifest next update: Sun 24 Aug 2025 01:01:53 +0000
Files and hashes: 1: FcPpw1IibzSy4BenkulclpDum4U.roa (hash: HSUDUncC0CCpqaUKBhWSJTD0GmSsEAzCocsfF6H1tqA=)
2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: pDlSoF83JcBM7Pa7xmwTbbnlA7RFlkWFyy3t4lEU9MA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:3e:3a:16:2a:82:51:b5:57:f3:78:a7:ed:31:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Validity
Not Before: Aug 23 01:01:53 2025 GMT
Not After : Aug 24 01:01:53 2025 GMT
Subject: CN=b624e9af78417207c9066c9137cc77767f1479cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:9d:f8:0d:f4:a2:d5:99:41:a4:73:1e:a4:42:
cf:8c:df:3d:60:49:b6:48:ee:9c:ae:92:16:6e:db:
09:f4:64:6f:4e:99:f1:f7:5f:f3:7b:7a:87:96:59:
41:f2:e7:dd:4d:b5:bb:ed:73:28:27:7e:f2:d0:f1:
62:29:19:47:28:29:7d:86:5a:9c:5b:97:6d:52:08:
e9:b4:9f:ea:0c:d4:6e:27:09:fc:3b:ae:b9:a9:f2:
51:73:23:34:da:f8:1e:5e:7e:09:a1:05:d7:55:65:
23:ef:0d:4a:69:87:e8:1c:ba:fb:01:de:26:81:fa:
b6:82:01:46:50:e5:77:12:21:ba:d6:61:50:d0:bc:
57:2f:9a:df:c5:e8:da:06:c4:20:18:99:c9:b4:3e:
ee:e3:e1:6c:63:38:cd:11:30:7e:09:54:b1:a5:ff:
01:c9:31:73:45:01:6e:85:b6:fc:fd:2c:29:7d:ba:
18:d7:a9:7c:20:b7:32:58:53:38:90:97:b6:f0:3b:
86:3d:8c:95:9b:a4:78:de:02:63:e3:03:63:31:98:
62:59:0c:72:46:34:20:9d:b8:4e:b6:c0:30:af:65:
c5:4a:eb:bb:5d:4d:74:85:52:13:8c:92:0e:29:06:
19:5e:47:2f:4d:ae:cc:3c:97:f7:cc:8d:82:86:09:
3d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:24:E9:AF:78:41:72:07:C9:06:6C:91:37:CC:77:76:7F:14:79:CD
X509v3 Authority Key Identifier:
keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:bc:6d:ac:d6:12:bf:9b:b9:b6:0c:53:7a:72:8f:81:95:e9:
dc:e0:79:9d:d9:22:d0:00:5c:9d:47:95:f3:55:ca:30:27:e1:
69:39:9c:04:94:6e:c6:4d:cd:91:84:47:08:75:63:2d:fe:72:
39:77:a8:6a:57:76:e5:b3:99:f6:6f:fb:2d:13:43:76:56:c4:
31:81:0a:10:23:ea:b3:12:17:7b:c9:69:b2:e7:ed:29:98:ac:
ea:2e:9a:3e:4b:d6:aa:d2:79:47:28:8b:f4:df:a5:b2:90:d0:
97:3c:1e:d4:bb:5d:59:94:f2:70:1a:7d:50:ef:35:9a:00:22:
8c:1d:9b:cd:34:cb:7f:2b:4a:31:b6:b7:82:f8:ef:86:64:7a:
29:97:c0:aa:70:dc:c6:db:cb:1f:69:fe:5e:04:29:b5:73:35:
ee:f2:a5:ba:b0:46:e5:d0:3c:95:e0:8d:b9:36:58:c3:5e:98:
b1:94:b3:be:21:86:7e:91:81:3a:81:85:6a:ed:a7:13:b1:ff:
46:de:73:d0:b7:3e:a8:d3:2b:1e:2c:38:03:f0:5e:be:39:d5:
32:cf:05:a6:d6:34:fb:26:07:68:63:3c:0f:ff:41:f2:6b:bc:
53:22:e2:be:b3:55:28:2c:8a:a0:ee:bf:be:60:e5:6c:3e:c2:
2c:04:97:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:36:01 2025 by rpki-client