Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
File: yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft (raw, json)
Hash identifier: 4xlwglln+dlE2gDJ9+xir90mXZ8bxS+3y109VGvoxXo=
Subject key identifier: D0:4F:EB:DB:3A:75:B1:74:C7:90:5D:C7:D6:50:4F:AC:69:99:B5:B2
Authority key identifier: C9:1D:7E:44:9C:FE:C3:12:0A:98:51:16:3C:77:9A:60:26:98:61:72
Certificate issuer: /CN=c91d7e449cfec3120a9851163c779a6026986172
Certificate serial: 0198D9CEA4A387D07B520EA4511D5D4D6BAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
Manifest number: 0382
Signing time: Sun 24 Aug 2025 02:00:54 +0000
Manifest this update: Sun 24 Aug 2025 02:00:54 +0000
Manifest next update: Mon 25 Aug 2025 02:00:54 +0000
Files and hashes: 1: yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl (hash: BpxKk48L7EBQPTpLw3s84bF6mYUl/gYSVOqY8tOVPlA=)
2: z4GL3R9iwn241BwmecTavitjvmk.roa (hash: gozzqy0wMPz097Vp/T+QSgyQzissUGlOoz2lP5A4OOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:ce:a4:a3:87:d0:7b:52:0e:a4:51:1d:5d:4d:6b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91d7e449cfec3120a9851163c779a6026986172
Validity
Not Before: Aug 24 02:00:54 2025 GMT
Not After : Aug 25 02:00:54 2025 GMT
Subject: CN=d04febdb3a75b174c7905dc7d6504fac6999b5b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f9:82:0f:19:49:6c:16:3a:de:fc:0d:86:95:
c4:ac:6f:ed:49:97:16:56:c5:31:5e:6e:82:ac:7a:
99:9a:22:0b:6a:bd:5d:9c:cd:ac:45:6c:98:b7:ce:
a5:53:c0:4e:1a:c9:74:46:71:ed:fc:b7:84:ba:01:
00:c0:06:c4:ad:45:8c:e7:69:73:0f:ce:3f:93:e9:
c0:12:3d:97:6c:f0:37:8c:a7:8b:85:0d:72:62:d4:
75:79:ff:87:a9:18:aa:27:8d:33:93:32:d9:be:71:
a3:ef:0f:6a:35:16:c0:b5:84:db:70:ce:d6:6d:80:
db:27:70:25:9e:18:9c:03:68:ae:e8:65:63:d9:76:
0d:fa:33:21:a7:83:f4:b8:0f:50:bd:e4:81:74:65:
22:ff:09:2b:e9:d3:3a:35:ef:ce:35:86:9e:e2:7d:
1a:5a:05:63:f6:21:3a:ac:74:fb:12:78:65:6c:bd:
07:8e:29:89:0a:91:11:fb:ab:9d:cf:4e:cc:a1:0c:
2d:43:b8:38:9d:4b:f4:a4:0f:de:18:82:dc:86:4e:
d9:b1:09:32:38:b9:44:e2:c4:fe:68:4d:48:65:cb:
b7:98:1e:b4:58:85:38:8f:09:4c:8a:26:bc:d9:ca:
69:86:b8:d5:92:bc:3b:d5:38:01:53:38:06:02:4b:
df:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4F:EB:DB:3A:75:B1:74:C7:90:5D:C7:D6:50:4F:AC:69:99:B5:B2
X509v3 Authority Key Identifier:
keyid:C9:1D:7E:44:9C:FE:C3:12:0A:98:51:16:3C:77:9A:60:26:98:61:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:65:5c:02:96:0d:96:8d:68:d7:c2:e0:84:20:b1:96:a1:be:
ad:66:29:aa:12:a1:18:45:95:07:b2:a9:33:32:da:44:7a:b1:
26:70:7f:67:8d:af:cd:3a:9d:1d:9d:a2:7a:f4:07:15:64:77:
57:ca:33:53:f0:42:02:21:a0:df:53:d4:09:80:f6:f9:2e:13:
be:5a:bf:e3:1a:77:90:7b:a6:34:34:98:ed:0b:6b:36:db:a7:
d6:65:53:48:0e:77:2c:6d:ab:f8:9d:f6:58:b7:c1:58:4b:46:
e1:da:47:bb:95:7e:0f:9d:6a:ee:28:d1:09:41:16:45:ea:38:
d7:62:1e:16:ef:36:89:c3:b0:4f:c3:84:90:16:28:2f:b6:a9:
98:ae:93:59:70:3e:a0:f4:e1:27:f2:b6:e5:83:46:81:18:b7:
af:8a:6c:c5:bb:58:9b:b7:bb:9f:fc:ec:19:d5:cf:76:6f:b5:
6e:29:15:a3:d9:76:18:16:9f:60:af:f2:96:47:bf:46:7f:a3:
10:f0:49:58:46:e6:fe:7a:2f:53:45:57:a4:3f:7b:50:c8:99:
b0:99:ed:5e:18:c1:69:54:5b:d5:eb:e6:63:dd:84:3a:c8:36:
6d:ad:86:39:b2:5b:76:0d:de:87:58:53:dc:94:5e:d9:62:f1:
a9:8c:ec:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:09:45 2025 by rpki-client