Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
File: yRjEAZR0zIHsZh_OZObJOJchlto.mft (raw, json)
Hash identifier: N2RzqkMUa0YU8P+PCjoTjxq2XAzQp0I3P/XxrV/x2FU=
Subject key identifier: F6:84:B6:2F:DE:1A:B0:56:1D:C0:4A:A1:3F:08:58:2C:D9:65:D5:68
Authority key identifier: C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
Certificate issuer: /CN=c918c4019474cc81ec661fce64e6c938972196da
Certificate serial: 0198D5835327B1C1B80218E4F716B9448782
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
Manifest number: 05EC
Signing time: Sat 23 Aug 2025 06:00:10 +0000
Manifest this update: Sat 23 Aug 2025 06:00:10 +0000
Manifest next update: Sun 24 Aug 2025 06:00:10 +0000
Files and hashes: 1: Jsgd2QMS4v8iKbqKY7mpL6rgdrw.roa (hash: zUKbiJyZKBDLVjXxF3gSP5G2WQgNlz6YzfL6risxYY8=)
2: yRjEAZR0zIHsZh_OZObJOJchlto.crl (hash: ps3vgybx8Thakgj1Ps4dOjp1FG6yM5WKtZIKNF2bYIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:53:27:b1:c1:b8:02:18:e4:f7:16:b9:44:87:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c918c4019474cc81ec661fce64e6c938972196da
Validity
Not Before: Aug 23 06:00:10 2025 GMT
Not After : Aug 24 06:00:10 2025 GMT
Subject: CN=f684b62fde1ab0561dc04aa13f08582cd965d568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:55:5d:13:0e:b4:c5:a3:9d:8d:99:86:57:c0:
5d:4c:66:d3:4f:f3:ae:c2:28:dd:ee:03:9d:6b:95:
64:d1:fe:c5:40:7a:08:6f:4a:a7:f6:66:26:30:a4:
c3:e9:19:a7:dc:0f:be:08:4c:59:a3:8f:d4:52:a1:
c3:79:07:5e:46:dd:71:a6:f9:da:4d:02:a2:19:d1:
b8:dd:f9:63:57:44:fd:12:76:96:b8:75:f6:52:6d:
8c:cb:f9:02:01:7f:ba:42:e4:4d:7c:b2:a2:ee:56:
9c:dd:85:28:f5:bd:cf:d0:0a:17:e1:1d:98:66:e7:
b1:cd:4d:e1:f9:44:46:fe:ae:89:f4:97:19:7b:ef:
5a:75:76:d4:59:23:fd:aa:dc:3e:a4:ea:0a:e7:aa:
78:89:eb:bf:c8:ee:40:33:f4:4f:ed:67:61:3e:32:
de:3a:1a:2a:67:6b:f7:5e:cd:86:e4:35:57:49:ee:
eb:88:6d:12:b0:13:b3:f2:64:11:13:a5:d0:da:87:
74:9f:06:2e:b3:b9:1f:b4:dc:b3:28:01:df:62:c5:
ca:57:9d:12:08:26:ad:17:54:e5:42:2d:5f:48:3c:
2e:27:1f:7d:91:bb:be:e8:08:13:a1:a8:19:ad:87:
d4:11:94:ab:3e:38:52:dd:e4:0e:77:d1:12:26:9b:
39:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:84:B6:2F:DE:1A:B0:56:1D:C0:4A:A1:3F:08:58:2C:D9:65:D5:68
X509v3 Authority Key Identifier:
keyid:C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:06:ba:9b:81:e9:6b:a6:ca:ef:8b:7d:08:d4:65:c6:42:79:
bd:60:c9:7a:18:b8:63:7f:b6:29:e2:b9:00:04:88:38:39:a9:
e6:6d:3a:07:f2:84:57:31:35:60:e2:a4:e7:b1:7b:5f:69:62:
c3:17:bd:c5:91:a8:23:c5:21:86:53:4b:8a:ac:fe:a7:7b:39:
0d:30:64:af:8c:f8:c0:b0:0f:1b:3a:45:f0:1c:e6:25:8a:f3:
27:78:49:f5:54:3b:e6:97:23:89:38:c7:a5:03:de:5c:53:02:
5b:ef:8f:88:6e:fb:9a:af:a7:04:44:89:d6:1f:92:b1:3b:a7:
0d:61:cd:74:ca:98:85:99:59:5d:22:1c:24:9d:b7:b5:5d:69:
aa:97:61:c1:3f:92:89:50:04:e7:ab:a7:45:bf:e7:76:f5:db:
56:69:dc:d0:ea:71:3a:d2:91:dc:49:01:c2:fa:b0:44:bb:b9:
23:49:c7:f5:e9:8d:fa:68:cc:8c:6f:f9:e2:dc:fe:fc:5a:3f:
e9:a2:a3:07:a6:7d:a6:d7:fe:48:9d:b1:d0:27:76:de:2b:59:
94:39:e2:10:45:c7:54:91:36:e8:29:ae:d0:df:b0:62:de:af:
30:fb:38:5f:72:68:ac:b8:db:f2:4c:c7:0b:4a:0b:60:84:84:
89:c2:2f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:18:46 2025 by rpki-client