Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json)
Hash identifier: 6YI07sacqZ03inffdmPcMjP8UxUsIzr0uLCiWcazE2w=
Subject key identifier: 75:1F:E9:80:A3:8B:DC:A4:B7:E5:4D:BD:F7:6A:A2:FB:B8:36:E3:F6
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 0198D515AF0801262FFE73A97A4EBC0EF1C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
Manifest number: 11E8
Signing time: Sat 23 Aug 2025 04:00:24 +0000
Manifest this update: Sat 23 Aug 2025 04:00:24 +0000
Manifest next update: Sun 24 Aug 2025 04:00:24 +0000
Files and hashes: 1: nPtNOVhjTVbNoPzqUJGa-Eqnb0Y.roa (hash: Yuz9f1rxV7S4atM+GycUQVhSQinvjc3oT1lXV1zOVuE=)
2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: E3JHp0zFemJ3vEL1NtbMQtvkK0Fz68gRcTRakX+6nUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:af:08:01:26:2f:fe:73:a9:7a:4e:bc:0e:f1:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Aug 23 04:00:24 2025 GMT
Not After : Aug 24 04:00:24 2025 GMT
Subject: CN=751fe980a38bdca4b7e54dbdf76aa2fbb836e3f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:48:bf:db:ff:2d:1d:30:4f:80:70:86:57:f8:
04:76:74:cc:23:89:0f:aa:62:65:e3:bd:6c:09:ef:
45:b6:55:c0:1b:77:4d:57:69:05:33:e5:08:c9:6c:
8d:c7:49:fc:c4:73:3e:eb:da:1a:4b:af:52:66:79:
b3:eb:0b:07:40:be:39:b5:1f:ff:34:7d:8c:f0:8d:
ac:56:2d:33:bd:12:e9:74:32:25:89:4e:a5:0a:e5:
76:50:e1:93:ea:04:8e:a5:22:74:d7:b6:72:56:da:
5f:83:29:83:1b:19:69:d6:e1:b0:95:c0:28:6f:6b:
29:fb:91:96:61:24:15:1a:12:dc:3a:b2:99:a2:75:
c9:91:bb:07:aa:6c:7b:db:86:3e:ef:d9:1e:ec:6a:
f9:f2:dc:60:ea:ca:d9:af:37:aa:14:6b:0f:eb:e4:
40:98:a6:f1:6a:94:4d:94:34:0b:dd:0c:d8:8e:d3:
61:bd:b3:a1:be:16:6e:d8:c9:8e:69:f0:9e:90:be:
21:78:d8:95:b2:fb:cb:a3:8c:96:42:bc:be:54:68:
64:b6:1d:f7:ee:9f:03:77:de:10:0b:92:5e:02:5f:
96:21:c3:19:75:e2:d9:63:bf:a6:6a:42:54:80:5a:
41:f5:d8:8a:da:2a:ea:da:71:fe:c4:8f:ee:25:c7:
d2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:1F:E9:80:A3:8B:DC:A4:B7:E5:4D:BD:F7:6A:A2:FB:B8:36:E3:F6
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:f6:7f:f3:5d:c7:91:b6:dc:5d:cd:34:6d:ca:18:e0:7e:b8:
47:f4:06:79:43:26:a1:7c:97:e7:88:c6:fa:93:3e:62:e3:98:
ca:94:c5:d1:7b:d7:2a:eb:54:a9:54:d3:d3:06:44:4a:fb:32:
ed:68:99:e8:66:81:cf:c5:29:26:13:6d:85:cf:a5:c6:ae:03:
0b:7a:bc:db:38:c5:bc:5a:2c:a0:85:19:ca:2f:c3:49:21:c6:
37:0f:4d:7e:1e:c7:39:32:d5:5b:37:35:00:78:72:68:bd:38:
9f:1e:c0:55:4b:ba:59:58:03:36:af:83:b5:25:e8:10:32:11:
c3:6a:b5:02:4a:04:7d:1e:2a:87:50:8c:f2:b2:ee:53:e4:77:
87:bc:28:0c:e1:3c:2c:d6:88:30:1e:3d:a3:b9:c2:c0:60:24:
2e:b8:1d:e9:33:dc:01:83:e0:8a:52:94:48:5f:69:e9:c1:ad:
08:f6:42:29:14:44:73:8f:48:92:4d:fe:50:ff:6a:9f:cd:f7:
7f:97:6a:1f:7c:e8:32:d6:35:81:bf:9c:c6:ea:2f:3a:b5:1a:
13:cc:5d:70:d5:d5:cf:46:a8:84:cc:7d:d6:7b:c1:d3:77:fa:
aa:4e:4a:76:57:f5:db:8f:23:35:d1:52:22:6d:a6:2a:b9:bf:
60:c0:e1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:36:46 2025 by rpki-client