Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: QvMYrdK50ebT/WjI9jfUGl0KBMIgdLtaWPwh+ebX+4E=
Subject key identifier: E4:3D:AF:EF:52:60:31:8A:0D:4F:4B:FC:66:11:B9:91:9E:36:5E:E6
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 0198D705DEE28B22CFE849D9C11FB7694B66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 11B2
Signing time: Sat 23 Aug 2025 13:02:22 +0000
Manifest this update: Sat 23 Aug 2025 13:02:22 +0000
Manifest next update: Sun 24 Aug 2025 13:02:22 +0000
Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: E3AsI/w6SyIAO4jfnK2l7HIzoATCAimdru5PtXqamho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:de:e2:8b:22:cf:e8:49:d9:c1:1f:b7:69:4b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Aug 23 13:02:22 2025 GMT
Not After : Aug 24 13:02:22 2025 GMT
Subject: CN=e43dafef5260318a0d4f4bfc6611b9919e365ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3b:51:23:cd:56:f6:15:87:f9:6e:4c:a5:7d:
60:71:4c:39:13:2a:51:d8:06:9a:7b:50:65:76:15:
98:8e:55:e9:60:62:2f:ab:e8:2c:70:87:6a:cb:fb:
fc:f1:d6:9a:b9:08:fd:a4:8f:ea:af:f3:8c:bb:26:
34:f6:1e:e2:d9:3a:64:43:7c:48:19:dc:c1:51:0b:
0e:8b:d0:4c:e7:cf:05:b7:9a:2a:f7:76:35:d7:f0:
99:7c:2f:6a:23:54:69:63:28:12:c3:8c:44:1c:83:
04:77:99:3e:70:0a:82:78:1a:f8:7e:66:27:e0:30:
06:e3:c8:2b:81:4e:18:e9:87:88:88:06:28:53:9b:
68:e0:59:db:0d:8a:7a:b9:d3:15:25:46:56:df:46:
3d:e8:0e:7b:4d:eb:58:67:80:dc:72:b3:36:74:c1:
c9:0d:a0:66:23:79:9b:12:d5:5b:5f:41:f4:49:50:
a4:7f:b5:b9:b3:99:01:3b:f5:78:f4:0f:63:c4:62:
08:88:ed:fa:4d:3b:63:06:b2:2b:58:02:06:9e:aa:
c6:1c:46:74:d9:59:9e:24:0d:2c:6b:fc:12:81:32:
17:0f:2e:d9:e8:c0:4f:db:12:f6:82:59:28:00:28:
9e:62:ea:f0:44:b2:16:4f:c0:ea:0a:a3:91:09:d3:
48:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3D:AF:EF:52:60:31:8A:0D:4F:4B:FC:66:11:B9:91:9E:36:5E:E6
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:d3:a4:aa:77:e0:f8:20:35:ef:c7:3b:5f:98:23:cc:0a:6a:
1a:29:f9:98:74:d9:d1:bd:0a:29:a0:dc:1c:d7:53:d2:c9:c0:
4e:1d:f8:46:c9:08:3f:db:f2:5e:73:71:8a:bd:f5:17:2a:b7:
ed:e7:16:f3:41:f1:81:62:9b:75:e2:63:7c:0a:78:57:96:03:
b9:e0:ad:2d:2d:1b:1d:8c:60:d5:61:69:da:af:ad:67:83:dd:
fe:96:ab:10:9a:63:92:e0:5d:b0:b6:77:25:0f:10:6a:37:c4:
a8:53:8c:ca:44:83:83:4b:fb:56:73:6e:a4:75:e1:bd:1b:da:
1a:a6:01:ea:6f:b5:81:ce:32:ad:83:41:2f:41:ca:bd:8a:01:
7b:08:bb:59:cd:2b:3f:68:ab:f2:3e:aa:53:d1:a1:21:7a:01:
da:71:71:48:2f:1c:34:6a:7f:90:2e:de:0b:61:40:68:ce:46:
a6:43:c0:97:b6:8b:3d:10:23:b1:60:6c:2c:6f:07:33:a3:bd:
f1:6e:94:d3:1d:27:3b:68:69:27:44:32:f3:b7:c0:80:33:4f:
ba:f5:18:61:ad:e3:1e:e2:b8:3e:6d:f8:00:b0:08:63:c8:59:
f7:7b:34:92:c7:86:54:2e:64:e6:45:aa:bb:07:d1:8d:c6:7f:
5d:3e:98:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:27:31 2025 by rpki-client