Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json)
Hash identifier: maFMhAfjVcZAXl0ZXWNivV5llRDN3dw9IH1V6ul8DhU=
Subject key identifier: 2A:A0:B7:B0:14:15:EA:E1:AB:87:C4:CD:3E:56:4E:3D:20:0D:AE:DD
Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Certificate serial: 0198D5A6F0A8120C77EC2605871D05B13511
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
Manifest number: 67
Signing time: Sat 23 Aug 2025 06:39:04 +0000
Manifest this update: Sat 23 Aug 2025 06:39:04 +0000
Manifest next update: Sun 24 Aug 2025 06:39:04 +0000
Files and hashes: 1: XMNcoWXaf4vnDHCArQ-gu1Y3zL0.roa (hash: c50mTMfPFSVXbnJgASutbtpma/sfEHT1BH/nlXtX2qk=)
2: fofIehVWA2zXhCOwOv2IhEXBsso.roa (hash: kJbscEJEUxNrQGiXZ0fvylDg/JBnaWx0NntD8rKqeW4=)
3: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: V+j1XMVtYIN/53O8HsEtXLbSSOrNuYa90Gpd4zBMk2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:a6:f0:a8:12:0c:77:ec:26:05:87:1d:05:b1:35:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Validity
Not Before: Aug 23 06:39:04 2025 GMT
Not After : Aug 24 06:39:04 2025 GMT
Subject: CN=2aa0b7b01415eae1ab87c4cd3e564e3d200daedd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:33:4c:da:66:3a:81:b5:88:44:9a:02:89:bc:
6d:dd:f9:fa:cb:5e:d1:26:2f:df:a6:b9:26:14:c5:
80:d4:38:b1:99:15:1a:ac:5e:65:fe:3d:b5:54:33:
29:63:cd:e3:51:a1:6b:ce:ea:3c:2b:ce:cd:54:f6:
b6:64:ac:cb:b1:ca:47:ee:93:8e:56:1f:56:26:f6:
d5:c6:1a:7e:6c:35:dc:75:c5:88:d7:8c:55:d7:4a:
b6:62:e4:c8:50:51:1e:80:a3:da:b4:88:eb:03:76:
33:ce:15:e9:6f:93:df:74:92:15:c4:80:78:4c:4e:
78:30:2e:82:4f:d5:34:77:6a:9d:8b:ed:33:9f:c8:
d0:85:0f:b7:9b:77:f9:90:e1:e5:2b:ba:59:af:56:
8a:cf:cb:2e:8e:8f:23:66:89:90:3e:48:55:ac:1b:
00:b2:8c:31:7e:79:41:32:06:4b:78:54:cc:f8:e8:
21:72:11:df:91:e9:f5:97:21:f2:67:7c:3e:09:c5:
2a:7b:4e:d9:52:58:bf:67:ce:89:13:d7:a9:92:4e:
e4:54:fa:47:da:ac:e2:43:92:d9:db:c5:de:a2:70:
dd:41:8b:b8:a6:14:c5:4f:64:5b:81:dc:39:a2:e8:
09:14:c5:ba:a2:d5:2c:79:b3:c1:ec:07:aa:29:9c:
f1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A0:B7:B0:14:15:EA:E1:AB:87:C4:CD:3E:56:4E:3D:20:0D:AE:DD
X509v3 Authority Key Identifier:
keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:b1:4f:fc:65:e7:7f:54:32:cd:de:94:97:49:42:93:9f:4f:
17:4c:2f:68:78:81:9c:ce:78:bd:5a:28:4a:d4:42:2d:eb:95:
24:dc:f8:1b:24:05:2d:6b:45:34:fb:96:93:fe:90:7e:f6:21:
4c:bb:8a:20:09:bf:cd:6d:ac:b7:30:e2:dc:c7:a6:82:61:69:
2f:91:7b:78:e5:6f:f4:92:a0:c5:f1:84:ff:53:65:9d:bd:b3:
cc:5e:9f:40:1d:07:a0:b8:86:43:50:8a:34:46:f8:38:ed:14:
c7:73:cc:ba:20:0b:f0:34:92:3f:32:64:1d:9e:c1:8e:3f:49:
72:ab:ba:4a:cf:c7:eb:39:b3:9d:ba:7f:6b:0b:3a:1a:27:40:
4c:62:3a:aa:c6:c5:45:21:05:d0:4d:90:2b:37:77:0b:99:3c:
a3:90:9e:ab:80:74:b8:f8:11:e1:81:ef:2e:77:49:3c:6a:4e:
80:cc:8a:4e:5d:24:7c:ef:89:c6:43:a6:55:20:dd:70:94:9e:
26:a3:e8:30:9b:d2:ad:9d:de:5d:e6:c5:c3:b2:8a:28:21:14:
1c:59:86:f7:36:ad:b5:e3:3a:5f:b7:63:b2:a8:d7:ec:d3:e3:
11:e3:74:9e:7a:35:4f:e0:64:52:51:c1:5a:52:b4:d2:18:06:
ba:59:d0:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:50:36 2025 by rpki-client