Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft
File: yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft (raw, json)
Hash identifier: qI3chTyWAG2xdWwBBHayUOPxcJPIpFaSPttvXF+Zs/0=
Subject key identifier: 1D:37:13:8D:80:62:8F:58:84:0D:20:5C:1A:E7:C2:0E:5B:5C:B9:BE
Authority key identifier: CA:BF:19:34:FF:E9:BF:9C:E3:51:57:2E:D2:EB:82:07:CB:55:53:58
Certificate issuer: /CN=cabf1934ffe9bf9ce351572ed2eb8207cb555358
Certificate serial: 0198D5BBC5899522C1F58F6244217E39CCB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft
Manifest number: 9B
Signing time: Sat 23 Aug 2025 07:01:49 +0000
Manifest this update: Sat 23 Aug 2025 07:01:49 +0000
Manifest next update: Sun 24 Aug 2025 07:01:49 +0000
Files and hashes: 1: yr8ZNP_pv5zjUVcu0uuCB8tVU1g.crl (hash: CxVSpL1Oef5rT87V1tGGTLpUGR2czra7ciKlx0k510g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:c5:89:95:22:c1:f5:8f:62:44:21:7e:39:cc:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cabf1934ffe9bf9ce351572ed2eb8207cb555358
Validity
Not Before: Aug 23 07:01:49 2025 GMT
Not After : Aug 24 07:01:49 2025 GMT
Subject: CN=1d37138d80628f58840d205c1ae7c20e5b5cb9be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8c:dc:9d:ec:59:44:d6:5d:f0:c6:00:a5:56:
6f:be:60:9f:91:39:b6:3d:e0:42:e8:c8:4f:81:50:
28:3b:25:67:ff:14:21:cd:12:ad:02:9b:45:5a:c7:
ed:e7:d1:f4:f6:c3:61:52:d6:a7:b5:d7:82:14:62:
80:61:c0:eb:d2:d2:e8:c5:63:fa:1a:fa:14:d1:5a:
62:6f:f2:a1:0e:11:32:a4:8e:b4:9e:62:ea:1d:d2:
c4:80:ae:62:b0:9e:5b:6e:23:b3:23:75:92:16:21:
69:0e:40:aa:3a:a2:bf:c8:4e:a8:c4:ce:24:b4:fd:
f0:73:5e:f9:71:4f:23:35:e4:5d:8c:90:a8:03:a2:
d1:37:b2:43:c8:56:c5:c5:7a:83:2c:00:7d:2e:13:
1c:a7:26:06:39:14:50:5e:43:70:56:0d:d6:39:c2:
4a:f6:b9:51:9a:e7:55:06:a5:81:45:38:b1:c1:2d:
4a:e1:a3:59:48:55:ca:d1:ba:b0:24:ab:71:60:3c:
20:05:a2:f0:e8:69:44:a3:ca:3b:95:33:94:8c:e7:
60:fc:0d:0d:66:e2:3d:1e:b9:7b:81:04:66:9e:6f:
05:f5:9e:b2:57:1d:26:ee:87:a6:50:ec:ab:57:0a:
10:8d:cc:3d:da:78:75:d1:f7:cc:92:47:0d:66:3d:
00:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:37:13:8D:80:62:8F:58:84:0D:20:5C:1A:E7:C2:0E:5B:5C:B9:BE
X509v3 Authority Key Identifier:
keyid:CA:BF:19:34:FF:E9:BF:9C:E3:51:57:2E:D2:EB:82:07:CB:55:53:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:5e:80:98:14:54:4b:66:b4:c9:24:ad:62:b5:f2:99:45:ed:
f8:54:2d:17:f3:f9:84:f2:c2:de:0a:14:9a:fe:a4:1e:b5:4a:
73:b6:fb:1a:c2:c2:ab:91:aa:88:53:e8:a2:d3:74:d1:c3:cb:
9c:fc:88:0d:e3:b6:20:fc:5c:ab:3c:97:22:f9:44:15:31:09:
d8:00:a5:46:8d:37:67:cd:1f:3a:d4:5e:9b:b1:50:8b:39:2f:
20:92:54:18:1a:af:5c:77:9f:c7:e3:f4:bc:1f:59:bf:cf:6c:
26:cf:ee:4a:8d:1e:7b:65:c9:8a:58:fa:55:a5:c9:9e:d5:32:
55:b7:06:90:5c:14:5c:ba:17:04:69:78:00:42:0e:f4:56:4d:
ec:45:a0:ec:d3:c8:aa:ac:94:79:f7:48:97:e6:d7:84:94:fc:
6e:2f:9d:ce:58:6d:4c:29:62:d9:1f:af:74:4d:3a:75:d7:65:
94:e7:fa:06:69:5f:32:81:38:e7:49:39:16:2e:69:4b:19:59:
f9:a3:20:b1:fc:bf:e7:73:0e:29:d7:de:06:3e:97:0e:55:2a:
76:7b:e0:af:e4:e4:74:a9:e8:3d:8d:66:14:24:56:b8:53:81:
d5:b7:3d:d1:d6:b8:47:29:88:76:82:c3:de:8d:a7:67:b1:84:
fb:97:af:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:36 2025 by rpki-client