Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
File: Y31k1HJWO36HP1t5-RydP__D2_k.mft (raw, json)
Hash identifier: vBqNQtjygBfZRZ9t32GoYelVVCY3R3gRSv2GzrN+nL4=
Subject key identifier: 72:20:84:CA:4A:CB:22:8C:2B:E4:E5:C7:AF:72:6E:BA:F5:59:75:DD
Authority key identifier: 63:7D:64:D4:72:56:3B:7E:87:3F:5B:79:F9:1C:9D:3F:FF:C3:DB:F9
Certificate issuer: /CN=637d64d472563b7e873f5b79f91c9d3fffc3dbf9
Certificate serial: 0199FC5826373CF5829B9EC873C8643471E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
Manifest number: 0F9D
Signing time: Sun 19 Oct 2025 12:00:59 +0000
Manifest this update: Sun 19 Oct 2025 12:00:59 +0000
Manifest next update: Mon 20 Oct 2025 12:00:59 +0000
Files and hashes: 1: Y31k1HJWO36HP1t5-RydP__D2_k.crl (hash: Y/jGee1aKHQpmA2EZOyiUxjMQLXk+J9NTb9cPESomIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:26:37:3c:f5:82:9b:9e:c8:73:c8:64:34:71:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637d64d472563b7e873f5b79f91c9d3fffc3dbf9
Validity
Not Before: Oct 19 12:00:59 2025 GMT
Not After : Oct 20 12:00:59 2025 GMT
Subject: CN=722084ca4acb228c2be4e5c7af726ebaf55975dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b0:04:36:5f:4e:d4:0b:66:d9:a2:92:11:72:
cb:17:7a:46:e6:c1:65:22:7b:29:6d:ca:ae:e5:6f:
78:12:11:bd:a2:66:70:1a:2f:ed:a7:6f:93:09:12:
c2:05:bf:bd:b7:32:4d:7b:11:b1:9a:51:7b:95:db:
8c:6f:e2:76:0f:6f:d7:a7:10:20:3e:84:d0:25:de:
cf:6f:3c:76:40:34:9f:22:1f:a4:d3:a3:1d:ab:0b:
c1:45:90:3d:a7:0d:58:6e:ed:70:51:32:de:30:6f:
9a:8d:7e:fb:67:2e:ad:ca:dd:ff:4b:25:06:1c:32:
f6:12:a2:8a:7e:4d:fe:33:f8:a5:d1:db:d5:29:53:
62:c6:e6:9e:04:a5:16:c6:99:13:f1:de:24:9b:86:
06:2d:1b:ba:9c:3d:65:2b:8c:29:bf:71:4c:60:26:
45:2b:e7:49:37:21:7d:59:84:ea:70:0f:7d:55:20:
df:c0:6f:3c:47:c5:82:9e:63:d2:5e:b0:43:e9:e1:
dc:1d:e0:dd:16:ed:28:c2:f7:81:8f:ea:54:0c:79:
c0:26:34:ad:40:f8:aa:97:b7:7e:9c:dc:a0:7f:0a:
75:14:c2:b5:86:e1:a3:d9:ed:ef:a2:13:90:7b:f6:
c6:59:01:76:3f:a5:fd:69:4a:72:7c:8d:14:72:fd:
de:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:20:84:CA:4A:CB:22:8C:2B:E4:E5:C7:AF:72:6E:BA:F5:59:75:DD
X509v3 Authority Key Identifier:
keyid:63:7D:64:D4:72:56:3B:7E:87:3F:5B:79:F9:1C:9D:3F:FF:C3:DB:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:fd:e1:20:03:7c:64:56:4c:a1:2e:f2:af:26:00:d9:b5:54:
c8:a0:e8:42:bb:7a:7b:5a:26:7c:cb:17:34:48:e4:3c:eb:1c:
4a:78:3f:d9:e4:7b:cf:9e:3d:53:c2:6a:5b:a0:66:ac:84:79:
0d:33:30:38:97:22:0a:12:b9:73:2f:51:fa:2c:e2:49:85:e1:
e5:35:49:57:d0:be:91:52:2f:45:dd:95:fd:1d:5b:23:48:05:
5b:22:30:06:5e:e5:77:48:c8:e9:ee:89:db:12:e6:b2:02:b4:
c5:51:da:17:8b:0b:98:d4:e4:2b:64:92:b4:47:2c:fc:b4:20:
e2:fd:f2:49:bb:f3:97:45:53:83:7a:d6:ee:f8:43:ca:dc:a9:
9f:7f:c5:dc:82:5c:ac:12:0d:8c:89:dd:ef:26:f4:fa:da:89:
c7:c4:e8:d6:10:49:3f:a9:34:69:b9:19:e4:a6:cb:2c:83:b1:
75:15:6e:2d:2d:de:7a:4c:0b:a4:4b:94:15:4c:f5:d1:b9:52:
5b:19:ca:87:9e:66:12:65:1c:dd:cb:83:68:58:96:a7:33:c7:
67:65:78:9b:b1:f9:d4:87:5d:42:6d:3c:3f:61:c9:dc:67:f8:
a9:14:88:fd:5b:66:18:ee:58:d7:2d:2c:91:05:d4:26:18:bb:
5e:44:b8:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:29:21 2025 by rpki-client