Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: mTHcNe4QnDo2dnISTzQmJ2LjJVx6vNOeZR4MArYD55I=
Subject key identifier: 49:C6:3B:05:8C:A9:F1:AA:CF:EE:B5:17:41:D5:CE:32:E4:91:62:C9
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 0198D584027CAC20A16F73F8BC7B56FB5218
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 0F73
Signing time: Sat 23 Aug 2025 06:00:54 +0000
Manifest this update: Sat 23 Aug 2025 06:00:54 +0000
Manifest next update: Sun 24 Aug 2025 06:00:54 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: 1S+ptvGb9kqfHegQFOD88NvHBmPBNoJjlQPNaL2q5NU=)
2: pGBMbGUVmfmMQKR1-BVF--sKK7U.roa (hash: ayj/a/EtllFNMGD1HzcA6KglHzS5bxHd+NVb8RRWcAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:84:02:7c:ac:20:a1:6f:73:f8:bc:7b:56:fb:52:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: Aug 23 06:00:54 2025 GMT
Not After : Aug 24 06:00:54 2025 GMT
Subject: CN=49c63b058ca9f1aacfeeb51741d5ce32e49162c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cb:34:8f:1a:64:2f:2d:f4:67:2a:25:2e:27:
77:6c:7c:4a:61:14:d7:da:cd:de:80:83:91:01:04:
34:2f:08:73:19:dc:55:fc:8d:e8:e8:d3:8d:3c:fc:
b7:69:ae:ae:43:a4:6d:81:a8:70:d1:d6:82:54:19:
71:24:35:bb:c8:21:8c:a3:c9:ba:20:ff:2c:62:6a:
21:7a:bf:f5:57:b9:01:0a:0b:f6:7e:67:3b:63:23:
92:d5:83:e9:79:7e:55:70:7f:e2:72:74:4d:ec:2a:
48:cb:35:79:31:9d:72:00:7b:f4:4b:66:21:0a:2b:
70:51:4a:15:80:aa:2b:ca:5d:4d:3a:a1:fd:4f:ea:
1b:86:f6:d3:27:5e:a3:f8:08:f6:2b:c3:35:c7:29:
ea:21:7f:1e:4a:ae:57:ff:32:0c:a4:17:8e:2c:35:
d0:77:19:83:ae:99:13:e4:6a:01:8b:48:b7:86:9a:
ee:3c:a2:4a:46:f0:03:37:7e:3b:06:c2:fd:67:99:
87:59:14:4d:ef:94:80:ee:67:7d:32:76:04:82:4b:
e1:40:be:33:00:53:42:e4:06:6c:33:5d:fe:11:0d:
23:f2:5e:65:87:fa:ec:f5:fb:f9:51:66:14:6f:c8:
be:ae:1f:77:8f:e9:05:33:37:1c:a1:35:4e:51:00:
ef:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C6:3B:05:8C:A9:F1:AA:CF:EE:B5:17:41:D5:CE:32:E4:91:62:C9
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:23:91:16:4f:91:e9:23:5e:52:56:d9:e8:e1:e1:1c:5a:7e:
a1:ac:75:93:84:3f:ea:66:9e:b0:67:76:a1:99:20:c6:8a:d6:
8a:c3:89:bd:ff:9d:fe:a5:87:6f:b1:ba:a0:c8:6b:13:31:de:
9c:40:32:fb:22:c4:76:c6:8c:7b:8e:bb:87:de:31:35:00:8a:
b4:68:4b:83:23:8b:b2:fb:35:d9:da:62:22:a7:31:59:1c:2e:
9a:19:f9:11:24:c4:bc:4f:8a:43:53:be:59:65:8b:6f:49:9a:
b6:7b:ad:13:58:80:c0:a3:66:6d:95:ec:50:ac:ca:1b:08:d6:
60:fb:41:60:84:00:ae:66:5d:3c:87:59:44:ac:82:f5:ff:f5:
fb:52:ca:c3:b2:e2:95:0e:54:25:cb:36:3e:58:31:09:b0:2f:
8d:32:be:aa:b6:22:3a:c9:ec:13:de:3f:7a:aa:29:95:ce:8c:
99:3a:c0:9c:42:20:56:2c:ce:fd:29:0a:70:8e:fe:24:a4:87:
b3:a7:f1:b2:8f:dd:73:c3:72:f1:3f:7c:76:6f:4e:59:a2:4a:
ad:a3:f6:22:01:e9:ee:d2:16:a9:e1:c4:b9:e7:49:59:00:36:
8a:16:1e:a7:99:a9:1a:2d:06:2c:98:dd:fb:5a:9e:e5:71:90:
cd:fd:a6:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:11:37 2025 by rpki-client