Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
File: YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft (raw, json)
Hash identifier: 81TfEB243dq/IC1G4Wl57WtFkdeHI78ZTVHQP/ojh/o=
Subject key identifier: 18:C0:F1:0D:B8:E2:7D:AC:15:8D:4C:B5:F0:94:22:7D:F3:C9:C2:89
Authority key identifier: 60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C
Certificate issuer: /CN=6052e1592b12ad2cd39f5be57c058535edb12b9c
Certificate serial: 0198D4DFEF8F8806ED5B6045C5D99AAF1D17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
Manifest number: 0BDC
Signing time: Sat 23 Aug 2025 03:01:42 +0000
Manifest this update: Sat 23 Aug 2025 03:01:42 +0000
Manifest next update: Sun 24 Aug 2025 03:01:42 +0000
Files and hashes: 1: 4ohGnWINC3iPFe6nDpOqBOx7d2s.roa (hash: 9AbJKb6HLl4DZwmq7R7PVZTsMXxo/QDCXs2EgLL85AU=)
2: YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl (hash: YkcCH1YQqzBKcZZw82Re066Tq7XX0uWJFhRJ2vY92G0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:ef:8f:88:06:ed:5b:60:45:c5:d9:9a:af:1d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6052e1592b12ad2cd39f5be57c058535edb12b9c
Validity
Not Before: Aug 23 03:01:42 2025 GMT
Not After : Aug 24 03:01:42 2025 GMT
Subject: CN=18c0f10db8e27dac158d4cb5f094227df3c9c289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:b1:15:44:57:21:1e:11:da:3c:4f:52:3c:9e:
36:0c:2c:22:42:6a:04:08:45:50:39:8e:58:06:cf:
42:9b:e3:de:8c:db:47:8d:c6:33:8d:d6:3f:d7:e1:
e0:93:6c:22:9e:c6:b2:c8:f8:64:aa:1d:8f:37:f0:
af:9a:f1:90:fa:26:77:b6:07:87:e7:ba:c0:6f:c5:
c7:9f:33:b6:c1:1d:f8:54:fa:5e:e6:ac:23:96:3a:
a2:4e:5e:88:33:ff:7e:b5:da:13:3b:0a:d1:13:d4:
60:76:a6:f9:c6:de:77:28:ad:ca:ec:fd:b7:6c:f3:
05:91:73:bf:ff:61:0c:e6:c9:ea:92:c1:51:93:20:
1e:25:3f:a3:08:3b:c2:b2:58:ba:c9:e2:d5:74:20:
35:9f:ef:fa:99:d9:84:c0:4d:88:6f:48:3c:ec:b0:
90:b7:29:97:e4:65:19:ba:d4:ee:4e:50:b8:78:06:
be:5e:bd:3a:ce:7b:a7:1a:9a:f3:fc:6b:bb:4c:af:
29:e5:d7:5b:c8:11:57:b0:a1:70:94:62:5a:23:1f:
b5:b0:11:dc:52:5d:43:6a:92:81:3a:d6:0d:79:96:
65:72:cf:f5:ca:5c:45:56:32:33:c2:81:c2:03:9c:
bb:bc:07:ba:ee:9b:c8:a8:16:25:eb:a9:1e:b8:89:
ec:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C0:F1:0D:B8:E2:7D:AC:15:8D:4C:B5:F0:94:22:7D:F3:C9:C2:89
X509v3 Authority Key Identifier:
keyid:60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:7d:8a:47:9e:ec:cd:7d:d0:14:4e:c8:af:28:85:5a:0f:25:
6f:c3:f9:ca:ed:8b:73:40:fb:61:d8:80:00:91:81:97:30:c4:
5c:8c:4a:47:2a:98:60:1e:0c:42:1b:b4:75:45:2d:f6:d2:aa:
50:f5:d7:5a:53:67:c7:c9:b8:3f:63:b4:fa:34:85:2a:62:25:
4c:25:ee:54:ba:11:e5:cb:7e:5c:2a:fc:dc:c7:4a:e4:0c:ba:
76:91:00:0c:76:91:40:35:29:7b:b2:0a:66:32:9e:85:e3:ba:
fd:52:db:75:b6:dc:8b:1f:df:1a:32:bd:ae:91:b6:81:4e:60:
e6:1b:50:05:bf:89:59:49:7b:98:04:f6:e6:74:0d:f5:25:d0:
2c:45:2d:4b:cb:7e:7f:a1:7d:24:59:8a:ab:dd:d1:26:dc:2b:
94:98:11:02:4d:3e:f6:86:bc:96:a9:b6:53:87:e2:c4:71:9b:
00:16:9d:dd:ef:6a:a7:8b:2a:ae:83:f3:07:72:02:ef:6b:cc:
8b:29:81:2c:e1:15:26:5e:8e:d1:19:fa:9d:af:6e:eb:fe:6d:
3c:d9:43:f4:83:d0:13:71:41:2c:ef:93:fb:a5:ca:94:ff:c2:
9b:0f:56:c7:e7:6e:db:c3:09:1a:8b:0f:97:2a:57:bb:a9:19:
9c:62:bd:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:17:51 2025 by rpki-client