Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft
File: yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft (raw, json)
Hash identifier: oP/3pY1RIJJe3QG3OrQQXbLzb8zoZrR2SZJS4kC/FL0=
Subject key identifier: 24:26:C9:A5:CC:FF:7A:20:58:D9:C1:AC:12:EA:96:C2:36:E3:72:41
Authority key identifier: C9:59:98:98:9F:DB:5A:5F:93:21:47:AD:71:62:C6:30:04:E0:67:A4
Certificate issuer: /CN=c95998989fdb5a5f932147ad7162c63004e067a4
Certificate serial: 0198D515B7375BDA4AC3FC4339034C2FEDFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft
Manifest number: 0B2C
Signing time: Sat 23 Aug 2025 04:00:26 +0000
Manifest this update: Sat 23 Aug 2025 04:00:26 +0000
Manifest next update: Sun 24 Aug 2025 04:00:26 +0000
Files and hashes: 1: yVmYmJ_bWl-TIUetcWLGMATgZ6Q.crl (hash: fXYlIocPJuoxm4n01MXcZlnwaV/WVOeqx+qVq7fUcf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:b7:37:5b:da:4a:c3:fc:43:39:03:4c:2f:ed:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c95998989fdb5a5f932147ad7162c63004e067a4
Validity
Not Before: Aug 23 04:00:26 2025 GMT
Not After : Aug 24 04:00:26 2025 GMT
Subject: CN=2426c9a5ccff7a2058d9c1ac12ea96c236e37241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:80:1e:61:19:57:a2:5b:e4:56:cf:5a:f9:17:
d6:b3:a1:e4:ef:8b:6f:a4:e0:64:3b:63:aa:dc:f7:
22:3b:20:95:2e:ab:f0:8c:a2:81:68:3a:a1:ec:1e:
7c:f3:4f:9d:73:d1:31:16:0e:c5:3e:50:92:f9:6b:
bd:d6:b2:72:67:6a:90:80:e9:a2:86:e2:64:9a:46:
5d:51:77:d1:13:25:be:a7:4f:68:1c:5e:92:6d:50:
13:92:96:37:c2:0c:01:96:f0:da:38:26:d6:94:d1:
84:0a:60:f2:94:de:77:2b:fb:4b:45:1d:3d:b3:e4:
a3:01:9c:d4:b2:2e:9e:5b:97:9e:e4:5d:8f:c7:04:
14:db:1d:9b:90:8b:c1:28:fd:b9:63:0f:a3:b6:c5:
e8:a9:8d:97:f8:62:53:78:1d:b8:ea:20:04:77:e6:
bf:61:4e:d0:15:22:79:d7:d0:d0:6c:90:91:2e:99:
0e:57:b3:16:66:8c:6f:20:ba:dc:10:2e:b1:7e:a4:
1f:e4:96:55:5e:ca:f4:c6:fc:3e:53:3a:7a:11:92:
93:11:1e:f8:f1:2e:8c:55:8b:5b:4f:0f:1b:37:07:
16:cf:a3:d9:7d:13:47:7d:15:b7:ae:ff:91:d0:1a:
1d:88:e6:22:c6:91:e9:ec:ae:30:57:45:22:8e:27:
7f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:26:C9:A5:CC:FF:7A:20:58:D9:C1:AC:12:EA:96:C2:36:E3:72:41
X509v3 Authority Key Identifier:
keyid:C9:59:98:98:9F:DB:5A:5F:93:21:47:AD:71:62:C6:30:04:E0:67:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:13:74:3f:0a:fd:20:35:19:09:d7:58:db:fb:e0:84:bc:8f:
e6:1c:bd:1c:87:c2:45:40:f6:3b:8e:4a:ef:55:42:08:28:75:
4f:c2:73:1e:16:34:51:7d:60:de:93:d8:a7:7e:aa:8f:c9:60:
da:cb:89:53:c3:72:51:3e:bc:a3:c6:45:7d:d0:5d:fc:75:a2:
18:b4:c6:27:47:3b:22:72:c7:ac:aa:cc:1c:58:cd:83:d7:8f:
2e:c1:92:52:d5:2f:02:aa:23:53:af:06:d0:fb:e1:f0:9d:c4:
30:13:23:f9:cc:f3:67:7b:41:c4:6a:87:23:b2:24:1a:fb:38:
0f:3e:f3:a8:ec:83:96:0e:c5:8e:6d:74:66:8d:53:2d:b3:51:
7f:0d:4f:96:c0:ed:d1:3c:e2:95:84:1b:36:d7:29:5d:24:f1:
18:fe:ab:be:fe:22:04:17:8a:22:a7:92:16:d1:ca:1e:77:4b:
3a:2c:ac:79:cb:b7:5f:5c:6b:2c:96:4f:04:b7:d1:ed:ca:97:
a4:76:2f:be:92:b1:64:7a:60:14:16:a3:35:3d:c6:97:b5:87:
fd:c0:9f:0e:bb:23:ac:8d:c0:05:ca:be:5f:8f:01:d9:0f:40:
a5:67:fb:96:a8:3c:86:ec:f3:3e:9d:b7:10:38:dd:df:77:12:
96:46:a5:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:18 2025 by rpki-client