Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
File: _YmzSchPx7NBKlLWX_Jg0swomrk.mft (raw, json)
Hash identifier: W1zbNnpJ/lO134i8jB4nTZHXzL1RGoB/sOBjGksMOIs=
Subject key identifier: 68:E9:CA:19:10:E3:20:A6:8B:36:28:3A:2E:A2:52:C4:CB:C5:72:2B
Authority key identifier: FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
Certificate issuer: /CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Certificate serial: 0198D6980E8A3132D189F3729D4961A57FAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
Manifest number: 0CDA
Signing time: Sat 23 Aug 2025 11:02:26 +0000
Manifest this update: Sat 23 Aug 2025 11:02:26 +0000
Manifest next update: Sun 24 Aug 2025 11:02:26 +0000
Files and hashes: 1: 7voLoVZs2GImQRBCo5BKLZ-Uj7w.roa (hash: 4GwoSbNu+hRTl0Hpw8zq+LaDTkSr14kM179EFGiS8KQ=)
2: _YmzSchPx7NBKlLWX_Jg0swomrk.crl (hash: dO96w5Qg56ssQsLlKixJDKkSkzlGpKdC+ILkcvQgh9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:0e:8a:31:32:d1:89:f3:72:9d:49:61:a5:7f:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Validity
Not Before: Aug 23 11:02:26 2025 GMT
Not After : Aug 24 11:02:26 2025 GMT
Subject: CN=68e9ca1910e320a68b36283a2ea252c4cbc5722b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5d:d8:ef:f8:c2:7c:c1:58:90:b2:f1:e2:43:
09:0b:86:3a:ec:97:87:56:c1:3a:71:47:3d:04:b5:
74:6e:11:35:c7:74:fb:8a:e5:ce:e6:da:fa:0a:d6:
26:43:62:e7:34:48:a9:04:82:49:21:c4:8e:6e:b8:
63:cb:61:e9:db:2a:16:dd:b5:17:27:6b:c8:dd:e7:
25:2b:5e:eb:c9:d8:09:53:bc:9c:53:c9:b2:bd:e7:
42:32:d8:84:38:69:74:68:67:ed:09:cc:88:4e:65:
a5:10:49:4c:f1:c0:ed:19:c2:f3:f6:bf:7a:e4:10:
e8:30:7c:c6:49:21:6b:78:b2:7a:f1:b0:4e:f4:fc:
9a:80:86:3d:5b:74:cc:bc:ec:85:38:03:08:f0:22:
b9:4d:9d:ac:3a:41:5f:af:ec:bc:d9:1a:93:87:63:
82:74:2c:7e:84:5e:09:75:55:54:01:6c:38:05:5d:
34:54:18:42:f0:8a:b8:79:58:72:bc:c5:93:c4:4c:
09:92:62:7a:e6:17:d0:ec:5f:f1:f1:4e:a1:37:e1:
13:f1:77:8b:b3:e5:88:eb:dd:f1:4e:fa:ed:90:10:
dd:bd:f9:4e:d8:80:ae:67:7a:75:6c:06:64:87:a4:
0b:7c:24:16:7e:f8:04:d2:4d:12:dd:8d:dd:49:4f:
f2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E9:CA:19:10:E3:20:A6:8B:36:28:3A:2E:A2:52:C4:CB:C5:72:2B
X509v3 Authority Key Identifier:
keyid:FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:74:b4:cb:3d:99:97:9e:bc:d9:a8:34:41:77:67:f2:90:a0:
73:f1:94:3b:22:44:56:a0:1f:dc:4d:b2:82:c0:d1:57:8e:28:
ae:7a:32:fc:3f:91:2b:ab:f4:57:c3:b7:45:fc:61:d5:cc:92:
d0:bb:63:cc:ba:45:6d:dd:93:44:ad:f0:1f:b2:f6:07:ab:39:
6e:50:7e:d2:fc:44:e7:a5:94:f8:a8:8e:ca:e9:07:3c:05:74:
57:2c:37:3f:e9:69:70:fd:f6:21:9e:00:9a:89:57:ce:db:d7:
0b:5c:63:ae:be:f3:03:30:5d:76:6e:54:3d:bc:aa:92:e3:1a:
84:fa:c4:a7:ea:d5:59:67:18:50:f5:9f:53:bf:21:96:61:19:
a2:35:de:5c:f6:c3:ad:f5:70:66:3b:1b:1b:db:40:b9:c8:f9:
20:32:a5:26:6f:5d:3d:e8:b3:e8:ee:56:88:5b:24:7e:e7:0d:
0c:c1:d2:ca:79:bf:4a:48:1f:6f:19:d3:a4:c5:10:36:81:d8:
19:ec:15:9e:bc:51:1e:f6:4d:4e:0f:e2:29:82:fc:a4:bb:ce:
7f:16:cb:07:79:78:6d:a0:ce:24:17:c5:bd:a5:93:98:c3:66:
11:d0:27:17:75:87:16:af:c4:fd:e0:28:f8:0a:1f:a7:b5:4a:
72:51:cc:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:27:40 2025 by rpki-client