Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: Xt8OGPydnVPNDLCn6slVLlnCUgXhmYUs9CFrVhp4vQ4=
Subject key identifier: 11:30:83:AC:83:78:A0:CE:DE:B4:E0:42:8C:B1:6F:9D:33:87:E6:4D
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 0198D4DFC898DBD5B203B50EC89954E84158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 056A
Signing time: Sat 23 Aug 2025 03:01:32 +0000
Manifest this update: Sat 23 Aug 2025 03:01:32 +0000
Manifest next update: Sun 24 Aug 2025 03:01:32 +0000
Files and hashes: 1: 6bGSQZyXICWLbBfHBORwDUVmEgs.roa (hash: 1jQZKU6KRpYxffMVHliAkA59/J/hUE4iGAwCvJDdSlw=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: rlC9WBEGqmfx4SeOfYV5ihlE2EZH2AUarKBp55ZKmLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:c8:98:db:d5:b2:03:b5:0e:c8:99:54:e8:41:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Aug 23 03:01:32 2025 GMT
Not After : Aug 24 03:01:32 2025 GMT
Subject: CN=113083ac8378a0cedeb4e0428cb16f9d3387e64d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d3:51:da:51:a9:ea:95:8d:e5:ee:32:4b:31:
71:c9:74:a4:fa:01:f4:d3:63:f2:fb:fc:2c:c4:10:
f1:5b:3f:44:7d:47:84:48:92:94:48:46:09:e4:92:
8d:51:a3:83:b5:47:4a:ce:78:a9:08:09:09:03:60:
a5:1f:1e:77:03:08:10:c4:ae:25:00:46:87:e4:b4:
5f:9c:a3:81:54:fd:61:af:2b:f1:69:d4:1f:99:62:
26:2a:0e:99:32:36:97:3a:09:23:0f:8d:01:06:38:
8d:82:20:be:c5:ed:9d:ca:f0:8e:f0:1e:67:da:f3:
4a:42:da:3e:4d:58:bf:6e:3b:16:ed:57:6e:0b:2d:
40:be:95:d3:e7:39:01:b1:c3:44:47:31:1b:3c:cf:
ba:aa:44:af:2d:59:e9:a7:92:2d:3b:99:36:cd:90:
9e:f6:59:58:b9:bc:aa:ad:b3:71:48:2a:11:14:85:
07:1c:58:39:51:5c:f7:a2:10:a0:79:d1:e5:eb:3c:
f0:42:e2:48:e9:bc:10:ff:e4:8e:5c:51:27:6c:33:
67:39:ac:c8:f2:5f:8d:2e:b8:5e:96:04:ef:c2:f1:
2d:d2:99:12:d6:98:6f:f3:3d:ed:2f:b6:8c:22:48:
0d:ef:91:e1:65:bc:50:9d:bb:1d:54:43:c7:5a:09:
79:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:30:83:AC:83:78:A0:CE:DE:B4:E0:42:8C:B1:6F:9D:33:87:E6:4D
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:d6:2b:6b:0d:04:1b:b5:78:8e:10:07:46:1e:40:7b:a4:8d:
2f:ec:2d:72:4f:fe:d8:94:c0:eb:a0:47:cf:3a:f3:de:fe:2e:
1e:07:50:f5:4b:db:c4:95:08:29:4e:83:5d:d8:eb:b4:81:2c:
60:e3:2b:62:ae:81:05:5f:29:ab:b2:a6:22:39:ee:9a:e4:03:
00:86:8e:13:cc:0d:88:96:7b:08:49:13:4f:03:01:b5:69:33:
25:62:75:d7:2b:00:d2:d0:ab:c9:26:9b:00:80:27:98:10:08:
8b:d3:e9:5a:97:63:64:bc:62:72:46:19:59:58:a4:f6:78:a2:
f7:2e:d4:ba:95:74:33:86:e9:80:fd:f3:f0:6d:53:dc:86:3d:
7d:83:d5:b9:9f:e2:1d:cc:7b:d6:ce:d1:4c:2c:d6:fc:47:5c:
2b:85:76:15:6d:a2:11:7d:cb:a7:56:97:45:de:f4:c3:59:61:
03:d2:98:ac:d7:81:f0:95:5c:64:03:60:11:c9:19:7b:d5:87:
d2:9c:21:a1:42:7f:a0:20:f7:4d:f1:01:ff:a8:d4:d0:ea:eb:
ed:46:1d:e3:cd:aa:85:ab:ae:be:5a:3d:ce:51:f4:48:50:e5:
3f:07:2b:25:5a:2e:0d:d2:90:6a:ba:26:b6:e9:ad:e1:ce:05:
54:f6:c4:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:24 2025 by rpki-client