Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: vwXlOznxgQViexzjwHnFkQ2Ajx3qhxRa+M7CF1fMs44=
Subject key identifier: D3:CD:6F:98:F7:00:4B:30:FD:D7:AB:41:AE:79:F0:14:7B:8C:45:0A
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 0197D7E33D65CB19AC632CFE0283410FCB82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 04E7
Signing time: Sat 05 Jul 2025 00:01:23 +0000
Manifest this update: Sat 05 Jul 2025 00:01:23 +0000
Manifest next update: Sun 06 Jul 2025 00:01:23 +0000
Files and hashes: 1: 6bGSQZyXICWLbBfHBORwDUVmEgs.roa (hash: 1jQZKU6KRpYxffMVHliAkA59/J/hUE4iGAwCvJDdSlw=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: S0qO/BPvH+OCW5c2Qbl1DBk5HliwuFWJjPczK9r6Owo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 00:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d7:e3:3d:65:cb:19:ac:63:2c:fe:02:83:41:0f:cb:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Jul 5 00:01:23 2025 GMT
Not After : Jul 6 00:01:23 2025 GMT
Subject: CN=d3cd6f98f7004b30fdd7ab41ae79f0147b8c450a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:18:24:7a:a6:e0:d9:a8:e8:c4:81:98:64:32:
e4:1e:23:e8:37:eb:17:c4:fe:b4:45:53:90:b6:d7:
b5:c3:15:ab:a6:f9:8a:d9:bc:02:ce:e5:c3:30:21:
d9:7a:ed:5c:81:c4:32:b9:08:e8:c9:ec:5c:c0:57:
22:36:68:32:46:01:9f:b7:2e:5c:d9:78:fd:44:9c:
ea:97:9c:fc:a5:a8:93:ea:d8:71:44:f2:69:bf:65:
59:58:9d:81:e2:57:6b:13:7e:01:1b:3d:00:a0:22:
02:b3:8d:90:e8:d1:48:70:72:78:43:a0:b4:fb:2f:
1c:df:27:9d:b0:7a:aa:84:8a:72:4e:0a:75:58:f9:
be:21:ae:e5:d8:37:58:97:3b:0f:bf:18:5d:b3:cc:
7b:44:59:05:b9:09:04:22:74:80:ea:74:e5:ef:65:
49:9c:c4:1e:6c:14:20:09:e4:d5:52:44:45:78:27:
24:74:0c:3c:6e:89:07:44:d3:c2:ce:01:71:d0:f1:
5b:2a:01:ae:50:fd:ab:ca:9f:0c:92:5f:2a:9c:bf:
15:21:cf:35:59:27:e5:74:3d:7f:35:26:46:fd:26:
10:83:41:62:b2:db:ac:64:74:f8:8b:f2:46:94:83:
01:13:3c:89:07:80:51:58:72:f1:9c:3d:9a:9b:5e:
ea:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:CD:6F:98:F7:00:4B:30:FD:D7:AB:41:AE:79:F0:14:7B:8C:45:0A
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:c9:4f:b5:a8:4d:8c:c7:19:5c:89:bb:e9:cf:5c:11:66:08:
8a:70:d4:b5:17:17:08:97:a2:38:33:d6:42:01:1d:98:1f:f9:
43:79:69:e8:ad:da:2c:09:a4:dc:69:48:5d:a7:a3:7c:53:f3:
e7:63:eb:d0:3d:7c:56:a5:f7:5b:c7:c6:52:c3:84:4a:e1:bc:
75:95:5f:0c:32:9a:3a:77:aa:e6:22:dc:00:fc:d5:80:3a:a3:
95:9e:44:40:45:3b:db:74:3e:4a:24:1c:eb:fa:f6:14:db:f1:
1a:79:08:18:14:65:a2:2f:1f:65:4f:00:3c:95:59:57:98:87:
4c:ca:de:00:8d:82:00:4a:39:c2:9b:72:38:13:58:44:a9:64:
e3:45:e2:9e:56:f6:45:7e:86:5c:9c:b1:ef:47:1f:a1:e4:e6:
00:1e:fc:45:45:f3:2c:02:40:7c:b0:ed:64:43:66:97:08:c7:
ea:b0:bf:82:4e:1c:9c:5a:c2:f8:5c:c4:98:7d:e7:33:1c:56:
8f:19:d6:19:b3:4c:92:5c:a7:b9:ed:2c:1b:25:01:53:e4:a5:
6b:4a:75:ce:41:65:70:f3:23:d3:b0:8c:71:f6:31:eb:0a:d9:
60:74:ba:b6:4c:61:4d:ce:b4:86:d2:ea:ad:30:98:11:c2:55:
e8:e7:10:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 05:22:31 2025 by rpki-client