Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
File: yy2f-G42PbNNBVbsFkUfL38wPSQ.mft (raw, json)
Hash identifier: yZ/Byb/V+RpazufYpRYkNEh8PkBazVPyB4NmCBNrl/g=
Subject key identifier: 17:C3:F2:59:C7:1C:E5:83:61:B3:BD:8E:B0:27:64:58:1E:77:06:D7
Authority key identifier: CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
Certificate issuer: /CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Certificate serial: 0198D51622007187A45D502517DDDF15F76B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 04:00:54 +0000
Manifest this update: Sat 23 Aug 2025 04:00:54 +0000
Manifest next update: Sun 24 Aug 2025 04:00:54 +0000
Files and hashes: 1: 92Huf3IHz49yEZcp8laODPaay4A.roa (hash: fHDvsxbqA8PNa+801vhXYVjpC3kLuwr6JG2deunc2nA=)
2: yy2f-G42PbNNBVbsFkUfL38wPSQ.crl (hash: dDbAT2Q5NxGQ8lrVREa4LOkHIVWDKj0I8OP0CvPjRBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:22:00:71:87:a4:5d:50:25:17:dd:df:15:f7:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Validity
Not Before: Aug 23 04:00:54 2025 GMT
Not After : Aug 24 04:00:54 2025 GMT
Subject: CN=17c3f259c71ce58361b3bd8eb02764581e7706d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:31:69:81:f7:9d:9f:16:b8:cb:7a:5b:1c:35:
0d:85:1b:60:69:74:41:db:47:18:63:de:ee:6d:2d:
36:70:0a:c8:65:18:a0:9c:2d:30:bb:98:ff:88:9d:
51:8e:99:9a:8b:e1:a5:3d:10:e3:83:82:a6:33:7f:
43:3e:72:6c:07:a7:e8:d8:8d:bd:27:3f:87:a9:f2:
a2:60:02:ee:f4:ae:db:78:02:34:8c:fd:d7:7c:9b:
42:08:d0:73:59:4e:fc:29:38:43:a7:22:80:3d:eb:
cd:ea:c3:83:64:73:70:17:fa:29:1e:e7:3e:72:a1:
26:e3:04:96:f8:32:54:dd:88:cc:f1:c1:e0:6e:08:
8d:16:33:18:fa:60:63:62:70:e8:0b:a9:54:d2:53:
01:02:5e:c9:84:1c:e5:21:14:2a:00:9b:b1:05:28:
88:bf:17:ff:8c:4e:6e:76:9c:7e:4d:51:ea:c6:68:
dc:ac:36:96:9d:3d:96:44:67:47:43:83:0c:fe:90:
7d:29:3d:64:2a:18:22:3f:93:b3:3e:32:6b:60:6c:
74:63:bf:b8:dc:2a:94:c9:64:40:7d:40:ef:4b:ef:
8b:36:5b:cb:99:28:fb:5e:e5:1b:13:93:dc:60:67:
23:c2:b6:b1:3e:c6:65:25:12:a8:8e:3d:62:33:95:
03:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C3:F2:59:C7:1C:E5:83:61:B3:BD:8E:B0:27:64:58:1E:77:06:D7
X509v3 Authority Key Identifier:
keyid:CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:2a:9a:b0:61:35:f3:fe:1e:f7:0d:3f:ad:29:4f:b0:95:64:
a4:d1:3a:8f:f2:8b:08:65:17:38:d7:8e:d3:dc:73:42:dc:e5:
fd:1c:09:8b:3e:c0:e1:7a:e8:89:e3:44:06:58:5c:c8:2c:cf:
91:b4:c0:ee:21:76:0b:50:01:e7:db:4d:a2:7f:86:ec:ce:a5:
6a:ca:55:f9:42:d7:1f:f1:72:ec:93:4a:e2:cd:da:63:f9:b1:
48:01:eb:28:00:2a:5a:de:f8:1c:49:11:bd:0f:51:a9:2a:4a:
d6:69:9c:4c:ea:da:ab:5a:00:4b:d7:ed:bf:c9:b2:1a:aa:d6:
9b:90:11:4b:9c:fc:da:05:38:72:05:2b:a7:1f:8e:bf:69:b7:
a2:99:de:86:c8:1b:cc:8b:fb:8f:62:fc:ff:7a:43:84:22:a0:
a2:0e:d4:cb:fc:6f:bd:27:ac:4b:81:3f:2d:16:1d:f0:08:28:
6d:9f:0b:97:a9:3b:0d:4b:d1:74:d6:70:c5:49:9e:52:30:34:
26:74:df:0d:0f:b7:bf:c5:c0:11:bb:9b:40:38:72:dd:bc:2b:
42:00:84:aa:04:84:93:2c:4e:62:02:38:18:93:b7:93:15:d8:
fc:82:6d:54:20:02:37:97:15:d2:39:ac:41:e5:55:fb:57:36:
a0:71:b2:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:41 2025 by rpki-client