Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
File: yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft (raw, json)
Hash identifier: QZTYF+Sl+C2wPjBUOf5JbUozcywmsHSsPaIeaP/K4c4=
Subject key identifier: 7E:0E:A5:25:31:9C:60:D1:B3:BB:F7:54:32:D6:D1:25:F5:59:AC:36
Authority key identifier: CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
Certificate issuer: /CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Certificate serial: 0198D4730D6032613129B5E99B631260046D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
Manifest number: 03CE
Signing time: Sat 23 Aug 2025 01:02:46 +0000
Manifest this update: Sat 23 Aug 2025 01:02:46 +0000
Manifest next update: Sun 24 Aug 2025 01:02:46 +0000
Files and hashes: 1: eVWj75QB5-NY5cip7EaAMqsD3_Q.roa (hash: R8SYABsszbTf/c1Z91aXqCMR7hgNS09va3LcQa+6Zyg=)
2: yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl (hash: 1Oa6F81aIWtYDD4ACXr3o6hAhpMUwbm9FLyCOapulB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:0d:60:32:61:31:29:b5:e9:9b:63:12:60:04:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Validity
Not Before: Aug 23 01:02:46 2025 GMT
Not After : Aug 24 01:02:46 2025 GMT
Subject: CN=7e0ea525319c60d1b3bbf75432d6d125f559ac36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:30:ea:04:03:a6:1f:ed:ed:e8:3f:ae:1e:1b:
21:43:03:ac:e0:3c:7e:5f:37:0a:c6:d7:bd:f7:ea:
3d:1a:bb:df:c6:a1:e3:2f:94:cd:69:35:8c:77:14:
c0:35:4d:29:e5:85:95:49:73:38:2b:2f:66:d5:bd:
d8:a2:d4:66:65:ca:d6:71:71:f3:a0:5b:b4:e4:b4:
56:d0:bb:dc:28:4e:64:f2:1f:b2:9b:9e:8d:b7:2f:
44:13:80:1b:ad:39:92:d9:27:7e:2d:67:cd:30:f8:
e4:13:76:92:e3:f2:2b:9e:5c:7d:b5:03:77:6e:01:
a0:36:eb:d9:05:6e:f9:bf:a1:0e:0f:c8:0f:90:fc:
eb:8a:c0:af:3b:df:e6:26:79:f7:60:5c:44:ce:4e:
fc:e3:c4:d3:f2:a5:57:e1:97:3a:4f:3a:13:91:e8:
98:28:4d:47:04:b1:4d:3c:82:bc:e8:8c:50:6e:01:
56:b1:53:1e:5c:09:b0:f1:34:47:13:4f:ab:f1:f3:
66:ad:e8:b7:96:38:a5:7d:87:39:12:20:7a:99:30:
36:f2:9a:4e:3b:12:10:84:c0:9c:a3:43:30:81:e3:
13:e5:fa:af:5e:29:e9:1d:73:eb:fb:1c:cb:95:62:
c2:bf:4d:14:d4:58:82:d6:ec:2f:3f:97:52:d7:7b:
f9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:0E:A5:25:31:9C:60:D1:B3:BB:F7:54:32:D6:D1:25:F5:59:AC:36
X509v3 Authority Key Identifier:
keyid:CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:f1:f7:65:a4:ac:5b:d4:36:16:ec:21:bc:fa:f3:2c:f7:70:
2e:bd:e0:f3:e2:b0:ed:1e:e0:9d:a9:98:05:a8:63:63:61:5a:
f5:ca:9a:1c:7b:23:56:7c:44:1c:68:de:d7:cc:77:eb:a1:18:
93:cc:d6:66:31:85:12:2e:15:13:07:98:47:fd:53:b2:b5:fc:
3e:93:7f:84:e8:c1:45:78:1e:4d:e5:40:26:94:5f:59:45:21:
fb:0d:05:8f:a4:b1:c4:c7:0b:34:db:ad:04:3d:c1:f5:e9:24:
f5:00:2a:7d:f8:4c:f8:a6:01:e6:13:20:3d:0a:30:6d:8a:38:
d3:57:71:48:2a:a0:4c:37:16:7e:8f:77:48:2a:81:fd:2a:7c:
60:ac:2f:a3:f1:2a:58:db:43:51:2d:6f:12:13:51:b8:bf:90:
97:c5:a5:dd:41:8f:d2:23:d6:5a:d6:76:75:c5:62:09:25:60:
9b:b0:43:8c:24:0b:04:1c:8f:a9:1a:44:04:80:a2:83:c6:9a:
19:50:2f:57:c2:34:e5:73:57:82:4a:31:de:1a:5b:53:47:42:
99:88:33:cc:0a:b9:c8:5c:df:af:4f:4e:f8:03:69:c3:24:9c:
2d:61:b7:bb:ed:82:3c:a5:67:74:fc:45:18:20:94:56:bd:c0:
89:26:91:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:14 2025 by rpki-client