Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
File: YhuOSG7srmEk3hBJT9OROe1KN8s.mft (raw, json)
Hash identifier: r7U6OFIc+Ez0FAdXqu4PB7wLmdyBZvMQ+WfYkPlo9Cs=
Subject key identifier: B9:78:69:AF:51:08:D6:19:E0:84:25:B3:41:D4:5B:5A:B2:FC:23:1A
Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb
Certificate serial: 0198D6980CE20DF3A5F7A60DF4CACF3E2AFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 11:02:25 +0000
Manifest this update: Sat 23 Aug 2025 11:02:25 +0000
Manifest next update: Sun 24 Aug 2025 11:02:25 +0000
Files and hashes: 1: YhuOSG7srmEk3hBJT9OROe1KN8s.crl (hash: cn5o+91+Ug6rBwyjdRoMG1EGKZSVDjQ9xDN1tqmb8CQ=)
2: eKGme1_RE2Cve029wfoTPnjkx8E.roa (hash: 7e5ken09Fa398flHkK+xPpARVfWAIKVd53mQhTUCt6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:0c:e2:0d:f3:a5:f7:a6:0d:f4:ca:cf:3e:2a:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb
Validity
Not Before: Aug 23 11:02:25 2025 GMT
Not After : Aug 24 11:02:25 2025 GMT
Subject: CN=b97869af5108d619e08425b341d45b5ab2fc231a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b8:7c:44:e1:0e:52:af:b2:cf:03:d9:35:94:
99:8e:9e:c7:29:c8:ce:cd:87:dc:6b:90:f3:f7:af:
e1:ae:ba:42:69:cc:bd:2d:16:24:0e:96:f5:1f:1c:
41:b6:61:36:9a:a6:34:8f:fa:f8:69:20:2f:c7:8c:
f3:09:aa:de:c1:e2:fd:8d:b7:e0:80:9c:58:e4:cd:
1a:d1:d7:a6:69:a3:a7:1e:2c:9d:73:98:d8:ff:d2:
5a:30:62:65:83:05:af:1f:58:bb:37:ff:3a:b3:21:
4f:5b:16:e3:e1:6e:fe:b8:d8:59:5e:96:cb:cd:53:
80:a6:7c:c4:7b:9a:fa:66:d3:b0:db:96:0b:35:a1:
25:bb:a8:74:79:a7:f6:1d:a6:d9:8d:74:87:f6:e3:
08:3f:cc:56:09:53:26:53:80:dc:1b:29:4e:e4:4a:
6f:b9:6d:2b:40:bc:7c:a4:49:6f:cc:bf:17:2f:76:
44:29:b5:d2:cb:59:15:c1:e6:c8:52:98:21:46:42:
e8:95:68:09:56:cd:3d:a4:ef:c6:a3:f5:99:bd:4f:
ee:88:3a:b0:59:57:7b:be:30:b4:09:f6:c4:77:cc:
70:e7:fe:d9:22:18:c3:57:00:5a:e5:58:bf:00:1d:
83:b5:88:05:2d:fc:53:aa:97:71:be:a5:10:2d:15:
9b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:78:69:AF:51:08:D6:19:E0:84:25:B3:41:D4:5B:5A:B2:FC:23:1A
X509v3 Authority Key Identifier:
keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:d9:13:e9:23:2d:c5:54:3a:56:3e:ba:88:4f:d3:74:2f:f1:
69:60:4c:52:0e:0b:47:fb:bf:3e:be:3b:f5:e6:32:22:d3:d3:
53:0c:c9:b5:dd:73:0d:c3:d8:e4:6a:37:9d:3e:53:d8:e4:51:
e3:76:c3:e0:32:04:c0:cc:ea:5b:dc:e6:ea:9f:05:fc:f9:04:
8e:66:21:63:b0:26:bc:79:5b:61:49:45:97:ad:4b:27:4b:ea:
5e:28:b3:37:b8:e1:f4:37:0f:6e:77:63:8c:23:d2:2b:81:29:
5c:df:ea:cb:47:a5:41:a1:fb:e8:32:6f:08:a9:f3:82:8b:09:
14:9c:ad:19:11:11:72:af:31:78:a4:f4:1b:42:e3:0b:a1:b9:
2f:15:b9:0d:39:2c:bc:b5:5f:96:6e:79:6a:09:f0:09:a8:ef:
2a:f2:6d:29:b3:d0:ea:e8:d3:52:f7:d9:e5:d3:d2:27:dd:f2:
2d:b4:d9:84:0c:a9:18:03:f9:9c:58:ee:72:b8:11:62:93:c0:
44:a7:ce:7e:f6:df:74:f6:7b:7f:38:9b:62:d8:e7:a1:07:2f:
7d:75:78:08:c8:92:87:04:44:cd:97:eb:a9:9b:83:7a:16:ea:
57:04:37:15:ec:90:64:4e:8e:d2:92:dd:6a:ed:43:74:3d:be:
55:6a:cd:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:53:26 2025 by rpki-client