Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
File: YjqxggzkjFedpAxm2FJl8cLPy04.mft (raw, json)
Hash identifier: wBQaZX7ZBOHWsFqAt/ZLbiWFLFJQGkaGHED1x4Gf7xo=
Subject key identifier: 1B:49:21:D7:57:D3:82:C8:A6:13:5B:6E:E4:6F:30:9E:EE:2A:0A:50
Authority key identifier: 62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
Certificate issuer: /CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Certificate serial: 0198D54DE97305FBD8E44022EFF7574921B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
Manifest number: 06CE
Signing time: Sat 23 Aug 2025 05:01:49 +0000
Manifest this update: Sat 23 Aug 2025 05:01:49 +0000
Manifest next update: Sun 24 Aug 2025 05:01:49 +0000
Files and hashes: 1: YjqxggzkjFedpAxm2FJl8cLPy04.crl (hash: Dvuyc+x3FL9rVpQmrNR0JL6Ica5HlkKYnLpX9LMkjJc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:e9:73:05:fb:d8:e4:40:22:ef:f7:57:49:21:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Validity
Not Before: Aug 23 05:01:49 2025 GMT
Not After : Aug 24 05:01:49 2025 GMT
Subject: CN=1b4921d757d382c8a6135b6ee46f309eee2a0a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:00:c5:42:0d:ba:6a:c6:0d:4a:00:13:41:fd:
e5:ad:46:bd:5a:fc:92:7d:ac:b5:b3:d5:2f:6a:83:
fa:44:69:e1:90:01:6e:07:2f:3c:0a:90:18:c2:24:
b1:d3:eb:7d:7a:53:e7:05:97:30:2e:cf:1b:29:e7:
a9:36:c4:d5:6c:c3:51:9a:78:ff:da:49:6a:e8:cf:
74:d2:15:8c:ca:b3:d4:34:6a:37:77:5d:97:28:e2:
00:d2:47:42:35:bb:c2:7e:14:53:2a:d4:ee:fe:79:
40:ba:6b:ed:b6:0b:40:22:ea:3f:0f:12:ac:68:78:
1c:bf:0f:28:25:b3:71:88:ec:56:aa:59:ee:4f:1b:
98:c1:e8:68:44:15:37:67:88:bd:46:f6:fa:a9:b1:
ce:85:81:d3:5e:92:58:58:59:33:56:57:41:47:0c:
7e:57:4b:81:6e:38:83:4d:67:7d:1c:54:6e:e8:0e:
86:32:77:24:ec:49:0e:2f:11:de:30:02:d4:66:be:
2d:4e:80:6f:26:7c:47:8b:85:49:be:0f:97:e9:66:
0e:15:d7:68:7b:1b:b5:54:05:4b:af:c9:45:19:18:
b2:6e:fb:cf:46:a5:91:78:5c:d7:d5:b6:1f:eb:59:
46:17:d3:77:5f:8e:47:be:69:5c:40:76:a1:42:47:
a0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:49:21:D7:57:D3:82:C8:A6:13:5B:6E:E4:6F:30:9E:EE:2A:0A:50
X509v3 Authority Key Identifier:
keyid:62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:e9:b2:06:c8:d0:5e:67:a1:2a:5f:1c:1b:ec:77:73:69:2b:
a1:14:b0:ee:a8:45:b2:ff:2f:c1:e9:f8:68:25:82:3c:71:3d:
4b:54:3a:05:be:fe:ff:07:a9:5d:e9:13:57:fc:8a:0a:d9:2c:
0f:24:53:f3:2c:17:08:5c:65:19:71:2c:b1:0c:6b:5f:90:42:
a0:7a:66:bd:91:97:29:b5:18:a9:a3:29:11:eb:3c:c9:78:01:
36:7d:61:0a:21:db:89:f2:d3:34:2a:fa:ef:e1:24:2f:41:d7:
37:17:dd:e8:ed:0b:3a:54:58:c7:19:df:d1:00:97:13:61:2c:
5a:7d:dc:2a:93:c5:5c:9f:da:61:7b:90:fb:70:54:00:b4:fa:
99:b5:2a:d4:7e:bd:d2:47:1d:14:18:a9:10:47:b7:25:64:02:
a2:b3:43:f4:f7:48:51:7b:56:13:30:c0:40:c6:53:51:56:0d:
2f:f0:10:28:aa:f5:3e:3d:16:ad:12:b5:ef:e0:bc:6a:33:d7:
f8:b7:bd:ad:4b:c0:c3:0f:c4:58:13:ee:d6:22:cb:60:02:3f:
8f:b2:ff:bd:64:16:50:5d:0e:65:d8:0a:6f:b1:6e:c3:ec:14:
27:26:20:db:e3:d3:62:a8:36:d0:33:3c:cf:c0:25:9c:2e:4a:
b8:c5:ac:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:13:09 2025 by rpki-client