Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
File: yoFg7-OfGjB3_dL68ipkgEtUE4I.mft (raw, json)
Hash identifier: /KMRonwxcccjWMxTKWlhNxplwXwQHmqecWJ+ddqq9Lw=
Subject key identifier: AE:28:8E:6A:C8:77:F7:88:EB:8E:0B:CA:B2:B5:9D:A4:A2:8B:A4:3A
Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Certificate serial: 0198D515F4544EF2FFBCF8347D27853B4B25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
Manifest number: 12E9
Signing time: Sat 23 Aug 2025 04:00:42 +0000
Manifest this update: Sat 23 Aug 2025 04:00:42 +0000
Manifest next update: Sun 24 Aug 2025 04:00:42 +0000
Files and hashes: 1: h-rZd3ShfaYedaYA6tLbzrX_MkU.roa (hash: 6iJffUIazxHr4GTAEcidCyRV9SNB9d9va8nX06PMskE=)
2: yoFg7-OfGjB3_dL68ipkgEtUE4I.crl (hash: 0oO4NYP4cIr8cnZEgtD5fF7Ia6s7pTfOTlSFwrM4/ac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:f4:54:4e:f2:ff:bc:f8:34:7d:27:85:3b:4b:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Validity
Not Before: Aug 23 04:00:42 2025 GMT
Not After : Aug 24 04:00:42 2025 GMT
Subject: CN=ae288e6ac877f788eb8e0bcab2b59da4a28ba43a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0b:79:c5:98:0b:af:1c:54:01:5d:fe:25:14:
7c:32:ee:cf:58:08:94:28:a6:00:b1:e6:f1:82:38:
79:06:ea:e5:14:d1:8a:9c:51:3f:43:83:16:ca:a1:
01:cf:93:1a:42:29:b3:b9:b2:5c:84:67:78:56:3b:
7c:5c:a1:6e:c7:75:3a:1e:55:f4:8d:a4:31:c6:7e:
11:d0:77:13:1a:c2:4a:dd:8d:ff:ad:25:5f:2d:c8:
5d:45:c3:06:7d:4c:7f:94:03:a1:86:92:c2:56:53:
d7:ac:bb:0d:76:a8:71:33:e4:55:a6:1d:ca:7a:9f:
45:4f:8f:0c:e8:57:f0:13:1f:3a:12:10:6c:86:89:
1f:49:1c:8f:ad:97:82:48:ad:28:7e:65:59:23:b8:
e2:09:67:37:cb:fd:7d:97:a4:48:e6:4a:86:45:9b:
79:73:7c:7b:d6:f6:e0:02:df:bd:79:44:3c:f5:b6:
d5:ed:f4:55:e8:09:28:d7:34:21:69:29:51:92:8a:
1e:d2:54:d3:6e:dd:b4:5e:24:74:be:b8:af:7d:3c:
e9:41:76:95:ed:cd:54:41:3e:e2:c9:03:b7:29:5e:
87:b5:2e:5b:40:cb:3f:26:09:d8:f9:c9:1c:53:29:
60:32:17:05:92:0d:8b:b3:cf:43:f5:d4:ba:59:b2:
b7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:28:8E:6A:C8:77:F7:88:EB:8E:0B:CA:B2:B5:9D:A4:A2:8B:A4:3A
X509v3 Authority Key Identifier:
keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:fe:49:78:79:da:02:24:19:fc:90:e3:a1:a5:c6:87:72:25:
cc:3b:8d:00:2d:84:ad:41:32:79:d3:2a:ad:58:b8:eb:3c:c6:
c9:d7:fa:83:44:b3:f6:d1:c3:94:54:d5:02:4e:4c:77:10:d0:
5d:59:c5:08:c0:4f:80:7b:7f:5c:b2:c2:2b:73:b1:bb:94:8c:
9a:25:b6:b5:28:0c:50:2a:03:1c:8a:8a:13:05:1b:38:49:c8:
24:27:ae:89:94:0e:dc:a7:58:19:3a:54:55:b1:ec:75:a9:63:
dc:31:a4:ee:3c:ee:ea:3f:96:d0:70:b8:0f:e7:f7:c7:bd:df:
02:b5:08:82:c7:21:68:95:bc:4d:1c:d2:04:0a:9f:8b:bd:6c:
1b:0f:b0:f5:88:d4:7c:cd:da:88:4f:3e:6e:5d:44:0b:6c:7e:
eb:69:46:bb:3b:3a:cd:fe:0f:2c:e2:9b:7e:2a:08:bd:7b:ce:
bf:30:00:d3:a7:33:c6:e2:4c:5c:77:88:3b:34:ee:05:74:f6:
1f:c7:f6:56:0d:d4:0f:eb:b4:c2:e3:b6:96:96:69:da:4d:17:
33:49:36:d1:4c:11:c9:3a:45:a7:db:79:ba:62:78:37:a1:12:
cf:54:f7:b9:3c:17:3e:45:86:e4:66:d3:c3:b7:43:fc:ea:19:
2f:a4:41:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:07:09 2025 by rpki-client