Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
File: YQy4N7bSF3jkw9u5aWefDxxQtIo.mft (raw, json)
Hash identifier: fLbSsnQK7Yqxx8TcYIaVByfPNHV1shAa0xEVUP/VTyk=
Subject key identifier: E1:C5:4B:FC:3F:74:F5:CE:00:F1:08:66:72:0B:25:5E:29:E8:90:14
Authority key identifier: 61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
Certificate issuer: /CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Certificate serial: 0198D47398E94F9783B164FFED992AE2AE21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
Manifest number: 0E61
Signing time: Sat 23 Aug 2025 01:03:22 +0000
Manifest this update: Sat 23 Aug 2025 01:03:22 +0000
Manifest next update: Sun 24 Aug 2025 01:03:22 +0000
Files and hashes: 1: YQy4N7bSF3jkw9u5aWefDxxQtIo.crl (hash: mPtr4yFM4DuYrzK4Y3CMd0ULPVl3S7iDJ9P72nWpMDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:98:e9:4f:97:83:b1:64:ff:ed:99:2a:e2:ae:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Validity
Not Before: Aug 23 01:03:22 2025 GMT
Not After : Aug 24 01:03:22 2025 GMT
Subject: CN=e1c54bfc3f74f5ce00f10866720b255e29e89014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a0:31:e1:ad:8c:2b:0d:01:d0:90:f6:58:a4:
96:65:52:83:9b:21:a4:f8:cb:88:99:91:ff:bb:20:
7a:06:fc:52:28:33:28:a0:7c:ac:a7:8a:d5:70:38:
92:8b:ad:e6:5f:5a:2d:64:16:fe:61:3b:38:bb:ad:
bc:67:b7:42:5c:41:5c:0e:26:e6:3d:1a:da:bb:d9:
54:a3:fd:f1:be:85:6f:1f:f0:87:da:7f:e2:31:a3:
d0:01:3d:50:50:46:6e:23:3a:0f:02:f6:a2:8e:c3:
98:b9:40:65:6a:67:a2:fb:0d:0b:82:84:3c:48:08:
66:e6:23:fb:07:14:25:46:c9:04:5f:cd:39:9c:00:
4f:fa:f3:82:d7:0c:98:c2:91:dc:7f:5e:20:cf:fa:
8f:6d:32:ab:b1:0b:4c:6b:3d:1f:7d:33:24:01:c5:
8c:2f:cc:7f:67:0a:f6:4b:9f:c8:37:a7:03:93:c1:
2a:59:d0:15:73:1d:db:4a:34:7a:73:d6:e4:5f:ac:
cc:5c:23:1e:0b:65:27:61:27:ba:56:b4:e5:de:d7:
d1:91:18:f0:82:83:05:fc:93:e5:1b:b2:23:b5:29:
f2:7c:4b:03:b3:c7:b9:e0:0c:d1:05:fd:75:3a:e1:
57:51:9b:59:1e:82:aa:7a:27:a3:c7:59:92:c3:13:
af:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C5:4B:FC:3F:74:F5:CE:00:F1:08:66:72:0B:25:5E:29:E8:90:14
X509v3 Authority Key Identifier:
keyid:61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:3c:da:e4:7e:18:d4:13:b6:a7:44:06:84:62:d6:e5:73:67:
60:7f:9a:b5:cc:65:73:e2:58:f7:e1:1a:14:ae:ee:a3:de:16:
70:18:00:77:14:f5:1d:cf:dc:82:c1:69:dc:d9:29:01:a9:f5:
ef:a0:11:61:04:c9:1e:e1:39:90:27:b6:18:97:9b:91:7c:19:
17:3f:9c:5a:dc:1a:d1:98:2d:3d:f3:74:e3:83:15:30:3b:18:
7f:f2:8c:75:c3:0f:ae:ab:5d:a6:82:db:59:76:03:d8:93:e8:
92:29:ff:52:e9:e6:01:ef:52:5f:fd:2f:6b:6b:aa:36:9e:73:
e1:41:6e:70:df:b9:c4:ab:2a:f5:7b:ba:a7:52:21:1b:f5:85:
35:42:70:7a:53:b8:bf:ee:b8:cc:80:3e:4e:37:a0:d3:e4:71:
a5:4a:c8:c1:61:76:2c:a5:a1:69:ad:ee:7d:26:fa:43:45:fd:
c6:69:b5:57:0f:c8:12:4a:8b:0d:90:5e:67:69:77:60:0e:98:
57:ee:d3:01:c2:5e:67:06:a1:2c:88:18:3e:40:38:c3:48:d5:
56:e5:b3:5b:df:d0:1e:d5:25:b7:87:4a:a5:a8:51:dc:33:03:
70:d9:9c:4c:52:90:ed:45:c2:32:d6:eb:c3:0b:89:17:97:45:
59:0a:f4:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:29:01 2025 by rpki-client