Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
File: yTLAXdVS5YBU2FWljWFhlVP1HGM.mft (raw, json)
Hash identifier: mZunNWJYgP+Y5zsJzHBBowJUCRPvNX0AtM4mHqUuEk4=
Subject key identifier: 76:0D:94:0A:3D:5C:46:22:F8:3E:27:3D:88:B6:11:15:58:5E:E5:AB
Authority key identifier: C9:32:C0:5D:D5:52:E5:80:54:D8:55:A5:8D:61:61:95:53:F5:1C:63
Certificate issuer: /CN=c932c05dd552e58054d855a58d61619553f51c63
Certificate serial: 0198D5F149CBF55A83AEFD4151818F446790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
Manifest number: D0
Signing time: Sat 23 Aug 2025 08:00:16 +0000
Manifest this update: Sat 23 Aug 2025 08:00:16 +0000
Manifest next update: Sun 24 Aug 2025 08:00:16 +0000
Files and hashes: 1: yTLAXdVS5YBU2FWljWFhlVP1HGM.crl (hash: 6iJx65ON4p26gt94m5xn3tKZ+w1X/wu56RPAR5bpAfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:49:cb:f5:5a:83:ae:fd:41:51:81:8f:44:67:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c932c05dd552e58054d855a58d61619553f51c63
Validity
Not Before: Aug 23 08:00:16 2025 GMT
Not After : Aug 24 08:00:16 2025 GMT
Subject: CN=760d940a3d5c4622f83e273d88b61115585ee5ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:83:79:0b:d0:67:0f:ec:0b:db:a5:84:14:70:
26:9b:b8:8c:d0:7a:db:03:f8:3c:25:19:86:e4:9e:
50:ac:bc:a7:38:a2:a4:0e:13:9d:7f:2e:25:74:fd:
ff:76:9f:08:da:6c:2c:4c:07:52:91:e3:a2:c7:2d:
83:b8:1d:d2:1d:28:ef:0c:23:75:f2:a9:21:77:35:
6c:cb:e7:fc:d4:7f:9e:7b:de:a1:21:e3:b1:62:b4:
4e:ff:5c:16:04:b5:1a:a9:9b:f7:13:e4:de:fd:cf:
b3:83:08:47:92:7e:5e:65:15:eb:27:d6:4c:de:c4:
37:24:0d:46:a8:09:5b:4d:5c:58:c8:b6:a9:89:86:
33:0d:04:90:db:5f:c2:80:19:cd:86:c8:b1:e0:64:
f5:d4:eb:45:c6:9c:69:c1:b8:2f:1c:79:c5:ce:3e:
95:78:90:5f:c0:bd:b4:6b:d1:16:69:d3:b7:cd:88:
42:d2:4f:60:f5:73:29:64:2f:36:a3:7a:41:55:1a:
ec:d8:84:98:02:ce:9e:37:f3:d3:64:81:b9:83:85:
df:2e:9a:6c:43:12:91:e0:84:88:00:85:c3:3f:35:
d2:4f:2c:64:2b:e6:c2:ec:6a:69:ab:29:c1:7c:c4:
ba:d0:2b:af:f6:8d:40:75:30:7c:87:cc:47:87:91:
60:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0D:94:0A:3D:5C:46:22:F8:3E:27:3D:88:B6:11:15:58:5E:E5:AB
X509v3 Authority Key Identifier:
keyid:C9:32:C0:5D:D5:52:E5:80:54:D8:55:A5:8D:61:61:95:53:F5:1C:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e0:8d:00:9c:d2:42:03:c9:0b:49:18:e9:6c:0e:e9:ce:53:47:
21:37:e8:8c:75:e9:30:89:48:cf:d8:bd:32:17:63:26:a2:c5:
1a:27:03:a4:ac:d8:e1:3e:ae:7c:cb:f2:4e:a3:6b:f2:ee:98:
64:61:b0:5a:bb:9c:83:19:17:37:5f:90:9b:89:5a:23:2d:97:
68:1a:e8:4c:15:28:33:9c:c1:69:49:bb:d7:fb:e6:63:21:01:
56:34:79:8a:92:f7:87:be:06:71:bc:18:26:ac:7d:6b:57:af:
21:bb:6b:2f:b8:2d:b8:b7:c2:f1:08:b0:b9:be:e4:40:cb:d1:
45:a0:1d:00:e8:b5:38:ef:55:08:14:d8:77:37:cc:d8:54:39:
77:50:28:68:e0:09:1f:18:9d:ce:b9:b1:af:5e:39:7f:a0:f0:
d4:53:9a:ff:74:5d:26:d1:b8:c9:33:cc:65:77:7c:8d:c6:c6:
b5:0f:d2:5a:f9:2c:f5:1a:a9:a9:c2:ce:cc:5c:4b:46:02:27:
26:52:bd:2c:53:63:5d:ed:e7:3d:47:8a:03:95:53:ce:8f:07:
43:9a:cc:6e:88:76:7e:b4:ec:5e:93:73:4a:38:d9:86:81:e9:
95:93:86:58:f3:e8:2f:ca:42:56:dd:1c:f0:fa:f7:b6:64:28:
60:ac:ca:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:32:58 2025 by rpki-client