Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
File: YFUCYwejbuxeaBw5SK71Oif5lzY.mft (raw, json)
Hash identifier: y0hm0ak/t/RRiQgXE7BACbfT6VtykSlQ4x2Rh/GL9vE=
Subject key identifier: 65:A8:31:54:E2:7D:56:0F:AB:2B:4C:3D:99:52:75:B9:78:C5:A6:55
Authority key identifier: 60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36
Certificate issuer: /CN=6055026307a36eec5e681c3948aef53a27f99736
Certificate serial: 0198D439B00B6720A5A68D7B6B9F12CFA57B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
Manifest number: 65
Signing time: Sat 23 Aug 2025 00:00:07 +0000
Manifest this update: Sat 23 Aug 2025 00:00:07 +0000
Manifest next update: Sun 24 Aug 2025 00:00:07 +0000
Files and hashes: 1: 7jIqwtDbMy9vdRo0YUm5EEwEiSU.roa (hash: zcVysxxJ8InMIpqNYEgmGN9PoMJVnhc3HSBD/6SlWos=)
2: YFUCYwejbuxeaBw5SK71Oif5lzY.crl (hash: NiSVD0VbeqjHWrKPs9t4wBMyBdK88PP2XEud8M/6t8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:39:b0:0b:67:20:a5:a6:8d:7b:6b:9f:12:cf:a5:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6055026307a36eec5e681c3948aef53a27f99736
Validity
Not Before: Aug 23 00:00:07 2025 GMT
Not After : Aug 24 00:00:07 2025 GMT
Subject: CN=65a83154e27d560fab2b4c3d995275b978c5a655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:06:1e:27:a8:0b:9b:1a:e1:3a:69:61:cc:fa:
74:95:81:b6:d4:65:61:fd:95:71:6a:51:d4:ad:ee:
df:be:40:56:8f:5e:51:e0:f3:55:92:e8:fb:39:19:
4c:d8:09:f1:b9:20:dc:61:d1:00:54:0f:ba:92:49:
e2:33:24:38:25:8a:a1:02:f1:73:80:48:36:18:62:
26:ba:30:a0:b2:fd:44:25:76:09:77:ce:a8:9d:ae:
10:f4:95:40:60:39:06:61:a1:92:9a:01:d5:92:9a:
13:ed:fe:50:9e:21:6b:87:47:f5:3c:51:1e:51:86:
c2:45:1e:37:39:a4:38:6d:48:86:51:01:1b:a4:14:
7c:f2:77:77:a0:fa:83:f3:d0:94:42:fe:b3:c4:40:
3d:b4:63:94:a1:05:43:27:ee:16:7b:70:63:4f:4c:
b0:b5:69:7b:44:5c:24:23:1d:fd:57:d7:96:e0:33:
2d:e8:f9:53:83:fb:6a:4f:e5:a0:80:b3:a6:29:e1:
1e:8a:c8:05:c1:69:33:63:b4:b3:4a:5a:c1:11:5c:
ce:13:28:d2:ea:d4:8f:58:7c:01:fa:46:d1:44:01:
75:b0:e5:d4:67:ce:43:c2:d0:57:ff:5c:7e:72:02:
79:3f:45:dd:53:fe:d1:f1:6a:c3:08:04:ed:09:ec:
da:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A8:31:54:E2:7D:56:0F:AB:2B:4C:3D:99:52:75:B9:78:C5:A6:55
X509v3 Authority Key Identifier:
keyid:60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d8:d3:40:ac:d8:c2:19:9c:f5:5e:91:f6:0e:39:c2:fb:ca:
41:83:dd:fe:6a:75:26:ba:9b:9c:68:e0:2e:6c:0f:17:d9:94:
a8:8c:58:c8:f4:c2:b2:e0:2c:0f:7e:f9:6b:f2:23:4f:de:b2:
c9:41:15:f6:dd:d7:64:9f:6a:7b:13:66:54:50:80:b9:bf:ab:
33:8d:e0:23:4c:af:49:5b:12:a3:b9:4a:4a:b9:b3:0a:7f:a8:
fe:41:d1:3a:ac:a0:e2:bc:b9:a4:73:ea:a2:18:55:ef:18:40:
d4:01:18:d6:da:a5:aa:a9:e0:40:18:c4:81:a6:40:c2:32:4e:
ce:b3:df:b8:e9:31:61:2f:08:8b:3e:43:83:4b:ba:48:17:dc:
3f:d6:51:4e:ab:c9:d1:48:62:3c:d9:2a:82:3b:3e:f9:ca:d8:
e5:d6:b6:fe:ca:a5:d6:32:c8:da:52:28:52:41:7e:78:58:93:
8a:ae:b0:1f:ac:30:b7:43:b8:b4:f8:74:1a:b1:7e:db:cf:b4:
59:8b:e8:98:e9:04:80:fe:3a:cf:cb:04:bc:5b:d6:fc:2a:f7:
ce:5a:c1:47:6f:63:d6:66:84:f5:04:1f:4c:90:ac:06:f4:ca:
b8:cb:fd:a2:cd:6a:84:12:79:70:7c:7f:5f:cb:ab:5e:fb:3e:
a4:85:e1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:23:16 2025 by rpki-client