Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: VgnqboAxUWnppXSl6mZzLrX0MUcCtZNRAFbiKvNDHIc=
Subject key identifier: 47:44:F8:02:D5:F9:A1:6A:45:7D:4E:EF:36:AB:AB:1E:E7:B1:3B:9B
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 0198D4A791B4B95C512681F6D90E4FAEFD33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 012E
Signing time: Sat 23 Aug 2025 02:00:08 +0000
Manifest this update: Sat 23 Aug 2025 02:00:08 +0000
Manifest next update: Sun 24 Aug 2025 02:00:08 +0000
Files and hashes: 1: WJ8mDGp2R9SerzYw88vehn3HSik.roa (hash: h5SXKLsi4QXI6eIjbslnIuS0eoxKGY5pZRrkhG82mKM=)
2: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: lb2KqQ/R0rcwBmyRwRr7EufEGO06CrgPxMJcBpu1qpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:91:b4:b9:5c:51:26:81:f6:d9:0e:4f:ae:fd:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: Aug 23 02:00:08 2025 GMT
Not After : Aug 24 02:00:08 2025 GMT
Subject: CN=4744f802d5f9a16a457d4eef36abab1ee7b13b9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:67:df:49:6a:2c:81:46:08:02:7a:23:97:b3:
47:c6:08:88:2a:13:db:42:ce:6f:3f:72:ac:11:49:
b2:ba:b2:25:0d:f7:9e:b3:f4:8c:c6:14:64:2b:1b:
c3:fe:20:da:9a:f4:99:c6:97:1d:6d:17:6f:d4:48:
d7:fc:f8:1f:2e:e9:29:6b:b3:e8:10:1b:43:51:1e:
6f:87:c2:cc:5b:a4:bd:80:d7:1b:52:0a:ab:09:63:
ac:b8:9a:95:be:85:e6:17:66:db:69:93:62:73:61:
48:95:d1:c7:e8:68:e2:06:67:f0:f2:e8:7d:45:94:
2f:01:05:31:07:e7:db:67:ea:46:38:ef:dd:45:bb:
d9:e6:da:d8:3d:56:09:0f:cb:f3:41:d7:4b:ca:19:
93:58:44:b6:bf:ea:70:c3:7c:37:ac:9a:b2:35:5a:
46:c7:6b:4f:ea:81:fb:ac:c4:ad:79:b5:e0:cf:e6:
80:a6:65:37:71:dd:80:4f:55:53:96:68:1c:8f:eb:
3f:a4:08:eb:ae:68:51:4c:75:d7:e8:fe:79:da:81:
93:46:3e:65:53:f9:f4:48:a0:b0:70:11:2f:48:f1:
0b:b1:01:d8:36:b9:9e:97:95:3c:cd:3f:fa:bb:05:
be:ec:f9:10:b9:d0:2b:21:72:24:a2:03:b3:da:38:
46:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:44:F8:02:D5:F9:A1:6A:45:7D:4E:EF:36:AB:AB:1E:E7:B1:3B:9B
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:6e:6c:1d:67:fd:51:4f:98:5a:4e:31:2e:30:f6:74:03:23:
84:93:67:b6:2d:78:9f:48:be:42:12:8b:66:43:11:97:05:18:
a3:7d:5e:12:30:90:36:7b:d4:03:98:f5:54:29:e4:a2:32:21:
b5:65:d4:48:02:78:dc:21:48:60:69:aa:27:fd:58:b6:05:19:
bb:0f:7c:c4:db:54:48:35:b0:c5:7e:f7:d3:9e:e6:cf:e9:f4:
81:f9:f0:51:d8:e0:e1:d1:97:f1:87:8b:b4:8c:04:06:bd:6f:
7f:95:5c:69:df:33:01:1d:63:be:5c:6e:f7:d8:1e:c6:3e:2a:
5d:6b:6c:ed:2c:77:c3:53:7a:c8:c2:7d:9b:4b:68:69:a5:d0:
a1:b0:fd:77:79:cb:b9:6a:fd:9f:5d:a4:e8:0a:71:22:db:5c:
2e:08:0d:a0:a9:d5:0a:34:02:27:25:7a:4a:f3:1d:62:49:d3:
94:c2:58:2b:d5:47:1b:a7:cf:61:08:ad:52:91:f7:e6:f9:5a:
62:c1:6f:36:3e:08:c4:5b:14:9a:64:4e:9c:02:97:20:b4:c3:
48:46:0e:9c:e7:a8:3f:84:8e:9a:19:b4:59:0d:e6:eb:33:b3:
a7:75:ed:96:74:91:75:f6:66:21:8d:13:cc:52:9c:32:55:7e:
5b:a3:b6:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:26 2025 by rpki-client