Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
File: YKzX2WuVbeXbA2c80dHjo3uN2d0.mft (raw, json)
Hash identifier: TEXeXAPr/NlBhdWuQtA53D13BgcGY05D1/rvhDnwm1M=
Subject key identifier: 6C:B2:6C:25:7F:0A:7F:CA:04:5D:2D:2D:20:76:DA:23:2C:33:72:8A
Authority key identifier: 60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD
Certificate issuer: /CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd
Certificate serial: 0198D583B7543FD0DE86B5799BC40EC193A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
Manifest number: 059D
Signing time: Sat 23 Aug 2025 06:00:35 +0000
Manifest this update: Sat 23 Aug 2025 06:00:35 +0000
Manifest next update: Sun 24 Aug 2025 06:00:35 +0000
Files and hashes: 1: BWZ8TffzeheUILd5O5vwxA8ANgs.roa (hash: 9mVvCij2ArMXMv49a46m8ltBnU+gbtg05+eZlvNEdYk=)
2: YKzX2WuVbeXbA2c80dHjo3uN2d0.crl (hash: FtTVVaximHA8HVW8RbBYbNGQx+bgI2n4qPZ+AWxZGvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:b7:54:3f:d0:de:86:b5:79:9b:c4:0e:c1:93:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd
Validity
Not Before: Aug 23 06:00:35 2025 GMT
Not After : Aug 24 06:00:35 2025 GMT
Subject: CN=6cb26c257f0a7fca045d2d2d2076da232c33728a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:18:e3:c2:75:06:74:af:98:02:f7:21:dc:65:
d3:86:06:d1:75:b9:bc:39:67:d7:a7:43:c0:cc:ee:
2e:74:a1:5f:c3:ea:48:4a:bc:ee:7f:cf:3c:eb:19:
15:34:1b:32:2a:6f:40:bf:e5:fd:49:70:79:25:04:
7f:f6:cd:af:38:02:96:89:f9:89:9f:53:55:b9:ea:
c0:6b:90:2f:dd:cb:8e:b1:60:f7:01:55:89:75:c1:
e1:a4:e4:a3:65:3b:d3:c9:22:5b:a6:60:27:60:6e:
25:17:c8:de:e4:b3:cd:67:a9:c7:a1:03:5b:51:66:
cf:2a:69:2a:6d:e0:bc:1a:26:f5:03:c7:79:fa:1b:
62:2a:2d:f4:38:43:17:3c:fa:11:ee:c0:59:83:5a:
c3:e0:6d:62:c5:af:5f:9f:85:16:ee:63:16:96:65:
3e:b8:33:92:5d:9c:b4:9f:2b:67:d9:5a:c5:28:f5:
b6:1a:5b:c0:db:54:c1:c8:37:3c:e9:2c:f8:4b:da:
7b:0f:a4:c2:d5:9f:1c:d7:be:8f:5f:82:81:fc:f1:
c9:4a:e5:c8:cf:2d:09:0f:78:8e:94:e1:c6:8f:83:
19:f8:33:5a:35:05:e7:82:5e:75:33:f3:b5:37:2e:
83:2f:0e:d1:82:5b:c9:86:a5:20:65:d8:c6:81:ab:
9d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B2:6C:25:7F:0A:7F:CA:04:5D:2D:2D:20:76:DA:23:2C:33:72:8A
X509v3 Authority Key Identifier:
keyid:60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:ee:99:b8:76:6b:2d:12:6b:79:f6:c4:79:20:96:0d:88:4a:
3e:3a:d1:4f:7c:0b:60:c4:02:15:07:c4:f1:c2:32:62:83:21:
25:cf:03:63:99:72:cf:39:75:51:fd:36:70:1c:db:73:fa:ac:
ed:9f:9a:bf:ea:3f:c6:e5:9a:f3:7d:2e:4e:9e:4d:d0:24:01:
0e:5a:65:fa:4e:9d:a5:aa:dc:53:81:cc:73:9c:60:0b:0e:66:
9d:00:ad:f5:32:bd:2a:44:f3:e2:b6:96:20:be:74:d4:39:cc:
5c:3d:15:57:76:49:ca:8d:4d:d4:44:36:20:85:e3:3d:2e:a5:
06:59:92:ad:4f:18:65:d4:37:d7:7a:39:75:60:a6:8a:e7:ac:
61:52:df:c8:fb:2c:75:6a:53:e1:b5:df:ed:ce:38:61:38:26:
cf:59:25:ed:ce:b1:27:50:61:2a:f1:7c:f9:b4:b2:a5:d8:b7:
f0:2a:35:33:98:c0:81:d4:be:01:8f:b2:8a:1e:97:cc:42:e0:
d0:0f:31:f8:b4:40:f3:ab:90:de:fc:a1:1a:16:10:0a:44:bd:
c9:da:0b:07:80:bc:0b:98:6f:80:bb:f4:c6:ae:38:f8:c2:92:
b4:c9:f1:4a:bb:1c:f5:b1:e3:c8:d4:b2:1e:54:46:9a:73:eb:
de:ee:93:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:54 2025 by rpki-client