Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json)
Hash identifier: l+I02KFiWK3H/ST+H4SAxlrrlZlMMZakebSpwx0WB94=
Subject key identifier: 96:30:20:3E:83:59:CA:B3:C2:04:82:5E:79:B5:9A:FD:91:56:C4:FA
Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Certificate serial: 0198D51594CE186F97F5D38EA6F0BCC87A3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 04:00:17 +0000
Manifest this update: Sat 23 Aug 2025 04:00:17 +0000
Manifest next update: Sun 24 Aug 2025 04:00:17 +0000
Files and hashes: 1: UvHXXFoVL7W8kRf_CmjRtC48uH4.roa (hash: E8q/i3b6Anio6852XqG98vgAFVWa9Xn560kQh/u0aSY=)
2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: 2St3zlKYWEAMlkxPTrTdRplF3n1a5TME6VzIFv2u0P4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:94:ce:18:6f:97:f5:d3:8e:a6:f0:bc:c8:7a:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Validity
Not Before: Aug 23 04:00:17 2025 GMT
Not After : Aug 24 04:00:17 2025 GMT
Subject: CN=9630203e8359cab3c204825e79b59afd9156c4fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d6:ea:ff:fb:70:7d:c5:98:b2:56:31:bc:65:
98:ac:4a:c0:6f:ac:b6:a4:65:08:ad:73:0a:02:ad:
a2:26:55:5a:7f:38:48:c5:47:6a:52:ba:9a:a6:75:
53:4b:3c:7f:a5:c2:dc:60:07:2d:d0:14:e0:c7:3e:
dd:dd:f9:64:ff:65:21:c2:95:2b:32:ab:51:d7:49:
42:68:f8:6d:58:0b:9e:1f:d4:43:75:f5:94:03:f5:
65:cc:99:2f:67:a1:d8:6d:a8:48:24:10:be:21:b3:
e5:7b:ed:17:82:8b:fc:f0:86:b6:60:ef:02:fb:01:
64:fd:24:db:59:cc:d1:9b:ae:13:a9:a3:1c:f1:48:
63:89:1a:de:00:77:a8:b4:d2:ec:e5:ca:6e:85:ac:
d5:86:73:b2:23:36:ff:95:bb:d6:57:95:f7:9c:06:
bd:77:7f:47:b7:20:b3:22:a4:8c:01:8a:70:16:48:
25:f4:13:be:38:e2:32:73:7a:5e:aa:cc:b7:e2:bb:
d8:61:eb:96:1e:00:68:c2:f6:db:af:f1:ab:6e:0f:
d0:19:81:53:62:10:27:f2:04:09:88:a3:34:40:a5:
83:96:4c:0c:0e:66:16:ad:0a:3b:9a:6d:19:59:cc:
86:f7:fd:74:30:c2:7e:21:08:e5:a9:84:16:59:f0:
b4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:30:20:3E:83:59:CA:B3:C2:04:82:5E:79:B5:9A:FD:91:56:C4:FA
X509v3 Authority Key Identifier:
keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:52:c4:9f:a4:ec:a0:63:59:27:7d:fb:2d:fa:c6:99:2c:9d:
04:74:3b:29:c4:28:a0:bf:f4:05:d8:8d:f4:c7:32:89:18:47:
19:06:56:0b:6b:8b:3a:6e:0a:80:09:fd:9a:5f:b3:bd:94:dd:
0d:42:27:51:fd:35:f8:ec:9f:83:dc:c8:d8:0c:db:7f:82:d8:
b3:17:b9:cd:91:4f:24:33:82:64:2b:6b:bb:31:03:47:ac:2f:
18:7a:39:34:36:63:b5:3b:77:c2:b9:6b:9f:cb:9f:79:56:76:
1c:a8:eb:ec:00:d0:d6:c7:e4:3c:d9:ff:21:b6:0c:57:1b:e1:
15:f0:8c:db:b5:d3:30:75:f8:17:91:2b:48:16:b4:98:ef:77:
e0:00:15:b8:e3:8c:ae:f4:e6:63:01:20:1e:80:1d:0e:67:67:
13:7c:0d:36:d2:2b:7e:d3:b1:f7:d5:bc:66:80:c0:ef:b3:bc:
73:5f:8d:e8:4d:cf:43:03:dd:9b:13:f3:56:f7:bf:eb:8d:c7:
74:9d:2c:d9:2f:9a:0a:04:15:7e:35:73:f0:23:4a:f7:ca:4c:
21:41:40:d4:29:11:74:03:a7:31:f4:74:16:f4:dc:90:73:9e:
7f:4c:f4:fb:b0:3c:35:fb:1b:b6:7b:05:96:e5:ec:c9:e3:ae:
6a:fb:0d:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:22:07 2025 by rpki-client