Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
File: Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft (raw, json)
Hash identifier: FRdM0+aNf89k3Fd9xpHIYMkFlL5dQ4vqQLNAD0pG2RQ=
Subject key identifier: 52:06:4B:67:CB:F5:42:B2:1D:95:74:4D:DB:73:BC:A4:F1:D6:5D:3D
Authority key identifier: 63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
Certificate issuer: /CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Certificate serial: 0198D660BEC015782FCBBC0077199726D211
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
Manifest number: 1065
Signing time: Sat 23 Aug 2025 10:02:01 +0000
Manifest this update: Sat 23 Aug 2025 10:02:01 +0000
Manifest next update: Sun 24 Aug 2025 10:02:01 +0000
Files and hashes: 1: YFIa0scc_xVUT5FKi7LKvASoEWc.roa (hash: V1CwEQLm9iXZGzptcaHc4LFmcOryBT2Kfmx1HSv4RTc=)
2: Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl (hash: GFsvsM5iOrvH3MAmrUyqHvCp13zqEgg7mEDUt35YPTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:be:c0:15:78:2f:cb:bc:00:77:19:97:26:d2:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Validity
Not Before: Aug 23 10:02:01 2025 GMT
Not After : Aug 24 10:02:01 2025 GMT
Subject: CN=52064b67cbf542b21d95744ddb73bca4f1d65d3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c7:e0:ba:ca:1c:30:9c:0f:76:e8:99:6f:54:
cf:fa:87:2e:1a:2a:33:76:ea:96:1a:f8:0a:69:9e:
44:7e:a1:9d:82:38:18:f4:e0:38:b7:38:74:e9:1f:
19:98:2c:a2:2d:63:cc:da:ef:e3:22:ab:d8:08:51:
45:50:81:8a:57:d2:1e:c0:b8:33:95:c2:d7:64:45:
ce:9a:af:9a:b9:f0:e0:65:c5:c4:45:57:db:7f:0d:
90:84:17:5d:35:83:00:0b:ab:f4:41:0d:cd:b7:46:
d9:ab:34:99:cf:74:7a:3c:7f:44:60:a3:96:c0:0a:
97:97:86:b9:76:31:8d:13:02:f1:0a:85:ce:76:83:
52:00:0e:40:75:03:02:f4:3b:b3:d2:79:98:d0:4c:
37:26:be:fe:f3:2e:a4:fb:40:94:a7:fe:54:98:70:
a5:1a:1d:2a:80:85:7c:d4:e9:8e:9b:2a:69:93:80:
61:c6:a9:3c:15:fa:7f:41:01:a3:1d:b1:b4:5d:95:
55:a5:cd:f1:b6:87:30:9e:f1:b6:30:76:0f:70:5b:
e1:e2:5e:f9:b5:ed:85:36:bb:4d:ea:9e:d9:9d:c9:
f5:b5:67:54:81:9d:1e:4c:2d:88:61:ba:4b:1b:6c:
52:4f:60:ca:17:0c:ff:99:e1:bb:ca:7d:a4:fc:c3:
f8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:06:4B:67:CB:F5:42:B2:1D:95:74:4D:DB:73:BC:A4:F1:D6:5D:3D
X509v3 Authority Key Identifier:
keyid:63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:bd:cb:bc:3b:81:a0:fb:8f:24:11:f2:b6:99:ab:28:3c:7e:
e0:07:8e:8c:01:e2:f8:bf:2a:ca:60:23:19:d2:74:93:c4:d6:
ef:83:ef:e1:b8:69:5e:6f:c4:c2:62:db:41:2b:7a:b6:55:0f:
57:12:0e:84:8b:8f:b9:7e:a8:90:f7:4e:49:6a:a4:01:8c:b4:
f9:f4:d5:90:9a:be:eb:91:69:0b:96:2b:6c:ad:45:3e:ce:0b:
c5:d1:ea:44:c7:37:6d:1a:d9:61:ca:e7:9f:a5:01:8e:9c:20:
14:13:24:b8:b1:d2:f7:75:ff:75:4d:d5:a1:02:d9:e4:a5:ad:
a9:f5:8c:72:26:41:61:03:23:0d:39:2d:d2:0b:c2:23:5d:60:
f5:eb:7d:3c:7d:c5:e1:28:dd:88:64:9d:42:41:eb:7d:78:17:
ab:2f:50:2e:39:38:dc:74:ec:37:20:75:02:82:58:24:cb:d4:
24:50:f5:d6:9c:ca:14:a6:92:43:ae:6b:b6:b5:b3:b3:02:d6:
74:31:be:4c:26:c0:6c:d9:1a:f6:bc:bb:53:01:37:e2:cd:64:
c4:5d:48:a4:fd:73:83:1c:34:cd:c7:9f:0f:42:a9:51:90:d5:
68:3e:b5:33:7e:5e:07:54:be:19:51:9f:97:ae:0c:1f:66:15:
ce:53:a0:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:17:53 2025 by rpki-client