Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: 6jNTFpLrT9wDLA1C+DSFJ/GgM6gyt55x6x9ZoisS4Do=
Subject key identifier: 72:11:73:40:5E:3D:56:3B:AE:2B:BA:EF:10:CA:D0:F1:8A:2E:54:C1
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 0198D4DFF06E51755B4291EC051C8D0D9824
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0C5A
Signing time: Sat 23 Aug 2025 03:01:42 +0000
Manifest this update: Sat 23 Aug 2025 03:01:42 +0000
Manifest next update: Sun 24 Aug 2025 03:01:42 +0000
Files and hashes: 1: 7-uxb2sVoc0kcAT2m9SP5qVnZ8E.roa (hash: acdZUKxa+ye22RHZ+hlpmz4eeOUGVIjJiD1cAB8HEbo=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: 9RBrAdgpbDoGYY77WfkzIBo34+8N+Wf2lPkLivT4YP0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:f0:6e:51:75:5b:42:91:ec:05:1c:8d:0d:98:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Aug 23 03:01:42 2025 GMT
Not After : Aug 24 03:01:42 2025 GMT
Subject: CN=721173405e3d563bae2bbaef10cad0f18a2e54c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d5:d7:c7:24:01:f0:b5:a7:1f:41:fa:bc:86:
a2:96:c9:be:16:30:7e:aa:6d:00:8a:d1:f2:ac:b1:
50:88:a5:1e:b0:29:08:ba:00:a4:73:bb:10:18:5f:
75:80:84:9e:14:d2:7e:65:02:83:19:c8:c9:50:ce:
78:91:90:e7:1b:a3:f9:67:78:f6:82:ef:75:17:23:
6e:4d:28:14:33:4a:32:aa:72:b3:45:88:09:24:9a:
0e:40:80:9a:31:4a:2e:c8:e5:fb:29:ec:c2:26:23:
26:4e:82:f4:79:9d:1b:37:f9:23:2d:da:80:53:f6:
16:ce:18:d2:df:f7:98:9b:ab:23:46:4f:10:66:b7:
e3:6a:3d:56:cb:04:24:16:40:e4:3e:b8:a0:7b:36:
b8:c9:c4:63:b7:e0:a7:26:53:05:3f:f8:04:2e:0e:
b6:3d:d5:a6:3c:1a:3d:34:37:f5:0e:25:f7:22:7c:
77:81:e3:fd:09:13:ae:5c:08:91:b4:1e:c6:9b:94:
08:08:33:54:e5:97:20:28:14:cb:73:ef:fd:c9:a9:
f9:1b:90:9e:05:bd:ba:f0:78:1f:f4:b1:f1:3e:20:
a5:9d:d5:21:45:68:eb:26:6c:4a:9c:b1:1a:60:ea:
73:f1:6c:35:e5:af:5b:6f:86:ee:41:5a:4d:47:6a:
5e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:11:73:40:5E:3D:56:3B:AE:2B:BA:EF:10:CA:D0:F1:8A:2E:54:C1
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:c7:66:0c:24:2a:f3:26:b5:fb:1d:4f:5c:88:84:ee:eb:48:
8b:dd:2a:11:c9:4f:b0:b8:d8:6b:55:63:88:49:aa:e4:04:1b:
5e:da:33:31:7d:de:9d:d5:d2:c0:24:10:2a:4a:65:3b:e4:86:
92:0f:cd:16:2e:14:f0:13:1e:83:e0:f8:8b:c7:b0:d8:dc:29:
db:83:b6:3d:ec:24:74:35:72:8a:d2:1f:26:ab:78:c7:83:e9:
72:06:ed:bc:30:bc:4a:48:15:61:1d:c4:6d:03:c1:ef:60:12:
09:52:83:0b:7c:f7:92:bd:27:40:fa:e4:ee:be:75:12:e1:5c:
65:fd:41:40:4a:af:74:6c:59:bf:68:3d:c6:d1:5b:0e:2b:d3:
19:b8:75:e2:5f:65:54:91:f3:b8:47:d7:bf:2d:08:33:13:bc:
06:2e:a1:2a:3b:d6:50:b5:a6:63:9d:2e:48:99:6e:d9:39:2f:
d2:f8:2e:52:76:ee:98:bd:66:56:86:e2:43:e5:27:05:77:5e:
47:93:d6:9f:5d:b4:19:93:7c:61:de:3f:ef:7f:a3:64:46:42:
fc:f2:90:de:dc:aa:4c:62:cb:f7:49:f7:7e:1e:e2:9d:09:72:
b3:b5:c3:c4:0b:e2:fe:fb:52:8f:5e:84:eb:9d:5b:f4:04:a0:
b6:73:78:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:24:50 2025 by rpki-client