Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json)
Hash identifier: Xd+emn8d04OtWRVHbGY16ewwuS67YJLrXnaPKmmRqdc=
Subject key identifier: B8:9B:C9:78:4A:23:08:60:48:9A:90:CF:34:E4:88:C0:4C:EA:E5:73
Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Certificate serial: 0198D51607D53AE9CE8E6EF3EF9FEE1FC961
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 04:00:47 +0000
Manifest this update: Sat 23 Aug 2025 04:00:47 +0000
Manifest next update: Sun 24 Aug 2025 04:00:47 +0000
Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: pnJvQk6v7ML+qxG0oLRXOZ4QF/D3rG57dENYOLCcPc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:07:d5:3a:e9:ce:8e:6e:f3:ef:9f:ee:1f:c9:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Validity
Not Before: Aug 23 04:00:47 2025 GMT
Not After : Aug 24 04:00:47 2025 GMT
Subject: CN=b89bc9784a230860489a90cf34e488c04ceae573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7e:74:87:d4:09:c0:62:71:c2:6d:f6:88:69:
cc:19:6f:f4:04:c8:7e:c9:f3:9e:67:37:a9:bd:1a:
ba:f4:ca:33:97:7f:5b:a8:ff:a4:83:c7:69:8b:82:
9a:ba:36:a6:2d:7a:3a:4b:6c:97:6d:3a:71:c2:7a:
d7:2a:6a:03:d4:ad:b0:58:ef:1a:52:98:49:74:b4:
6c:3e:ff:2a:29:06:b2:bf:eb:1b:04:94:c2:d0:42:
e8:9c:44:08:10:d3:2b:fa:a9:81:18:5b:49:6e:c9:
34:c8:62:20:ea:db:8a:c4:47:a7:ee:ad:58:62:9f:
dd:71:8d:49:72:e5:0e:12:56:40:d2:1c:8f:4c:1f:
eb:dc:a6:14:df:0b:e5:ba:53:90:f4:01:b2:fe:6b:
1e:7e:d2:01:34:7a:9d:08:fe:fd:f6:a9:7c:35:88:
7b:ff:6e:13:b7:93:d4:d4:a8:d1:4f:6c:b2:98:07:
1e:5f:9a:5c:5e:82:0c:72:4b:20:a7:16:51:2b:ff:
a0:a2:a4:c4:fa:8a:d8:58:b6:5a:95:ac:9b:90:60:
fe:05:22:36:21:a1:d5:d8:8d:ee:2a:8a:bb:6b:48:
25:48:07:a0:6f:ec:d8:c6:55:b7:56:56:fb:c1:a3:
6e:70:8d:ae:06:40:3f:0d:33:5a:8a:9e:cc:86:a1:
34:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:9B:C9:78:4A:23:08:60:48:9A:90:CF:34:E4:88:C0:4C:EA:E5:73
X509v3 Authority Key Identifier:
keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:ce:d9:d7:b6:36:e6:08:bd:7a:5d:f6:e2:b2:c3:0c:e0:ba:
44:2b:c8:55:1c:68:09:58:f0:05:fc:79:49:35:c7:48:ee:4f:
15:98:a6:ae:c8:7d:76:99:5c:96:6e:ef:f2:5a:64:0a:89:30:
97:78:8c:39:ef:21:f3:d1:76:00:ca:a0:0f:b2:a7:4c:37:25:
d3:ff:11:72:c9:18:49:42:97:aa:a1:f8:79:f0:fa:b2:cd:09:
9a:9d:e2:35:12:eb:64:e4:5b:f8:9f:c6:fd:45:67:ed:be:24:
92:19:71:1a:97:eb:08:51:08:a3:bf:17:48:fe:da:48:5d:04:
ee:0a:b9:a8:f6:f0:da:1a:a9:a7:fb:6e:5f:16:31:ef:ba:6c:
4f:01:e8:d7:0e:10:86:17:44:12:48:17:41:5b:a0:66:cf:7c:
8b:06:bc:d4:a0:8e:11:4a:7e:00:2a:0e:02:86:99:91:9c:ab:
7d:c4:c7:20:78:5c:01:48:2b:f6:5e:d6:2a:6c:23:11:3b:4a:
db:f8:b7:56:5b:0b:fb:bd:20:b0:37:f7:01:cc:5b:81:7b:32:
c6:ef:ae:db:6c:46:83:82:28:40:5b:0c:59:38:5d:84:32:e8:
b0:f1:5d:ef:00:35:98:1d:52:df:97:5e:f9:2b:9d:1f:9f:d0:
57:7c:ab:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:56:36 2025 by rpki-client