Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: 6AwI3jKN84fNNGJMCY7F/57/oEBqwDgjEs3k65/qyLY=
Subject key identifier: B4:90:D0:0E:08:B8:A8:94:A7:59:4C:E4:0F:BA:E0:AF:EF:36:A1:17
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 0198D583B3E7C47754A3E7F339987D4CF1AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 04A0
Signing time: Sat 23 Aug 2025 06:00:34 +0000
Manifest this update: Sat 23 Aug 2025 06:00:34 +0000
Manifest next update: Sun 24 Aug 2025 06:00:34 +0000
Files and hashes: 1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=)
2: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: RB2vgTTm1gF/D0lD5GI/KLJ5azEkaJBxdqBPTjQoBwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:b3:e7:c4:77:54:a3:e7:f3:39:98:7d:4c:f1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: Aug 23 06:00:34 2025 GMT
Not After : Aug 24 06:00:34 2025 GMT
Subject: CN=b490d00e08b8a894a7594ce40fbae0afef36a117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bd:fe:bf:46:75:eb:ca:21:b2:a8:1c:82:7d:
54:77:c1:7e:d6:ea:ca:7f:d1:72:38:c0:b2:11:50:
c3:5a:c7:3b:f2:0c:d4:03:77:6a:60:08:2c:cf:d5:
bf:98:5a:50:01:07:09:9a:e5:5e:17:77:e8:7f:88:
82:f3:86:d9:67:1f:b1:a9:0e:af:7f:ec:f4:e1:d6:
35:98:07:7a:12:9d:ba:41:ec:03:8d:5c:fe:56:f6:
56:37:bb:d2:34:6b:bf:13:a8:ea:59:09:be:36:89:
fa:bf:04:16:06:3d:1f:b6:15:7a:a0:bd:27:e6:8f:
ea:b8:0e:68:fc:8d:ae:4b:2c:8f:fb:a7:0d:40:45:
9d:03:48:a3:9d:c2:67:2b:8c:b3:01:5e:89:26:da:
3a:76:16:cc:4b:41:5d:ec:9e:cf:7e:23:5a:c1:d0:
d5:a8:9a:ec:3e:72:9c:aa:4c:fe:15:1e:12:d7:bb:
94:58:8d:19:3c:45:6a:58:68:9b:6b:6e:6a:19:1b:
0e:50:d6:61:72:0e:4c:de:08:7b:2c:f4:82:ea:56:
22:07:79:bf:06:bb:8c:51:9e:0d:37:72:7e:e9:8f:
35:f3:80:b5:48:8f:9a:c6:7a:88:b0:0a:33:7e:b2:
9a:27:06:e1:7b:cc:38:6f:da:bc:ff:4b:9e:e5:98:
4d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:90:D0:0E:08:B8:A8:94:A7:59:4C:E4:0F:BA:E0:AF:EF:36:A1:17
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:32:ea:50:7d:c3:a3:c2:e0:1a:f0:87:12:8e:36:78:8d:56:
b8:4b:00:23:bb:1a:5c:9c:6f:b5:10:42:2b:5a:43:66:2e:6d:
49:78:ce:a7:59:8e:25:fd:46:b5:af:fe:65:3d:33:97:49:ad:
f1:1b:a5:c6:35:10:fd:f8:0a:4d:14:cd:7f:f4:c4:fa:4a:00:
b9:d7:c2:73:b7:32:59:7f:cc:b1:7e:4e:1b:3f:be:76:a1:d6:
ab:00:6f:ba:1b:c4:9c:58:cf:0d:9f:5b:cc:1a:fb:c9:b1:54:
d7:43:63:a1:fa:90:b7:bb:38:d5:da:8b:dd:d1:ce:18:9b:14:
9e:d8:20:b3:5f:94:0d:d5:d8:2c:b4:d9:f4:59:6a:bd:a5:0b:
18:3b:6c:4b:1e:90:ef:67:64:a8:37:73:27:73:23:01:ba:9b:
fe:2a:a2:30:6d:a6:46:08:c8:4c:a0:08:15:dc:1a:62:a8:8c:
52:f2:62:fc:df:93:b5:b0:88:cc:5e:d3:f2:bb:ac:98:db:1b:
82:9d:e0:ac:73:4b:92:3c:95:24:ba:d9:1b:8d:58:0f:91:1e:
7f:31:a5:5e:1f:13:fc:d6:eb:06:a0:00:52:97:f8:2c:69:2a:
02:76:8c:8a:23:0b:00:ee:52:9b:14:d4:86:75:f2:8e:e6:e6:
59:e1:de:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:37:47 2025 by rpki-client