Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
File: yRggtQAH5BxT3WAps3lU01cvTCk.mft (raw, json)
Hash identifier: 0B9FE/FfuBDC5J9Sb9DS/wQUQ5Ty5WfoUlesF30CcPE=
Subject key identifier: 5E:4A:14:0B:0E:9F:10:24:B1:23:7E:40:2B:A2:6E:6F:63:A2:FC:6D
Authority key identifier: C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
Certificate issuer: /CN=c91820b50007e41c53dd6029b37954d3572f4c29
Certificate serial: 0198D515B22306380E2C8FC4EC3E3324F8EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
Manifest number: 118D
Signing time: Sat 23 Aug 2025 04:00:25 +0000
Manifest this update: Sat 23 Aug 2025 04:00:25 +0000
Manifest next update: Sun 24 Aug 2025 04:00:25 +0000
Files and hashes: 1: juTNVsKtR118cxI6QcWd767caRM.roa (hash: MCsaWupCkvlIsE0i3wi2ave3G1GEJt2KTaWMIAFFXxI=)
2: yRggtQAH5BxT3WAps3lU01cvTCk.crl (hash: gMMp0u7JQu+reaYAqUOprqj6LPoZoGF0imCaisMit3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:b2:23:06:38:0e:2c:8f:c4:ec:3e:33:24:f8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91820b50007e41c53dd6029b37954d3572f4c29
Validity
Not Before: Aug 23 04:00:25 2025 GMT
Not After : Aug 24 04:00:25 2025 GMT
Subject: CN=5e4a140b0e9f1024b1237e402ba26e6f63a2fc6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:26:60:b7:6b:1b:79:60:9c:45:3e:27:d1:f9:
41:4c:fd:21:87:3d:7f:75:30:0e:58:aa:11:98:1e:
9e:7d:ee:4c:5d:f4:4f:e2:62:44:a0:eb:e9:ba:b2:
70:cb:81:e9:9b:68:a2:cd:fb:2d:4b:05:d2:19:db:
a0:b1:de:86:6c:1e:e1:b9:50:8d:19:3b:89:e2:27:
44:76:6f:90:b5:15:f1:09:7a:9f:7c:ce:67:34:ca:
74:61:8e:ce:6e:62:40:99:2c:99:20:c0:8a:ea:3c:
85:b1:6d:52:cb:93:23:28:1e:3c:05:39:0a:21:d0:
79:88:2a:90:c7:c5:7d:15:f7:8b:de:88:43:c9:9f:
59:76:f7:58:46:57:65:1a:8e:bf:5f:65:5f:72:00:
a4:6c:93:3c:fb:0c:40:d5:9f:7c:51:b5:de:ee:f4:
af:84:c6:2c:d1:b4:c3:c7:c8:7e:5f:dd:fd:f5:54:
89:a9:46:59:e0:04:58:48:a0:1b:c0:fd:c4:2a:7c:
1b:c2:59:eb:ef:4a:ef:33:55:c0:54:f9:67:ea:f7:
9a:a6:fc:77:80:a5:1e:f9:fb:c8:3d:b5:78:eb:87:
54:e8:c7:8b:de:e0:01:92:e4:f7:bb:ac:d0:9e:78:
16:bc:55:1f:b2:01:af:57:b7:0e:28:4f:3c:12:13:
0e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:4A:14:0B:0E:9F:10:24:B1:23:7E:40:2B:A2:6E:6F:63:A2:FC:6D
X509v3 Authority Key Identifier:
keyid:C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:cc:98:ad:63:b9:16:cd:dc:86:03:01:cf:4e:3d:73:0d:bf:
eb:8a:d6:0d:8d:e0:16:63:46:43:78:cd:08:84:0d:3b:52:bb:
71:9f:5a:96:68:05:6a:99:16:12:1b:08:c9:25:c7:ab:61:16:
05:0a:d4:0c:63:e6:e9:60:2a:31:cf:04:02:7b:6b:4b:2b:7a:
40:80:3d:0e:fb:8b:c8:f5:29:7d:84:93:58:c8:b7:1e:9f:3d:
68:bb:f7:7d:a6:3b:66:fc:03:7f:de:e5:16:ec:d8:0c:88:86:
ef:67:cf:20:42:e0:de:45:30:1d:dd:76:b7:03:33:70:d9:a8:
e4:3c:bf:10:ea:03:4e:23:3f:19:c7:f5:7a:46:c9:a2:82:25:
c8:d7:a6:dd:47:d8:42:12:30:56:1d:9b:b3:43:18:7f:85:c5:
4a:ce:2b:5f:f9:da:41:6f:92:97:1d:13:73:48:34:30:14:f8:
95:f2:fb:68:fc:52:d3:9c:05:b3:a2:4b:c2:c7:b8:8b:98:00:
eb:30:f8:4a:04:de:3a:1c:75:24:db:09:ee:92:b2:b1:cc:eb:
65:09:40:f5:5a:4b:8d:f7:4c:50:be:cb:6f:4d:cb:aa:ed:21:
3d:c7:04:d4:98:ed:bf:04:c2:9a:0d:b8:af:3a:40:9f:80:51:
7a:98:4c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:46:22 2025 by rpki-client