Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
File: YgTQ-JHcR16nA-be89bq0ej3wtY.mft (raw, json)
Hash identifier: LWxm3w2KLJ8Dwf8NgEBFIBoRYXQC/Re13TDPdd10kZM=
Subject key identifier: DA:9E:56:08:25:C3:25:A5:68:51:C1:56:72:E9:35:56:10:70:F4:48
Authority key identifier: 62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6
Certificate issuer: /CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6
Certificate serial: 0198D47438BA8AE86E2B5EC5DC3A8AA9E314
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 01:04:02 +0000
Manifest this update: Sat 23 Aug 2025 01:04:02 +0000
Manifest next update: Sun 24 Aug 2025 01:04:02 +0000
Files and hashes: 1: YgTQ-JHcR16nA-be89bq0ej3wtY.crl (hash: W4DsI+mvDXMfyQ9sN11MKPm9ctBekQPwzLkPce/g+Tg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:38:ba:8a:e8:6e:2b:5e:c5:dc:3a:8a:a9:e3:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6
Validity
Not Before: Aug 23 01:04:02 2025 GMT
Not After : Aug 24 01:04:02 2025 GMT
Subject: CN=da9e560825c325a56851c15672e935561070f448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e4:d8:c6:0c:e1:a2:82:54:73:d6:87:74:d0:
4b:2c:7c:29:e3:59:90:36:41:14:26:5d:64:9b:38:
9c:ef:9c:c7:35:13:ee:bd:55:37:57:93:4f:a9:8f:
cd:53:84:db:8d:29:16:27:92:f0:2f:71:3a:c2:31:
98:e3:df:53:27:8e:3a:64:9d:bd:42:ed:1a:c3:96:
9b:38:91:ed:18:a0:58:52:c9:bb:7c:c2:6c:36:1f:
f0:c2:41:7c:02:33:cb:e6:83:c3:c3:16:fe:1d:c7:
c9:ee:0d:1c:82:19:00:ae:3d:55:8a:81:27:3c:e2:
e6:7a:60:d9:c7:12:9e:67:74:8f:6c:3b:8c:74:47:
ad:dc:c9:95:43:79:a4:a0:b5:8f:8a:de:8e:46:b5:
36:70:cb:b7:0a:29:ba:d5:20:b6:d3:01:c1:e3:34:
4e:3c:db:1b:70:24:15:47:b2:89:26:14:1f:91:92:
b9:67:7e:d7:e0:ad:f1:1b:e0:6f:9c:a4:e9:ac:64:
bd:0c:19:1a:7c:c2:aa:5a:78:5c:58:97:6f:1a:a5:
eb:ce:8a:89:0b:8d:1c:3d:4c:63:a6:ab:2f:7a:13:
7e:6a:3d:f4:22:9f:fc:82:14:35:86:0f:d6:bc:6c:
de:67:db:a4:5b:09:56:50:c1:13:ce:f3:ef:d6:e2:
90:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:9E:56:08:25:C3:25:A5:68:51:C1:56:72:E9:35:56:10:70:F4:48
X509v3 Authority Key Identifier:
keyid:62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:27:dc:12:62:75:6f:f1:de:e3:d9:06:1e:1e:58:99:bc:17:
55:ab:8f:4b:21:43:f8:0b:9a:3e:25:9d:f1:ea:d1:fd:d4:f5:
43:65:34:ff:7a:b4:e1:e6:cd:a6:65:95:67:0e:40:aa:a7:70:
bf:e4:c2:46:2e:7b:0e:a7:ae:96:67:a2:5b:ea:87:b4:9f:3b:
95:7a:07:e0:10:fc:a5:39:c3:38:dd:e4:ec:53:46:00:7b:f5:
e6:f4:b7:01:20:48:37:4f:92:c4:ad:80:6f:bf:40:8c:3d:81:
a1:70:8a:57:03:8a:e8:09:42:b8:d3:08:aa:fe:63:8e:6d:bc:
91:dd:0d:e3:c2:32:24:5c:b8:59:57:a1:53:92:f8:ca:0a:e2:
a3:3b:a0:95:13:a9:1a:f9:2a:48:66:5c:ab:83:5b:90:13:df:
42:b5:72:db:52:96:15:a4:8f:f6:06:8c:e0:9a:b4:aa:1a:b6:
43:42:30:4c:18:86:a1:80:b9:21:93:22:c1:e8:bb:14:91:20:
e2:1e:91:28:34:1b:c6:1e:fd:f5:d4:b4:d2:a7:f4:51:a1:cf:
60:02:16:f8:76:ec:c0:c3:65:6c:8f:6d:ce:7a:86:9f:89:0e:
5d:97:18:62:a1:e0:4b:0c:e6:9e:0b:79:d7:c2:14:a0:e4:46:
4b:7a:6e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:01 2025 by rpki-client