Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
File: yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft (raw, json)
Hash identifier: RCnCp3f/uUpEMIbpBdDlAv6wr9UAc+EsOZStkWe7dko=
Subject key identifier: A7:A9:44:19:9B:41:6F:C3:D7:35:52:1A:63:15:9E:5E:29:59:2D:C2
Authority key identifier: C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A
Certificate issuer: /CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a
Certificate serial: 0198D4E0D87C7D1BA482D67DA7529C15DA92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
Manifest number: 0DF6
Signing time: Sat 23 Aug 2025 03:02:41 +0000
Manifest this update: Sat 23 Aug 2025 03:02:41 +0000
Manifest next update: Sun 24 Aug 2025 03:02:41 +0000
Files and hashes: 1: n0pJCaUiRCl5Ps5_Vu5R9Y3I9qU.roa (hash: yrWbMC7j+dM+coJf76N3ZfAw2TV7juT6B31o0/J59Ds=)
2: yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl (hash: FP7zUTxox5y6BtGntTl1TdQf6FhC7NJDwRgXb8je5ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:d8:7c:7d:1b:a4:82:d6:7d:a7:52:9c:15:da:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a
Validity
Not Before: Aug 23 03:02:41 2025 GMT
Not After : Aug 24 03:02:41 2025 GMT
Subject: CN=a7a944199b416fc3d735521a63159e5e29592dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ac:77:9a:08:89:bb:7e:98:d4:e7:72:be:66:
f5:05:a5:95:c2:00:0a:c2:dd:42:5f:79:a0:f4:6f:
77:d3:f0:1b:92:7c:3e:bf:58:6d:57:6b:6f:e8:6b:
cc:fb:2b:5d:ad:91:27:c2:fc:8e:e6:86:a8:5c:91:
6e:52:6c:e9:aa:a2:c7:fa:a1:24:96:31:ba:ed:6e:
02:91:1f:d6:5f:d8:ff:ff:ec:8f:0d:7b:e7:cf:5f:
6c:51:5a:63:fc:15:c4:55:36:d2:df:a5:44:f5:8f:
03:da:db:a4:5d:c4:73:55:df:51:24:63:9d:80:05:
3b:8c:1c:fb:c0:e1:22:24:95:ff:f7:f5:d7:8f:44:
53:13:41:ee:2a:54:df:34:6e:56:73:96:54:db:2a:
83:83:80:46:5c:a7:23:3f:ef:64:93:f0:97:44:69:
d8:8b:48:b9:2e:72:79:b9:b2:a7:f2:3f:b1:dc:9d:
ff:80:25:f8:97:3f:aa:f5:20:1d:5b:98:8e:cc:35:
4d:de:39:7b:76:66:22:64:e6:5e:7b:63:14:48:b1:
bb:d2:15:b7:09:7a:d5:b4:8b:db:e0:ed:63:77:63:
52:9b:f5:8a:0a:77:2d:26:d2:58:83:a8:2a:4f:50:
c8:1c:93:63:d7:de:d3:35:8b:51:63:c9:c2:7c:2f:
60:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:A9:44:19:9B:41:6F:C3:D7:35:52:1A:63:15:9E:5E:29:59:2D:C2
X509v3 Authority Key Identifier:
keyid:C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:df:13:74:da:f9:9d:3b:a1:6c:20:49:4a:95:fe:0d:54:f1:
e5:95:0e:2e:51:00:bd:b5:a2:69:0f:b9:e1:93:b9:34:0f:c8:
b3:d7:0e:0c:83:14:14:fb:59:a9:bd:6f:1a:c2:0b:a6:20:8f:
19:9b:39:b5:ae:27:df:3f:7a:11:0c:ae:c3:ef:7f:fb:6e:4c:
de:46:52:62:39:03:43:3e:f6:86:ff:50:ef:85:57:d6:1f:5e:
b9:87:5d:c2:ea:e1:fa:f6:28:e1:b1:97:30:ce:66:79:4e:1c:
8c:d1:5b:d7:58:51:82:b5:6c:f5:9e:52:59:48:fc:21:7f:fd:
07:b6:69:63:07:f9:25:45:8b:71:e5:b7:99:51:77:d8:3d:a5:
fc:4d:24:8b:56:8d:c0:94:65:c7:37:70:50:5b:98:8b:60:21:
70:28:10:9e:b5:84:13:c2:36:67:37:d1:89:d8:05:a1:da:71:
6e:87:9f:ff:56:05:be:4c:20:3a:61:f6:37:bf:14:e3:31:3e:
42:b0:bd:f6:15:0c:98:ed:ca:8d:7e:bd:d9:01:43:74:ef:c7:
b4:fb:45:8d:e2:06:21:fc:f0:45:75:0c:92:0f:a3:fe:0d:bd:
05:cc:c4:43:ba:7e:ef:cc:28:25:21:b9:f2:39:63:9c:44:76:
70:2e:f4:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:46:12 2025 by rpki-client