Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: BSR7XcdF6XEI3PUJr095eyNyyY9xTMCHDLuTbOqOA2o=
Subject key identifier: 14:96:B2:7D:6F:44:FE:74:A3:A5:8C:D6:37:A2:CC:B6:43:16:51:8B
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 0198D515DFAA61EC736D2E918AD6220E5F77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 066A
Signing time: Sat 23 Aug 2025 04:00:37 +0000
Manifest this update: Sat 23 Aug 2025 04:00:37 +0000
Manifest next update: Sun 24 Aug 2025 04:00:37 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: 5HAV1BVZOSF9dAWE5U6FDGjc2lU1b2qHtBXcxtFqXiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:df:aa:61:ec:73:6d:2e:91:8a:d6:22:0e:5f:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Aug 23 04:00:37 2025 GMT
Not After : Aug 24 04:00:37 2025 GMT
Subject: CN=1496b27d6f44fe74a3a58cd637a2ccb64316518b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:53:8c:31:ec:f7:fd:3f:cb:2e:1b:02:d3:36:
39:9e:38:da:6f:fa:67:03:7f:b7:5a:11:0b:c9:f4:
39:b9:e8:bd:51:f6:96:ec:fe:1d:3d:83:54:3f:6c:
0b:e7:0c:81:24:ab:e0:fa:73:a9:fb:9a:14:2e:c7:
82:49:37:a9:68:d5:bd:cd:4a:83:fa:3a:cf:09:2f:
8e:e6:01:95:16:44:cd:76:e1:41:78:0b:27:bb:f0:
8a:e9:3d:96:68:18:96:11:7f:4c:64:9e:d9:1c:5c:
02:9c:ab:ce:86:a3:05:42:db:36:97:80:20:0e:5c:
96:16:30:ea:d9:db:c0:11:4a:af:0a:e0:03:f7:88:
89:69:88:31:38:30:21:cd:e1:7f:9a:88:9f:36:06:
6e:8a:ca:55:8d:78:18:00:ea:8b:ec:41:df:09:a0:
f4:fe:e5:bf:eb:df:d5:bb:13:4b:32:02:c2:0d:5d:
b0:40:ba:b2:64:7e:f3:1c:d3:f2:08:c7:ce:d5:93:
02:ea:c0:0e:b0:fa:c6:5c:65:42:de:2a:aa:9a:26:
b5:90:ed:27:04:62:58:75:e4:90:6a:d6:36:05:75:
d8:75:ea:bf:e1:f7:29:e0:37:9b:8d:57:57:10:c1:
91:3c:5e:6e:95:9d:99:e4:47:91:50:48:00:50:5c:
10:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:96:B2:7D:6F:44:FE:74:A3:A5:8C:D6:37:A2:CC:B6:43:16:51:8B
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:5c:9e:8b:7a:23:2f:30:29:7f:a4:a1:8f:f1:df:6e:00:46:
d6:81:99:d3:6d:33:0a:5a:ae:fd:17:6f:a3:a2:a6:0e:af:44:
a0:ec:ae:b2:76:f0:c6:8c:ca:3a:24:83:26:4c:cb:46:31:c0:
c3:8b:ed:36:7a:6f:61:96:16:43:05:44:91:65:b2:75:40:bc:
35:61:6c:1a:6e:02:de:81:7b:c1:37:ee:75:ff:2b:ec:44:53:
14:d4:01:f1:c7:18:a0:2d:04:a6:d5:60:bb:ff:ba:d0:9f:93:
c7:1c:1b:4c:eb:a9:59:38:78:d1:c5:f3:7e:a5:c6:83:cc:2d:
bb:ae:84:6f:6a:79:0a:5d:5e:3b:64:e8:8f:02:4a:e2:c9:1c:
7d:bd:b2:83:60:09:84:84:9d:14:bd:56:bb:55:e2:e7:c7:3b:
6d:73:8b:0c:2d:64:34:f5:a0:5f:a9:b6:7d:61:08:65:e0:8b:
d4:70:ef:0f:bf:8f:e1:e0:b2:3e:7c:37:09:86:22:6d:66:f4:
05:9a:38:90:80:b5:41:32:c6:18:4f:78:52:91:0f:1b:15:2d:
a7:96:f8:1d:7d:75:02:64:3b:ea:b3:53:3b:6a:ea:0c:53:08:
49:cf:af:67:78:a4:ab:9a:04:63:b4:fd:d0:08:eb:39:ea:2e:
1c:be:29:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:24:45 2025 by rpki-client