Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json)
Hash identifier: 4PxTy4YRMN6dAgwMtthdzQpy05F4CGhEHWA4rQlMnPM=
Subject key identifier: 9C:B6:3D:29:62:A5:50:21:68:A5:B0:99:43:36:29:53:3C:BA:2E:D5
Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Certificate serial: 0198D6CD4471F7C002AD11EFD0832A439223
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
Manifest number: 0202
Signing time: Sat 23 Aug 2025 12:00:33 +0000
Manifest this update: Sat 23 Aug 2025 12:00:33 +0000
Manifest next update: Sun 24 Aug 2025 12:00:33 +0000
Files and hashes: 1: knggMszGXslbbJ2_Oh2Jaifz1gc.roa (hash: 1NY+pqUYlKwDvhTu3JTqY8SDs7jlakZ17fJjnTdwI9Y=)
2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: PiZfm3uT0isOEJAoCxiiGeZONgjjjuDNPEGKOfS1Iw0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:44:71:f7:c0:02:ad:11:ef:d0:83:2a:43:92:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Validity
Not Before: Aug 23 12:00:33 2025 GMT
Not After : Aug 24 12:00:33 2025 GMT
Subject: CN=9cb63d2962a5502168a5b099433629533cba2ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:28:e2:05:1e:b6:20:65:cf:c4:0d:c2:ba:af:
53:32:f9:42:0e:c2:30:3a:6f:74:f2:fd:49:6f:6e:
e1:34:67:08:52:2c:44:68:bd:d7:6c:1c:0b:47:2e:
de:26:a7:68:69:f0:58:06:ad:48:2e:dc:05:f8:3e:
eb:3c:c5:07:9f:44:ba:6f:fd:71:66:a8:15:67:32:
0b:f9:61:1b:eb:d1:60:ef:91:1c:e4:5d:d9:c5:9b:
ad:75:0a:8b:a9:99:c8:7a:3e:33:2e:5b:85:06:32:
1b:4e:18:70:55:86:f7:24:84:e9:fc:ff:b4:92:f3:
10:b5:7d:17:3e:95:d5:10:4a:ea:a3:aa:07:d6:7e:
c7:05:d5:6b:f9:48:a9:d6:1c:0f:1f:86:88:18:2e:
73:6c:37:dd:02:8a:0b:1a:a6:ef:5c:cf:ab:df:83:
92:f6:cb:57:3a:7e:67:e0:f4:ee:a6:7c:fe:38:d1:
58:9b:6f:46:0b:2e:cc:4b:c8:d7:2a:67:a0:86:72:
d0:b8:1c:1f:33:58:99:c9:f5:11:46:bb:e0:30:87:
d9:2e:7b:1c:5e:25:7f:49:9c:bd:13:c8:31:1d:73:
f8:03:4e:e0:89:ac:30:e3:10:19:da:74:3d:76:13:
ef:08:35:2a:25:2d:4a:f5:28:2b:3f:ba:a7:7d:90:
02:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:B6:3D:29:62:A5:50:21:68:A5:B0:99:43:36:29:53:3C:BA:2E:D5
X509v3 Authority Key Identifier:
keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:62:c4:4a:d1:50:32:31:62:d8:0f:6e:fd:18:2b:84:d1:32:
92:ef:05:0b:3b:e0:e4:6d:05:eb:17:15:91:3f:7f:37:76:b7:
5f:69:61:1b:ea:62:b3:87:64:7a:ef:c2:34:a6:ea:2f:18:6a:
10:d3:c2:50:36:06:32:3a:03:58:c1:01:99:b4:43:66:fb:16:
5d:57:84:53:02:b6:db:f9:9f:b5:74:bc:12:fe:de:14:c1:57:
00:b3:b9:45:92:6f:d9:10:f0:05:2e:ee:df:7d:a6:cf:82:f8:
26:fe:46:7f:4a:45:4f:8a:19:49:b8:c2:1c:7e:ec:d8:c5:a4:
30:cb:08:81:27:73:48:cb:9e:2e:64:c9:6b:8f:60:3d:ea:45:
6a:09:cf:30:45:33:22:a3:f1:57:bc:fc:0e:e7:96:6c:07:01:
87:af:ac:df:57:7f:5b:a5:5b:a6:a0:91:b4:d7:be:bb:49:c7:
9c:98:9b:2f:15:87:4c:d8:10:89:95:b5:1b:9c:08:a4:44:06:
12:25:06:25:a0:15:d5:bb:c8:01:6c:33:9e:c8:eb:71:8f:ab:
31:15:19:60:2b:24:bc:8f:30:49:45:15:f8:51:8c:ef:57:80:
a2:00:58:90:95:9d:d0:84:a8:b1:ab:7b:93:36:95:7f:96:20:
69:7c:b0:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:43:34 2025 by rpki-client