Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft
File: yoaOeySqNaTdEKyVmfBkqpadAx0.mft (raw, json)
Hash identifier: P3ZlSSZiNctf6VNdw11H769wDL1B3sDo16AQ46F+6d4=
Subject key identifier: DE:34:57:45:A8:B8:E1:01:CE:4C:14:F1:98:3D:00:63:A4:27:F2:B5
Authority key identifier: CA:86:8E:7B:24:AA:35:A4:DD:10:AC:95:99:F0:64:AA:96:9D:03:1D
Certificate issuer: /CN=ca868e7b24aa35a4dd10ac9599f064aa969d031d
Certificate serial: 0198D583F677B1253C7E2C80136817AB1F5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoaOeySqNaTdEKyVmfBkqpadAx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft
Manifest number: 02BB
Signing time: Sat 23 Aug 2025 06:00:51 +0000
Manifest this update: Sat 23 Aug 2025 06:00:51 +0000
Manifest next update: Sun 24 Aug 2025 06:00:51 +0000
Files and hashes: 1: yoaOeySqNaTdEKyVmfBkqpadAx0.crl (hash: B7TIxvYs7xkNl7JDXaewz1j6EtEijxMGpxqc/NflT1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yoaOeySqNaTdEKyVmfBkqpadAx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:f6:77:b1:25:3c:7e:2c:80:13:68:17:ab:1f:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca868e7b24aa35a4dd10ac9599f064aa969d031d
Validity
Not Before: Aug 23 06:00:51 2025 GMT
Not After : Aug 24 06:00:51 2025 GMT
Subject: CN=de345745a8b8e101ce4c14f1983d0063a427f2b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:80:b5:5f:9a:f6:3e:f8:b7:77:06:e4:53:95:
2e:9f:88:bb:7c:ea:92:5b:49:c3:2c:6b:8b:c4:e8:
52:12:b3:30:dc:0a:48:b0:4f:08:c3:cd:58:26:8a:
d1:f6:5e:61:1a:bc:3d:bd:30:d0:fd:c3:52:b1:99:
f2:90:67:38:ec:99:12:e0:74:5b:dd:7e:78:67:0b:
4d:b5:95:9d:f7:46:da:a5:ca:30:7c:5b:ad:ba:df:
dd:d2:5a:97:f6:1f:1d:99:05:46:1a:0e:dd:f8:7a:
35:60:24:ca:37:a8:c1:72:2d:e8:9c:e3:2c:52:93:
88:68:f3:c5:9c:69:86:43:3d:48:9e:72:16:b4:8e:
43:f7:da:34:1f:36:37:a5:cb:1a:ac:6f:ae:be:f5:
f8:bb:72:34:80:33:f4:cd:2d:54:80:43:a2:fd:70:
99:5d:8d:da:2d:cc:5f:92:16:6b:7b:ec:e2:db:c8:
78:df:ff:84:d4:04:fa:20:ba:8f:f0:1f:60:c8:0d:
c1:64:c9:fd:8f:01:22:9f:b2:ab:0c:c1:c1:a7:e0:
b5:26:bf:74:73:e5:c9:25:c9:c8:fd:b9:da:06:09:
3a:8f:fb:d4:87:9b:69:7c:16:6a:28:6c:af:58:88:
6d:e5:95:c6:b0:39:58:ca:a7:cf:49:d7:9a:49:d4:
ad:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:34:57:45:A8:B8:E1:01:CE:4C:14:F1:98:3D:00:63:A4:27:F2:B5
X509v3 Authority Key Identifier:
keyid:CA:86:8E:7B:24:AA:35:A4:DD:10:AC:95:99:F0:64:AA:96:9D:03:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoaOeySqNaTdEKyVmfBkqpadAx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:fd:00:3b:3a:f2:60:97:8a:18:67:b2:82:43:42:41:08:30:
fd:d8:26:29:98:11:41:b6:59:da:a0:4c:6a:ed:73:9b:55:4e:
a3:76:89:1e:c3:fc:4a:38:87:da:52:86:71:7c:4c:23:de:f1:
3f:79:21:29:75:12:11:6d:f1:1b:83:37:4f:01:45:cb:1c:dc:
a6:e6:a0:41:fa:27:16:ff:67:b8:f1:23:a5:d5:c4:c5:21:3a:
ad:44:82:95:92:bb:19:80:a2:18:c1:3f:d4:4a:5b:58:09:59:
00:6c:2d:da:95:c2:9d:cc:e9:a5:65:6f:a6:5f:10:a6:3e:49:
13:73:ca:ef:76:32:45:9f:3a:c6:77:3b:76:14:52:cc:b4:ad:
e9:77:9a:f0:e2:d9:77:ea:3c:bd:bb:5d:c8:9b:bc:9f:58:5c:
3f:24:0b:cb:a1:a3:fe:9f:90:e4:af:e8:6c:f1:83:85:af:f6:
59:cc:8a:e9:b1:17:91:a3:62:95:0e:0d:78:11:f8:06:cf:58:
97:01:36:07:4f:af:c0:e1:27:35:1b:08:62:a3:c6:f3:a4:4a:
f8:07:2e:eb:3d:6d:89:d6:d2:e6:15:58:14:61:5f:32:3a:dc:
92:0f:c2:15:02:8d:6e:27:0e:4e:f9:ec:09:04:18:88:84:4c:
e3:23:78:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:52 2025 by rpki-client