Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
File: ygHfSTk2pi4uyamAWo-ja4M1vVA.mft (raw, json)
Hash identifier: 13/nAMkq4ePhy45itYdQhZkj2TNMIG08J5XlLgaYgKM=
Subject key identifier: 19:6F:15:B5:70:E2:9D:96:C1:05:20:19:77:DD:13:3B:4A:F4:7A:E9
Authority key identifier: CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
Certificate issuer: /CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Certificate serial: 0198D77376025079C4CD7ECB336C33CA668B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
Manifest number: 07D8
Signing time: Sat 23 Aug 2025 15:02:04 +0000
Manifest this update: Sat 23 Aug 2025 15:02:04 +0000
Manifest next update: Sun 24 Aug 2025 15:02:04 +0000
Files and hashes: 1: VJejrkbQcGz8ZtoJmN8x1bw4bkc.roa (hash: fTHkpU+4ZrTAo/sH1aFITBDz8Ocuvc9wBymMbgUJLms=)
2: ygHfSTk2pi4uyamAWo-ja4M1vVA.crl (hash: A2jbuPpvb8/WotM/VVwhOnAuTyy/uHkibvIs/6lSV8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:76:02:50:79:c4:cd:7e:cb:33:6c:33:ca:66:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Validity
Not Before: Aug 23 15:02:04 2025 GMT
Not After : Aug 24 15:02:04 2025 GMT
Subject: CN=196f15b570e29d96c105201977dd133b4af47ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a4:37:5b:5a:07:e1:ff:ec:49:05:d3:2f:86:
55:fc:30:85:ec:ff:7e:93:52:fb:42:f1:62:8c:80:
ea:8f:0c:45:37:35:fd:57:c1:23:f8:cf:ff:83:b4:
d6:ec:e1:cd:9a:ec:64:99:dd:8f:24:8e:18:b1:66:
18:ed:74:9b:52:41:19:db:24:23:22:f7:cd:3b:d8:
7a:2f:da:99:6e:f8:5f:24:e0:2d:af:9c:da:ed:39:
e3:da:be:ed:50:0f:50:c1:be:67:c6:ec:07:70:5f:
9e:0a:4f:78:40:6c:ff:b6:bb:92:9b:57:f8:39:be:
b8:57:ef:9d:ea:f4:b4:d0:96:0f:f6:c8:59:ce:5f:
9c:05:ff:f0:d2:a8:26:70:b5:16:79:cc:f5:ec:79:
90:6d:07:af:36:bc:57:81:15:13:80:82:5c:da:45:
66:2b:85:86:41:b6:b3:9e:76:0b:bc:14:ce:2a:38:
60:6f:90:ea:64:3d:ce:5f:91:ec:25:14:27:6a:fb:
15:03:36:39:04:92:7e:70:c8:c4:d6:85:88:4a:02:
7f:11:60:af:4f:97:1a:00:a2:28:7d:7c:da:89:2d:
97:ab:6d:f1:03:8b:29:1b:72:20:b2:fb:cd:a9:15:
77:b6:1c:7d:32:cc:4e:63:b2:05:cd:f0:2b:34:a3:
73:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:6F:15:B5:70:E2:9D:96:C1:05:20:19:77:DD:13:3B:4A:F4:7A:E9
X509v3 Authority Key Identifier:
keyid:CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:90:c9:5d:16:da:5e:cf:3a:45:42:2d:71:81:4a:8e:50:57:
bd:6c:8b:e3:4b:27:ea:aa:36:f6:48:c1:03:0a:6b:0b:d3:03:
87:3f:78:6a:1a:62:49:35:c8:ca:0a:80:23:2c:bc:d1:c6:f8:
ed:24:a7:95:8a:8e:2a:35:3d:ba:ef:fe:81:04:68:22:b0:a1:
32:50:ca:f6:22:55:53:84:d3:64:d4:fd:10:c2:3a:9a:8d:07:
02:f8:f5:88:d7:72:f7:65:23:4c:47:1d:d9:7a:a9:09:b3:a7:
f5:0e:00:dc:e8:28:53:d4:55:fe:7b:34:07:b4:18:f5:a1:a2:
08:35:db:a3:db:fe:89:7d:ca:18:1a:c7:65:ab:1e:9c:2e:fd:
57:c8:40:f6:9d:d3:d8:d0:c9:cc:75:b7:cd:6b:fd:46:da:4b:
5b:1a:90:4a:ab:ff:23:b7:a4:f0:c9:b7:fa:63:49:a8:04:eb:
a4:e5:0d:fb:90:47:44:e3:51:16:68:3b:db:52:5e:7c:79:f4:
d5:8e:9f:7f:9c:08:25:b2:4c:a7:0d:94:57:4c:1c:e3:7a:31:
1e:cc:94:83:79:6d:df:e9:2d:d2:4d:c2:21:5f:de:d8:ab:60:
15:e1:fd:36:13:c9:15:01:53:e3:2a:83:1d:a6:67:90:85:0d:
16:c4:a8:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:44:04 2025 by rpki-client