Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
File: YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft (raw, json)
Hash identifier: L503yEZxAM1OX2pXZkmlWjxlcv9Byt2a8JZ+pPAXtfY=
Subject key identifier: 02:3B:C2:4F:D4:25:56:31:8B:6B:F1:8C:B2:93:16:BE:A9:86:A2:95
Authority key identifier: 61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E
Certificate issuer: /CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e
Certificate serial: 0198D54E34C9FFE8F5E006839EC61FBE210E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 05:02:08 +0000
Manifest this update: Sat 23 Aug 2025 05:02:08 +0000
Manifest next update: Sun 24 Aug 2025 05:02:08 +0000
Files and hashes: 1: YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl (hash: wqDMHI7nRJ8ITnNM4Ck2bps1DV3erKNJaz0IzCRu0+8=)
2: lpQpCVUUyuieF-my1hQ69F4PEZk.roa (hash: WA4/OyJVwgJx0ERp2sKecmZzmYmPwtki2xCkuF+SczM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:34:c9:ff:e8:f5:e0:06:83:9e:c6:1f:be:21:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e
Validity
Not Before: Aug 23 05:02:08 2025 GMT
Not After : Aug 24 05:02:08 2025 GMT
Subject: CN=023bc24fd42556318b6bf18cb29316bea986a295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fb:05:31:6c:50:0a:69:50:b7:f0:ac:73:1d:
58:45:c3:89:3b:38:03:07:2b:29:a1:e3:e9:d5:c4:
ec:f5:d3:9c:b4:5e:9d:33:36:c3:78:97:e2:37:20:
e1:62:72:b7:06:22:9f:81:b2:a0:64:8d:c9:bd:d9:
3b:21:ea:25:b3:e8:1d:fa:4d:7f:fa:5f:ed:34:4a:
eb:01:e4:8f:58:8f:b7:d5:86:56:67:c4:03:69:9f:
b9:23:6d:ef:45:4b:3a:48:5a:f4:e7:7a:ef:59:f1:
d6:0c:53:08:38:8d:97:e0:8e:ac:a1:2b:15:70:1b:
49:ad:23:d9:ee:6b:71:d3:85:e7:56:c5:f8:cc:41:
6e:0c:8e:d3:1a:a2:8a:ba:a2:90:45:18:63:15:17:
f7:f1:26:9b:83:d7:16:76:9c:68:bf:1c:f0:74:9c:
b2:41:32:41:24:b4:5d:6f:8b:68:5d:d7:3d:57:be:
ea:fa:b3:dc:f8:9f:7f:31:56:5c:f3:73:c5:c0:8c:
95:17:8a:c1:75:dc:7e:91:26:ae:9a:b2:93:51:e9:
cc:85:a3:76:da:72:d8:85:9c:9d:35:31:35:70:9d:
aa:b4:20:4e:ce:a4:a7:76:35:35:d1:31:49:50:28:
33:df:98:cc:b0:7e:1c:e0:db:c1:01:8c:82:ba:13:
c4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:3B:C2:4F:D4:25:56:31:8B:6B:F1:8C:B2:93:16:BE:A9:86:A2:95
X509v3 Authority Key Identifier:
keyid:61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:61:c1:7c:e1:f8:9f:01:3f:dc:c2:0c:61:11:1a:93:89:e7:
91:8b:05:e1:d6:89:37:56:e4:cb:dd:e7:f2:5e:9f:76:32:f9:
7a:e2:37:75:ec:8d:cf:28:d8:40:7c:66:0a:06:e5:6c:84:55:
4e:e7:bf:71:fc:c7:bc:67:7d:cc:6f:5d:4a:18:02:e1:1c:32:
47:87:5f:6f:2d:40:8f:53:8a:82:6b:61:db:ca:83:10:7d:8b:
87:93:5d:d0:4b:aa:aa:6e:09:1a:54:c7:02:a1:a0:8b:69:a8:
da:4c:6e:4a:c5:aa:61:f7:1a:e3:f2:9d:7b:58:bd:7e:36:36:
d7:f3:f7:ef:0b:fa:02:85:ba:4f:b0:48:fc:36:0e:16:cf:67:
44:b2:91:18:8c:de:c0:46:0b:b8:b1:6e:e5:14:32:e6:0e:48:
3e:73:71:49:f8:df:fd:19:a5:c0:55:c7:dd:25:ba:ae:20:c4:
9c:4c:56:36:d2:11:27:27:bb:00:fb:23:06:a5:2f:87:10:52:
a1:5b:bf:99:8b:63:8d:18:bc:2d:65:4c:33:1e:ae:18:56:da:
ff:54:80:63:4d:52:fc:b2:63:03:eb:a0:21:7e:a9:9d:27:65:
c2:36:48:00:23:cf:f5:46:58:12:76:44:13:ff:79:df:18:46:
72:cd:48:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:31:38 2025 by rpki-client