Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: CKQ6rMCo8sLHFo92a73Stgl/OnBnzsK/BY7+D+pm/Yw=
Subject key identifier: 27:92:89:59:4B:4F:C8:DE:DC:69:E7:DE:73:EC:2D:0A:3B:3A:2D:AA
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 01988A69DB9E76B80E59C010222971E038D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 1623
Signing time: Fri 08 Aug 2025 16:00:49 +0000
Manifest this update: Fri 08 Aug 2025 16:00:49 +0000
Manifest next update: Sat 09 Aug 2025 16:00:49 +0000
Files and hashes: 1: NA5mgzoDK6jbbKh48XeliWtbDYM.roa (hash: 9nIV3wU01lTdftDhSQVjEb+D2h3DXok24aEDQGNAM3o=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: lirJzHkWc774vlk7r7W5FOGofULdV0msAdoxre73pBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:69:db:9e:76:b8:0e:59:c0:10:22:29:71:e0:38:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Aug 8 16:00:49 2025 GMT
Not After : Aug 9 16:00:49 2025 GMT
Subject: CN=279289594b4fc8dedc69e7de73ec2d0a3b3a2daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ba:04:a6:a5:d5:e7:a7:91:a7:30:14:dd:f6:
ed:c9:d5:b3:6b:e9:59:3f:ca:27:34:a3:10:98:a7:
54:b6:07:0c:79:f1:2f:62:e8:07:3a:c5:4b:d4:8e:
e0:1d:b0:10:54:83:af:d6:f2:44:c1:e2:fa:fc:d1:
66:b8:4b:53:cf:34:f2:a6:7f:7a:46:89:1c:cc:6c:
ca:e5:4b:91:b5:6e:e6:09:9a:6f:6e:a4:32:05:6c:
ef:5e:cd:4d:99:63:a2:6d:b0:3b:d9:9c:3f:eb:60:
49:11:c3:3f:c6:f9:4d:ad:63:ad:05:c1:f5:df:dd:
fd:81:6c:e2:12:f1:35:79:25:cc:bd:01:0e:01:27:
29:68:2b:7e:3d:cd:be:dc:0a:db:1a:9b:8d:c1:8c:
9e:41:b4:a8:84:b5:c7:5a:7e:e9:c1:ba:cc:0d:0d:
39:4e:c5:c1:8c:b6:4e:05:ce:43:cc:01:3e:8a:9e:
dd:2b:ff:e7:e7:6b:2c:34:d8:da:4f:b4:10:10:ac:
57:8e:a5:0b:e0:68:bf:7c:1a:44:fe:cd:b1:cc:25:
90:d7:40:72:12:c4:d7:4c:1c:8e:e1:a3:5c:b5:4e:
8d:01:f0:50:50:97:57:97:31:60:a2:4a:da:1b:e4:
40:f9:f1:3a:05:c9:73:d4:a4:a4:9b:4d:cb:a8:40:
f5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:92:89:59:4B:4F:C8:DE:DC:69:E7:DE:73:EC:2D:0A:3B:3A:2D:AA
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:64:f4:b6:cf:d4:88:ae:27:58:de:b2:20:99:97:a2:5c:75:
14:c5:f8:d4:2e:ff:d5:5a:3e:39:30:dd:7c:1e:9b:0c:fc:b1:
ab:53:ab:8b:f5:e8:76:a1:45:cf:24:41:df:e8:36:be:2f:52:
86:d2:93:bb:79:60:cb:81:49:3a:62:7b:00:41:b0:cf:cc:4f:
e6:4c:53:09:f6:35:6f:d5:fe:a5:35:84:7d:e7:f9:9f:14:a6:
ba:ef:1c:cf:fd:c6:43:6d:6b:93:4a:a3:43:b8:87:fa:a3:a8:
a8:44:05:91:82:80:3a:1c:20:7d:57:5d:d8:89:bf:00:a7:28:
59:ce:57:17:b4:d3:44:3f:8a:93:54:39:a3:8a:19:90:bf:d0:
c8:80:c3:48:e1:2e:39:14:72:21:7c:aa:64:b3:19:f8:b2:0b:
d0:07:50:30:eb:5a:ee:32:fc:19:d3:ae:9a:12:46:45:9c:f0:
fa:73:4e:ab:a3:7d:ed:50:ae:08:29:dc:7c:ab:fe:39:71:0c:
69:39:1f:2c:88:95:e8:db:7d:ec:53:af:dd:76:00:c2:d9:23:
99:01:57:f5:ef:ec:f0:fd:11:88:7e:ea:b4:d2:18:eb:d4:9c:
33:62:dc:e4:b9:cb:e7:a8:22:b6:89:21:4b:d5:6b:90:a6:34:
42:e2:c5:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:28 2025 by rpki-client