Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json)
Hash identifier: y02JAgnL8XTw6wgxcHM9/PEwHioYYM9hhqX+86jcjaU=
Subject key identifier: 12:47:F3:79:B3:7B:BE:8C:7B:85:26:0C:49:58:DA:48:02:B4:BD:C5
Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c
Certificate serial: 019890D9C5E7503ED3D0C3C9AFB257EACF2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
Manifest number: 10B4
Signing time: Sat 09 Aug 2025 22:00:47 +0000
Manifest this update: Sat 09 Aug 2025 22:00:47 +0000
Manifest next update: Sun 10 Aug 2025 22:00:47 +0000
Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: IcMV+f02S3JgH3Qi8wxW7X8024n4Oghwh+5mnz16Bec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 22:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:d9:c5:e7:50:3e:d3:d0:c3:c9:af:b2:57:ea:cf:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6117d6158043150b0ad224a0648df0185706019c
Validity
Not Before: Aug 9 22:00:47 2025 GMT
Not After : Aug 10 22:00:47 2025 GMT
Subject: CN=1247f379b37bbe8c7b85260c4958da4802b4bdc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fb:94:c4:51:7e:85:72:72:b3:ea:d5:c7:87:
b7:ae:52:a5:ce:c9:a3:b8:eb:65:d8:5f:a7:6b:2e:
59:7b:a6:f1:a8:ea:ff:99:44:f3:6c:4e:47:10:91:
03:89:b7:23:b8:3b:24:02:f2:5f:f2:80:af:c1:90:
17:73:c7:3a:6f:8b:62:e8:c5:65:d6:09:41:e6:6f:
57:3d:8a:11:e5:43:77:3b:9d:c4:80:13:3d:3e:76:
c5:2f:2a:c8:7c:6b:95:8f:71:b1:b0:f6:db:85:90:
5d:8c:fe:35:2f:41:6f:15:72:85:17:06:1a:72:a2:
9b:54:94:90:19:a3:c3:89:b7:82:db:b2:11:17:68:
b6:14:37:58:73:e9:9b:79:6d:5d:52:d5:21:6a:8f:
6f:fd:07:7b:ef:a2:75:a3:60:6c:f0:fe:21:db:65:
d1:4f:a0:ad:ab:08:43:62:b9:f0:3e:5c:e0:78:29:
d0:aa:4d:00:e3:82:1b:43:49:e9:d8:13:a7:7d:7d:
97:a8:ef:f8:f2:ee:89:4e:10:72:49:e3:31:fb:fd:
93:af:ea:04:f0:3b:d6:54:39:60:b5:40:83:33:df:
d8:39:30:c1:dc:b0:81:11:3e:81:c4:45:04:e6:da:
ca:d1:cd:83:9b:2b:a6:5b:35:b5:eb:9b:27:ab:89:
01:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:47:F3:79:B3:7B:BE:8C:7B:85:26:0C:49:58:DA:48:02:B4:BD:C5
X509v3 Authority Key Identifier:
keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:f9:11:8f:d7:de:94:96:3e:70:67:c0:e2:02:59:3e:2a:f6:
82:60:08:7f:80:8b:33:5f:83:ca:54:f6:8f:65:52:63:7e:eb:
bb:59:3a:7e:c4:c4:b0:09:75:64:cf:33:f8:b6:f4:4d:75:b9:
0c:4d:04:89:8f:14:ac:71:59:4a:e2:d4:a1:1a:15:f0:fe:12:
92:58:cb:4a:37:40:07:a6:c4:cc:b7:7f:56:a9:75:b1:59:1e:
35:01:db:18:0a:ce:b6:b0:29:2d:26:7a:c0:a3:8c:95:ba:8e:
fc:61:91:17:77:38:89:fa:74:82:f5:f8:b8:ae:6c:b7:65:47:
74:b5:b6:ee:01:76:92:36:93:0b:ae:a7:02:4c:ef:07:27:de:
ca:13:91:e2:8c:83:3f:b4:d9:36:57:40:51:d6:8a:8b:35:8c:
5a:9e:e1:37:38:5b:f1:e9:0c:46:71:6b:58:6d:63:60:7e:1b:
90:2b:45:25:78:56:a5:aa:70:f0:98:ba:6f:41:a3:3b:c6:f6:
9c:62:28:d1:d9:c3:68:f3:37:2d:0d:7e:50:3d:43:a1:fe:d3:
55:cd:72:9d:02:3c:e5:a8:b3:06:4b:d0:e3:fe:23:6e:86:3e:
a3:a9:bb:c4:9f:3b:0c:10:27:81:c6:df:c3:29:40:0f:b9:0b:
b5:41:24:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:37:47 2025 by rpki-client