Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
File: YAG5U8a-H5GDHWilwBFcIODNf5o.mft (raw, json)
Hash identifier: E3jjhNE9QfKqA+xzHAYEUby+mURbpHs7N5UU5Kgh99M=
Subject key identifier: 77:F9:D8:99:EC:8E:70:52:0D:DD:01:C5:DE:CE:73:59:8E:E2:A2:E2
Authority key identifier: 60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
Certificate issuer: /CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Certificate serial: 0198733D641134D1D1FF5296BD5E40A8629C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
Manifest number: 05FA
Signing time: Mon 04 Aug 2025 04:00:59 +0000
Manifest this update: Mon 04 Aug 2025 04:00:59 +0000
Manifest next update: Tue 05 Aug 2025 04:00:59 +0000
Files and hashes: 1: QQlxlfhA9BwLpxAQMkShfHqNuQ8.roa (hash: J1jtN5BQZROl/8dEYO5qeCL3b90fBYd6l0TNzemkVxs=)
2: YAG5U8a-H5GDHWilwBFcIODNf5o.crl (hash: FF6m2022+TD2ed/5ODrLWN+Y9yRl6JI9TNd9R06orHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:64:11:34:d1:d1:ff:52:96:bd:5e:40:a8:62:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Validity
Not Before: Aug 4 04:00:59 2025 GMT
Not After : Aug 5 04:00:59 2025 GMT
Subject: CN=77f9d899ec8e70520ddd01c5dece73598ee2a2e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fe:ec:77:91:af:58:4e:04:9b:24:d6:8c:94:
8c:8a:ea:4a:21:de:36:24:7e:1a:5c:7b:15:8d:38:
ba:d2:f8:78:c6:eb:33:e1:25:1d:33:14:e9:5c:0d:
c6:00:47:a8:26:c7:43:d6:36:61:73:5d:dd:de:b9:
3f:63:72:24:e9:f4:e5:34:57:2b:b2:46:b3:91:e4:
c8:52:64:d4:94:80:58:f8:d5:e7:35:43:b6:d4:53:
51:76:c1:22:6b:e4:a8:df:53:bb:41:c6:3c:8a:76:
49:f3:45:12:78:50:a7:6e:a2:cb:84:f9:5a:dc:5b:
97:c3:51:24:16:09:d9:ce:a5:6f:c2:fe:f5:31:b5:
b4:7f:4e:a0:fc:04:30:cc:67:ef:df:4b:3d:c4:bd:
98:27:96:12:86:c3:f7:2d:a6:fc:64:ab:0c:89:7d:
14:a2:8d:30:3a:51:c4:3b:8a:bb:d6:7d:cb:67:9b:
51:04:e5:29:23:14:ba:1b:3d:77:75:bb:80:fc:c0:
a6:24:7e:90:d0:ef:66:54:b4:2c:74:d6:3d:60:f6:
b8:9e:4d:4e:cf:5a:4b:de:47:80:13:b8:b3:b7:ca:
ac:fe:9c:ba:4c:f9:70:2e:bd:b9:73:e9:31:b4:59:
fb:bd:2a:2f:34:d0:97:c6:d3:74:a7:e7:6e:9a:47:
ae:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F9:D8:99:EC:8E:70:52:0D:DD:01:C5:DE:CE:73:59:8E:E2:A2:E2
X509v3 Authority Key Identifier:
keyid:60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:18:17:ba:6a:af:b6:c6:64:a2:67:8b:b9:8e:c1:4a:37:fa:
74:da:72:87:c2:a0:09:b3:30:4e:0b:6c:d5:48:82:6a:ca:37:
95:8c:5d:44:b5:c8:5c:15:b4:46:53:76:9e:9c:e6:43:93:5f:
35:02:3e:95:d9:d4:a9:ac:5f:79:b0:0a:7e:1f:70:d7:3a:21:
0b:d9:98:e4:5b:f5:77:4a:2d:10:50:62:bf:66:f4:dc:08:ca:
8c:26:78:36:8f:12:72:80:9d:86:0c:35:49:c7:d8:9d:d6:24:
08:7e:39:02:f3:70:cb:99:bf:ee:0f:5b:8d:cd:11:07:f3:5d:
4d:6d:80:92:5f:d2:bd:eb:c8:c0:8a:3c:1c:1f:92:7e:7c:91:
25:d3:6d:a2:f6:41:dd:9e:a3:ca:32:d1:2f:25:b7:5d:ec:a5:
84:6a:dc:a5:e4:1a:e5:91:ca:ce:8a:22:21:9b:12:99:18:58:
59:ef:1a:1c:e6:5f:b2:d4:5b:c3:44:0f:e2:d8:75:c8:67:ec:
b9:26:11:10:29:a4:d3:c2:b8:09:ff:c4:be:90:84:ae:ed:d4:
dc:18:9f:bb:27:3c:18:5f:2f:ef:25:cf:21:bc:24:6b:5c:a0:
6c:61:e6:39:d8:ca:c4:37:58:34:98:11:36:86:f1:39:58:78:
cd:ce:0f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:16:42 2025 by rpki-client