
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
File: yAYJ8hhRvff3TtGPDwnfku23U1U.mft (raw, json)
Hash identifier: yuk1EQLDxhn5eGpUqO9jV/tGyCSLC2BhtRupjJv9yx8=
Subject key identifier: E1:EA:E0:5D:31:3A:18:F2:26:E1:77:A4:07:62:B9:9E:20:46:78:9D
Authority key identifier: C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
Certificate issuer: /CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Certificate serial: 01988B7C5E44978262A2372B454C22567027
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
Manifest number: 0DE8
Signing time: Fri 08 Aug 2025 21:00:40 +0000
Manifest this update: Fri 08 Aug 2025 21:00:40 +0000
Manifest next update: Sat 09 Aug 2025 21:00:40 +0000
Files and hashes: 1: Wg-bSrUatmukyH3xDDiSbozsSDE.roa (hash: +C5Ooc81ApTJACiPZcILtsd+XtVBtietyO7rZMjbj2I=)
2: yAYJ8hhRvff3TtGPDwnfku23U1U.crl (hash: NABouLMsTwGG4KtJnQ+EtijxbKZexsiXv0h7Ii15TtY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7c:5e:44:97:82:62:a2:37:2b:45:4c:22:56:70:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Validity
Not Before: Aug 8 21:00:40 2025 GMT
Not After : Aug 9 21:00:40 2025 GMT
Subject: CN=e1eae05d313a18f226e177a40762b99e2046789d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:94:c3:3e:00:ae:9e:4a:4b:79:21:80:c2:25:
a0:c2:24:8c:5b:7f:ee:68:ca:af:e9:b0:8c:5b:80:
9a:5b:2d:68:6f:11:56:91:92:7e:e9:18:c0:6b:8a:
12:b1:c0:52:70:ce:cb:28:10:15:3a:90:cc:97:d6:
e7:af:6f:8b:a1:72:ca:8e:b5:dc:c2:ca:de:98:af:
9c:57:1d:18:89:0f:81:08:f7:9d:3f:bd:37:79:66:
9d:6f:89:a4:aa:dd:d6:ba:61:eb:8a:8b:83:3b:84:
3b:ae:e3:9f:c3:2d:63:55:73:4f:c8:0f:db:98:86:
ff:50:1c:47:ae:5a:cb:0b:0f:53:27:2b:56:af:ec:
39:b4:48:0e:05:b7:5d:c2:bb:7e:42:f7:6a:99:57:
47:c9:22:2a:0b:0a:15:be:57:08:b0:b9:1f:1d:38:
9b:a7:70:46:64:a2:12:4a:e8:08:06:d1:c3:30:fe:
4c:e3:66:5e:e9:2e:ea:25:d2:2d:76:80:4c:4a:4f:
72:9d:63:e8:b4:ad:96:33:40:8e:28:30:98:01:9a:
79:69:bf:75:ac:62:7f:2f:40:bf:7f:ca:0e:b0:24:
c6:f7:5b:4b:d6:9f:8d:ac:8f:10:36:86:8f:24:7c:
9b:ec:f2:10:da:2d:7e:d1:8b:bb:b0:82:c0:d5:c9:
ae:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EA:E0:5D:31:3A:18:F2:26:E1:77:A4:07:62:B9:9E:20:46:78:9D
X509v3 Authority Key Identifier:
keyid:C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:5a:de:a9:6c:ec:3f:3d:e2:13:fe:91:fd:d1:a3:9e:5b:cb:
bf:3b:eb:30:4b:f3:2b:55:0c:26:ac:d2:7d:26:c8:0e:1a:4a:
bc:01:21:05:f4:50:7d:fb:10:2b:35:66:f4:c7:be:5a:5f:67:
c4:a4:43:1e:ee:6b:99:d8:7d:41:d3:07:c1:49:3a:c5:e5:8c:
14:77:f0:f1:f4:d0:b3:57:66:ff:fb:00:21:0d:45:be:fc:90:
b6:2d:93:2f:f5:72:c4:db:3e:9b:4f:d9:cc:f6:dd:10:26:c0:
7c:a9:f6:ae:30:91:6a:32:0e:ec:ae:14:4b:86:4a:cc:33:a9:
35:15:aa:43:f1:b2:de:ea:5b:d4:55:5e:a7:9b:79:07:a0:bf:
81:77:21:9e:50:b7:08:10:7c:c8:85:25:9e:a0:d0:b6:83:1d:
0e:d2:d0:6a:73:bd:67:fa:8c:90:33:c5:e7:5f:f5:91:43:9a:
53:e4:14:55:95:f8:8f:30:2c:01:8e:3b:48:84:5d:12:10:b4:
ef:b4:0e:45:df:ce:65:b6:d5:74:39:8e:75:06:aa:6d:6c:76:
65:2f:60:8a:15:58:f6:5a:38:2f:72:26:96:14:bf:66:a7:cc:
44:59:ac:8c:93:9c:f0:08:3a:76:db:b6:94:41:f0:70:1a:4b:
c8:29:84:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:24:07 2025 by rpki-client