
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
File: JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft (raw, json)
Hash identifier: cu/dFB+rzE3f7yKu638xIcdX/miW+lmng9tEHgXFBk0=
Subject key identifier: 9F:44:D6:7F:78:20:DE:22:1E:93:99:FD:BD:F9:64:B0:98:7C:E7:E0
Authority key identifier: 27:1B:98:A6:0A:92:68:20:A4:8C:B4:3A:4A:F3:08:C8:8F:F2:72:1A
Certificate issuer: /CN=271b98a60a926820a48cb43a4af308c88ff2721a
Certificate serial: 01988C58097082E438DBD359677A9FD0C898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
Manifest number: 0EE8
Signing time: Sat 09 Aug 2025 01:00:36 +0000
Manifest this update: Sat 09 Aug 2025 01:00:36 +0000
Manifest next update: Sun 10 Aug 2025 01:00:36 +0000
Files and hashes: 1: JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl (hash: gaH4mQ+CNZyHZCT4LLCo60+cInObU3IniMmRo3GX6VE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:58:09:70:82:e4:38:db:d3:59:67:7a:9f:d0:c8:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=271b98a60a926820a48cb43a4af308c88ff2721a
Validity
Not Before: Aug 9 01:00:36 2025 GMT
Not After : Aug 10 01:00:36 2025 GMT
Subject: CN=9f44d67f7820de221e9399fdbdf964b0987ce7e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a0:2c:5f:0a:0b:3c:40:08:b9:37:69:18:60:
00:9f:d0:a5:77:ef:c9:e8:b1:11:8d:07:66:09:95:
aa:d5:24:b4:eb:7a:96:a7:f1:dd:9a:de:6b:ff:c7:
2c:4b:06:f8:00:29:2a:bd:a8:e2:de:fb:8f:54:30:
d2:7c:df:d7:7a:86:1e:8b:49:82:b4:8f:e8:4f:79:
26:38:51:05:10:95:42:a8:b7:7b:9e:ca:18:88:e8:
20:40:0b:b2:42:e7:2e:98:8f:4c:e0:19:e4:51:e9:
8c:f0:88:4b:c6:f0:9f:7d:24:5e:a1:fa:97:4c:d1:
03:45:1d:1d:60:d2:74:4c:29:dd:24:f3:57:19:c6:
96:d5:b2:3a:77:1c:05:c9:3f:d0:4e:f2:98:f0:64:
b1:8e:e3:30:12:d2:9e:e7:45:ab:8b:2e:52:8b:d8:
82:da:39:dd:a8:ef:b8:50:7f:f4:ee:ad:a6:f2:1b:
65:96:d7:cd:e7:25:37:d4:60:86:23:7e:8d:d3:77:
cf:74:c8:25:81:2b:5a:12:be:ec:2d:d3:d7:a9:5a:
9c:ba:7a:ae:aa:68:88:d4:1b:bb:99:60:d6:25:6d:
9a:3b:c6:a7:a3:6f:37:3a:14:07:9f:36:77:96:5c:
65:ae:01:d4:c7:08:51:e7:e8:30:07:10:5d:05:86:
20:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:44:D6:7F:78:20:DE:22:1E:93:99:FD:BD:F9:64:B0:98:7C:E7:E0
X509v3 Authority Key Identifier:
keyid:27:1B:98:A6:0A:92:68:20:A4:8C:B4:3A:4A:F3:08:C8:8F:F2:72:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:02:0a:13:d6:40:d7:8e:62:8c:09:f3:36:2a:12:69:43:b4:
3e:b8:a2:96:00:87:be:f1:ec:54:37:3c:91:94:76:57:d0:e1:
63:89:ee:a5:4f:d1:2f:09:82:de:22:2f:b6:69:e4:5a:df:88:
68:6f:1d:a0:06:35:55:0e:39:9e:3b:a3:46:c5:c5:5f:9f:1e:
4e:54:be:0e:4b:86:31:80:f3:21:e7:29:58:b8:b4:92:58:4b:
03:46:77:16:9d:53:c3:dc:a0:61:91:3c:8f:ab:98:60:9a:c5:
30:b1:5e:32:f8:6f:5d:22:75:87:30:cf:ed:23:de:0a:0d:a4:
e5:ae:d8:d1:fd:8d:b0:99:e9:2f:44:11:ee:9b:a2:f2:dd:38:
9f:aa:6f:ca:49:9c:85:45:bd:fa:d2:46:f7:d5:d1:d8:f8:cc:
06:d1:9d:07:41:00:c2:fa:ad:79:b1:bb:02:52:b1:05:c9:b3:
6b:6f:ab:53:82:88:52:26:a9:b5:00:87:9b:fb:92:6c:97:0b:
7b:fd:a8:b9:49:7a:5c:35:ab:36:60:08:de:31:56:d2:6a:ed:
d5:1b:11:75:61:ab:79:11:aa:2d:58:40:48:80:13:63:59:8d:
fc:14:8b:40:a0:ab:b3:ad:8c:c2:70:5f:95:02:4e:e9:7d:33:
3c:d0:c4:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:41:53 2025 by rpki-client