Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.mft
File: y3yVUPThoer5UHL7G5q7JpVNJj0.mft (raw, json)
Hash identifier: xyW4nP3IgcL3Eroyr2L7IQCnDO06ofPSAsosUD9AVWo=
Subject key identifier: 58:3F:D4:C2:75:87:D7:B6:00:25:53:68:E9:78:2D:4F:46:1B:B1:6B
Authority key identifier: CB:7C:95:50:F4:E1:A1:EA:F9:50:72:FB:1B:9A:BB:26:95:4D:26:3D
Certificate issuer: /CN=cb7c9550f4e1a1eaf95072fb1b9abb26954d263d
Certificate serial: 01988BEA6DDCC01D245B826712FA447B9D91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y3yVUPThoer5UHL7G5q7JpVNJj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.mft
Manifest number: 0CCB
Signing time: Fri 08 Aug 2025 23:00:53 +0000
Manifest this update: Fri 08 Aug 2025 23:00:53 +0000
Manifest next update: Sat 09 Aug 2025 23:00:53 +0000
Files and hashes: 1: y3yVUPThoer5UHL7G5q7JpVNJj0.crl (hash: r4sKMP4xcB/KvLKq6uDFjlK5pb/FO+I9tV71MbuGhnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y3yVUPThoer5UHL7G5q7JpVNJj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:6d:dc:c0:1d:24:5b:82:67:12:fa:44:7b:9d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7c9550f4e1a1eaf95072fb1b9abb26954d263d
Validity
Not Before: Aug 8 23:00:53 2025 GMT
Not After : Aug 9 23:00:53 2025 GMT
Subject: CN=583fd4c27587d7b600255368e9782d4f461bb16b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1b:05:0c:e4:b9:13:f7:7f:9d:e5:3e:5a:ea:
44:ed:d8:4b:ec:5e:0c:07:e4:74:0d:73:55:e4:c0:
c8:51:2e:5c:a3:04:48:be:41:11:4a:f1:5e:7f:e0:
ee:e1:0e:9c:fe:98:6b:6f:94:00:8c:6a:30:41:59:
7a:ab:de:e6:48:6d:fe:7f:55:8c:1c:f6:89:34:4d:
8c:59:e8:65:a8:a6:cb:90:43:4c:b2:2f:50:7f:a2:
9c:21:da:ea:0c:2b:85:18:93:f6:1a:5c:2a:83:17:
94:63:d2:79:03:52:87:50:1d:3b:ca:04:a1:a2:76:
dd:87:d9:a9:2a:54:78:99:72:5a:ee:7f:07:fa:7f:
14:f9:0c:a4:1c:a5:de:ab:e8:03:a0:00:90:63:e2:
82:b7:e9:4f:bb:0e:22:37:9f:7c:5b:3c:e6:a4:4b:
05:35:dc:64:94:58:8b:21:28:04:97:fe:5e:08:19:
ea:4b:da:f5:2d:0c:d3:5e:ff:ad:85:87:de:3e:8d:
ed:d7:eb:5b:64:35:df:42:cd:87:24:1f:54:3b:d1:
52:65:3f:e2:77:7f:7a:79:6b:c9:d9:6d:aa:ec:4c:
11:98:3a:8a:03:fd:03:a0:a6:65:47:64:88:ab:b4:
c8:03:34:a3:21:c8:8d:0f:e1:26:a5:b4:a4:cb:35:
c0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:3F:D4:C2:75:87:D7:B6:00:25:53:68:E9:78:2D:4F:46:1B:B1:6B
X509v3 Authority Key Identifier:
keyid:CB:7C:95:50:F4:E1:A1:EA:F9:50:72:FB:1B:9A:BB:26:95:4D:26:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y3yVUPThoer5UHL7G5q7JpVNJj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/689b19-4958-4423-85a9-9626f9f6cda2/1/y3yVUPThoer5UHL7G5q7JpVNJj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:54:fa:c8:b9:1d:8d:f4:37:b8:f2:32:a8:9d:4c:a9:cb:a2:
c6:0c:c8:54:c1:ce:07:8d:fc:4e:34:01:df:60:b0:df:ac:e3:
1c:0c:b7:9e:3f:2e:bc:18:0f:bf:fc:f8:b1:f7:fe:a3:44:29:
99:49:2c:a9:0e:75:22:d9:b4:e2:fa:80:9c:7e:83:50:99:bb:
7b:ac:3e:16:2b:58:ce:25:92:1b:cc:4a:fd:cb:23:c5:37:64:
40:56:44:01:97:1c:4a:44:13:bd:56:72:61:ea:6c:62:31:72:
c4:a1:d5:23:64:85:95:0e:aa:a3:29:f6:cc:df:14:e2:d5:3c:
92:a2:ed:4c:f3:11:0b:a5:74:2f:44:9d:56:1b:14:33:a9:f8:
73:bb:0b:37:4a:75:14:8b:8d:66:36:07:c3:13:fc:20:e8:01:
17:3d:b5:ed:4f:69:c5:9a:94:29:1d:f2:7e:7d:fe:60:d2:0a:
9b:b5:70:ec:e0:53:f8:d0:c7:46:33:26:ad:48:28:e3:42:c8:
32:92:f0:f4:de:21:6e:4c:d6:6f:28:51:f3:a9:97:fe:9e:ad:
e5:5f:25:8c:94:50:96:ab:13:87:1f:3f:0d:40:84:9e:f3:85:
d4:f5:5d:da:e7:1a:8c:46:68:f5:e9:57:92:5c:4b:82:6b:a1:
0d:b1:50:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:56 2025 by rpki-client