Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json)
Hash identifier: 98nB+qZXngnxotSueBh3NZ8IMncqsdToyBRtU+GBOo8=
Subject key identifier: 70:00:B5:1F:3F:CB:05:FA:2F:33:2A:AE:DF:D2:E6:85:27:96:FC:EC
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 01989FDEC910615C4FD9B5E50C98BE354BBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
Manifest number: 0AAF
Signing time: Tue 12 Aug 2025 20:00:34 +0000
Manifest this update: Tue 12 Aug 2025 20:00:34 +0000
Manifest next update: Wed 13 Aug 2025 20:00:34 +0000
Files and hashes: 1: DpCybAm9bBRoUpHGAuIQ86Lq5pw.roa (hash: 2p6cZB/6xzzCJ7jeUbBrD5Bf0hcHEh4tn/vPl+35cnU=)
2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: vee1x5SloR+TrObrVjwDt0N7zTyY1rc0LjWm/1Yv9rM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 20:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:de:c9:10:61:5c:4f:d9:b5:e5:0c:98:be:35:4b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Aug 12 20:00:34 2025 GMT
Not After : Aug 13 20:00:34 2025 GMT
Subject: CN=7000b51f3fcb05fa2f332aaedfd2e6852796fcec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3d:f2:7c:2c:34:ba:0f:8c:4a:7c:34:21:05:
02:52:2c:92:9e:a5:27:8b:01:ea:c8:84:3b:0c:88:
48:64:b2:60:cf:2b:e6:77:90:ca:63:6d:0d:0a:59:
4d:73:a6:95:40:b2:b3:2c:e5:a4:70:91:ac:36:f8:
28:6f:8c:5e:86:de:88:d7:1f:8b:09:62:ec:9d:a3:
cb:53:2b:f9:63:63:53:7d:25:27:58:fb:2a:2c:d4:
ee:49:5a:3d:be:78:c2:44:43:eb:56:86:a1:97:18:
38:4e:97:95:ea:97:64:0c:cd:6d:96:74:ff:27:50:
a7:3b:9f:bf:c0:f2:b0:dc:0d:52:92:1e:aa:73:c6:
30:80:d8:ed:fb:b6:6f:73:83:d3:4c:90:a1:e3:5d:
f0:f2:f4:93:b9:55:75:42:36:53:4d:d6:4e:02:8b:
b0:20:29:46:b8:ad:e5:52:da:25:aa:39:64:35:e7:
bf:8c:5c:45:7e:89:3b:78:fd:92:d8:5a:3e:6a:b5:
2f:85:81:5c:2c:b0:83:71:08:1a:ba:36:0b:5c:ba:
61:d0:69:32:03:be:15:b7:ca:10:bd:12:4c:4d:d8:
ac:56:83:40:c2:e3:7c:0c:75:49:1e:8f:6e:c4:9c:
71:d9:75:65:cc:bb:7d:53:ed:c8:51:ba:35:c4:11:
5c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:00:B5:1F:3F:CB:05:FA:2F:33:2A:AE:DF:D2:E6:85:27:96:FC:EC
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ee:b3:ac:b0:09:68:d8:29:68:97:17:47:98:0f:77:52:2f:86:
3b:c6:c2:7f:35:22:b6:a9:19:0f:62:53:73:83:98:e6:b3:f9:
d1:42:4d:2a:b3:85:07:99:16:88:b7:c9:cf:53:0d:40:1d:0a:
92:d9:f5:ca:2c:17:12:30:0b:14:a1:ab:f2:0a:75:6a:7f:5c:
28:8b:41:a0:79:0e:ba:8c:c4:79:7e:b0:69:3a:b4:28:e5:1f:
f9:9d:3e:20:4c:32:48:db:93:b7:6d:8f:27:c4:cb:75:7a:09:
1a:80:a7:b4:9c:22:76:f0:cb:6e:68:39:9d:7c:30:e1:b8:58:
b8:cf:28:3f:b6:61:2a:d4:17:f3:a8:f9:e7:80:ec:18:24:d2:
78:0d:95:e2:a9:2b:34:20:cd:9d:e5:49:b0:72:d6:15:26:80:
93:bc:31:72:d2:0a:10:9e:d3:d3:ff:08:ed:58:39:de:7e:ee:
b3:94:ae:c9:1d:7f:41:cf:6b:e5:e8:10:99:8b:a0:46:02:c0:
06:08:71:96:66:ee:23:f7:15:7c:2d:de:60:98:55:0a:a5:fc:
c9:b3:ab:a7:10:d8:96:b1:c1:76:b7:b4:e1:19:28:96:46:3a:
37:c3:8d:a2:38:6e:57:2a:44:1f:ef:21:49:21:f8:8b:4c:b6:
8c:d0:05:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:30:24 2025 by rpki-client