Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: v2L9kOzo3BMCnM14LxXF6/hB5ADy/Yv3eMMq2ezceSo=
Subject key identifier: 2C:C2:A2:C6:E1:2A:38:5D:2C:E4:FA:75:C6:BD:41:A2:15:EE:0E:3B
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 0198936CA507A93904F8585ADCC991C2733B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 118F
Signing time: Sun 10 Aug 2025 10:00:27 +0000
Manifest this update: Sun 10 Aug 2025 10:00:27 +0000
Manifest next update: Mon 11 Aug 2025 10:00:27 +0000
Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: aeoqV1l4ggfzcmk/HuxGLHEa/saHU6AcglgFb1aMi/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:6c:a5:07:a9:39:04:f8:58:5a:dc:c9:91:c2:73:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Aug 10 10:00:27 2025 GMT
Not After : Aug 11 10:00:27 2025 GMT
Subject: CN=2cc2a2c6e12a385d2ce4fa75c6bd41a215ee0e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b7:0d:77:2f:07:9f:19:fc:19:49:70:e3:9c:
79:cc:b7:e6:d1:01:d2:0c:43:f0:9f:d6:da:62:d2:
da:a0:24:da:21:bf:74:4f:6e:5c:5b:68:ae:e4:df:
3f:c9:cf:be:16:02:dc:91:21:3f:11:c6:ae:bc:1d:
79:3f:fd:63:ef:4c:c1:9a:ac:d1:5b:a0:87:ca:23:
5d:05:28:f5:7d:4a:65:fc:eb:82:62:55:04:51:5f:
0b:f5:20:3a:a5:b5:2e:9d:5b:c2:79:84:ad:5a:10:
29:14:8c:4f:68:40:a5:03:8d:43:53:f1:ff:e2:02:
98:77:3e:f6:4e:c2:be:cb:c5:8f:1b:1a:6a:02:72:
d1:05:7f:7a:ce:50:61:00:eb:df:2d:a2:ca:df:f4:
c0:b0:40:49:61:07:01:20:c2:5e:5f:b4:ec:fb:be:
55:8d:7f:65:18:0a:74:ab:ad:03:79:6c:de:0a:5e:
c0:94:1d:b9:3b:a8:5c:13:77:7f:5a:aa:7e:b3:c7:
8e:9b:1d:58:fe:5c:eb:31:6c:e6:27:6a:3c:4c:90:
80:1f:3b:4d:ec:22:b3:71:30:63:21:0c:e1:b2:b9:
a6:34:ae:c1:e7:1c:59:c0:f6:cb:92:18:8e:d5:cf:
c2:95:7d:42:b4:3f:26:da:ff:b2:a1:fe:84:c3:33:
b7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C2:A2:C6:E1:2A:38:5D:2C:E4:FA:75:C6:BD:41:A2:15:EE:0E:3B
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:24:23:50:37:4e:b6:1d:a4:fd:56:85:a2:d3:4c:14:08:f8:
3d:4a:24:b6:d6:76:f1:6f:9f:5a:ab:5a:84:dd:a0:a3:c7:87:
77:fc:84:56:16:ce:11:5c:79:4e:bc:8c:93:77:23:95:20:78:
93:aa:5a:41:41:b6:4c:90:7c:b1:9f:93:c9:43:2e:11:c9:00:
25:02:7d:42:18:bb:e5:2c:c5:ca:56:00:f8:28:9f:05:01:47:
8e:f7:91:4e:e8:ec:ec:e7:31:ac:c9:ce:ad:78:3d:e9:ab:45:
49:89:8a:06:6e:e1:5c:9c:ce:bf:fb:e0:97:ee:65:51:ed:41:
63:11:08:e2:c6:d0:36:64:00:fd:ce:2c:1e:36:a8:fa:c2:9a:
a2:b0:74:76:c7:56:61:b8:1e:7d:4a:86:9b:35:5a:14:4a:13:
9d:93:7f:ac:84:fd:5a:60:44:f2:b5:09:6c:39:ee:0f:cf:71:
bd:9d:63:e8:e3:67:05:32:96:73:5f:53:85:dc:b0:0f:b4:9f:
30:a0:d4:6d:39:e1:8e:db:30:12:5d:29:a2:bc:91:33:a7:71:
da:ee:93:a0:7f:40:26:d3:49:49:8c:9a:cb:fa:bb:3b:d6:d3:
25:65:20:7b:cf:de:39:bd:29:dd:72:d0:1d:a0:21:1d:a5:21:
c5:fb:2e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:44:41 2025 by rpki-client