Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
File: yuDyZX221YxEden7gXNW4u3SzA8.mft (raw, json)
Hash identifier: WVQiNubzBppQNQ+kHm2gaS/6WjPGmlEKdBkfDZe8n2U=
Subject key identifier: 74:62:F0:D8:2F:AB:19:CE:66:9D:B2:35:76:08:72:F3:E2:19:D6:01
Authority key identifier: CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
Certificate issuer: /CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Certificate serial: 019874509C1B32003F939A7353CCD269F3C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
Manifest number: 11F3
Signing time: Mon 04 Aug 2025 09:01:36 +0000
Manifest this update: Mon 04 Aug 2025 09:01:36 +0000
Manifest next update: Tue 05 Aug 2025 09:01:36 +0000
Files and hashes: 1: yuDyZX221YxEden7gXNW4u3SzA8.crl (hash: XkQSAOlENYw1kXTjp32yLsRTOtlHhHVp8CD5Qo6Hq00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:9c:1b:32:00:3f:93:9a:73:53:cc:d2:69:f3:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Validity
Not Before: Aug 4 09:01:36 2025 GMT
Not After : Aug 5 09:01:36 2025 GMT
Subject: CN=7462f0d82fab19ce669db235760872f3e219d601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:26:08:eb:c5:25:e3:7d:d4:cc:26:4b:5a:1a:
1e:5f:d0:e2:1c:d1:df:3b:84:14:12:36:66:56:43:
fd:1a:0f:ae:a9:f7:d9:2d:4d:a1:ed:bd:25:0e:db:
ac:6c:06:15:be:e8:c6:9f:ca:d9:fa:ed:10:35:8e:
b6:fb:05:44:0b:99:46:8c:c3:c0:45:01:58:c1:26:
6e:ff:0c:8f:8e:c6:5f:a5:e9:19:c5:94:2d:32:db:
eb:5f:5b:15:9c:8b:24:e3:7e:55:09:20:44:e2:8d:
f7:ba:03:04:e2:9c:06:b7:df:85:11:8c:b4:8f:84:
8d:9c:79:d5:b1:d4:3d:05:7b:95:38:95:8b:85:98:
14:69:ca:13:ca:93:51:08:9d:2b:80:35:00:78:11:
b5:6e:40:35:34:a0:4e:fa:d2:17:d7:97:ff:fe:55:
76:c2:75:ff:8f:76:76:30:00:60:08:5d:6f:f0:a4:
bc:36:8c:4c:df:3a:aa:d0:84:64:14:dc:8e:10:22:
df:de:14:09:2f:72:31:ba:6f:42:01:04:d6:58:87:
a7:cf:4c:05:5d:50:d3:4d:83:b6:05:9a:99:60:17:
a2:83:c3:e1:c3:a7:cc:94:33:c9:c2:6e:14:8e:98:
20:05:16:27:58:51:5a:2c:46:e5:ed:cf:a1:cb:6c:
27:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:62:F0:D8:2F:AB:19:CE:66:9D:B2:35:76:08:72:F3:E2:19:D6:01
X509v3 Authority Key Identifier:
keyid:CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:6b:2b:80:c8:54:6e:cd:40:a7:46:8e:1a:15:29:fd:d2:ba:
ca:83:df:b4:d7:01:fd:37:7e:fb:a2:8d:e2:bc:29:ae:e3:08:
b8:75:97:b6:e1:1e:4e:ba:4c:bb:b8:37:dd:b3:ba:39:44:37:
2e:b4:f4:9a:68:20:04:89:1d:36:62:99:bb:fe:31:4e:8c:7b:
51:52:a4:11:e8:3d:2d:ac:82:4e:4a:27:f4:54:8b:23:2b:bb:
11:fc:dc:8d:57:d0:41:59:e9:13:8a:96:c3:8f:c9:7b:da:30:
9c:14:4e:cb:19:f7:dc:36:02:ed:f8:c9:b9:53:c0:cb:f3:bc:
8e:77:01:a6:91:be:66:a9:ae:8e:b7:97:f6:ef:f8:ec:99:b2:
5d:29:46:42:d7:69:8c:66:f2:0d:79:67:ec:94:2d:1c:84:f0:
aa:10:15:77:8f:53:bb:32:c9:ad:fd:1b:10:9e:92:f2:2a:e6:
7d:9e:ad:63:38:21:30:e2:bc:bd:da:e5:9b:5e:96:f1:89:6c:
21:b5:bf:d2:2e:c4:d8:5e:98:4f:dd:d2:11:76:53:0b:f7:d0:
09:58:5a:62:07:f5:9e:9f:17:95:37:54:57:5b:52:10:77:5a:
3b:84:ac:e7:b0:b0:52:a6:4f:f1:c9:c1:19:a6:93:a9:73:cc:
11:ff:e0:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:10 2025 by rpki-client