Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
File: YNCwIHYDvkPYSS6YUTeLi08JWU8.mft (raw, json)
Hash identifier: BxomN1ASGumiVDP2nRU8HA6HGutkCauWTb9+/026HEk=
Subject key identifier: B2:FE:DA:E7:19:38:91:B7:53:2C:DA:B1:5F:39:D7:D2:DF:0C:D9:C8
Authority key identifier: 60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F
Certificate issuer: /CN=60d0b0207603be43d8492e9851378b8b4f09594f
Certificate serial: 019880C25982E874F701952ED50947FF95D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
Manifest number: 15B0
Signing time: Wed 06 Aug 2025 19:01:17 +0000
Manifest this update: Wed 06 Aug 2025 19:01:17 +0000
Manifest next update: Thu 07 Aug 2025 19:01:17 +0000
Files and hashes: 1: TGCJDTG82pX-vT9LeK2kOQ4sDi8.roa (hash: zRKBbHZChcvp4qDJB7Pkx8ohWvBK1TWvnJD0kE9wiHc=)
2: YNCwIHYDvkPYSS6YUTeLi08JWU8.crl (hash: /99bdFTY+o3MOJzg9EHi3+lHlf3BmP1ogFgUl8ghYjo=)
3: hmDTZOEMQo2FsgMZ2bH5HdU2vyI.roa (hash: NbIM1acTbudT3ToneHmDuzQP2dnfQF8A/BNgiqfCI44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c2:59:82:e8:74:f7:01:95:2e:d5:09:47:ff:95:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60d0b0207603be43d8492e9851378b8b4f09594f
Validity
Not Before: Aug 6 19:01:17 2025 GMT
Not After : Aug 7 19:01:17 2025 GMT
Subject: CN=b2fedae7193891b7532cdab15f39d7d2df0cd9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2a:6d:7c:c0:67:c2:89:71:81:8e:01:24:aa:
04:b9:66:8c:66:f0:1a:64:34:40:4f:4e:54:59:dc:
23:5f:ad:03:5f:72:21:d7:21:95:f1:6c:c0:9d:bd:
6a:2d:35:eb:3c:b7:b7:c1:69:9f:ac:84:d8:f3:28:
f1:14:99:b2:68:c4:45:5d:85:65:27:6a:cc:9a:ac:
13:df:3f:59:a4:6c:d5:f1:67:29:67:dd:03:25:ce:
75:91:b7:47:fa:97:82:5c:c3:b9:af:42:d0:ea:5c:
06:a0:0d:8b:dd:34:c7:ae:0f:8c:80:ee:81:d7:56:
b0:a6:b4:c5:d0:bc:65:b0:d2:45:b2:3f:23:c8:03:
27:4d:6a:9a:fe:38:90:fd:85:df:4b:be:52:fd:f6:
19:76:6d:91:b3:e1:53:ac:86:8b:59:f6:3c:18:4f:
f8:f1:65:8a:1b:c4:02:c6:e5:4a:c5:b7:d6:98:37:
65:4c:d2:12:ce:f0:f2:b5:ba:43:28:95:98:4d:07:
45:d1:57:3a:3f:a6:76:b1:69:fd:44:2f:a2:0b:d9:
41:63:e3:85:6e:6a:bb:e3:6b:08:3a:f9:89:bc:44:
a7:9a:de:89:1d:97:89:47:f7:63:f8:ae:cd:e0:bb:
dc:0a:65:c7:6c:55:1a:14:08:46:cc:21:96:6e:36:
51:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FE:DA:E7:19:38:91:B7:53:2C:DA:B1:5F:39:D7:D2:DF:0C:D9:C8
X509v3 Authority Key Identifier:
keyid:60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:ce:22:f3:d3:2d:17:30:5a:4f:e7:23:ca:e8:35:93:87:3b:
cb:ef:3f:21:8d:ef:64:3d:7e:cb:bb:f3:52:b3:91:77:1a:fd:
33:5b:da:ae:b3:3d:ee:01:75:16:35:96:af:03:40:8f:30:0c:
96:19:70:f7:cc:e8:5b:13:0c:a4:22:a7:90:1a:d1:aa:0a:8a:
7e:88:06:da:53:b1:0b:52:fa:17:07:ea:0b:47:0b:b9:b2:f5:
79:a4:11:ce:92:76:ce:1f:30:49:9b:00:94:60:f9:a1:21:b4:
e5:0f:21:c2:50:e0:6b:53:76:f9:c4:81:2c:03:e9:22:78:d2:
f5:d6:b8:79:49:95:eb:ea:35:85:b1:f9:a0:93:9c:b6:0e:5f:
38:88:6d:95:d9:d7:bc:e0:b9:ff:dc:73:9b:54:5d:14:35:a8:
3c:b6:a4:b1:14:23:fb:8a:42:84:b6:8e:9e:0d:fb:01:7c:d7:
aa:84:e9:7e:e1:33:ba:49:70:90:8e:4b:e0:c9:56:03:1e:b9:
b1:80:be:af:88:16:64:29:10:94:40:f4:e9:a3:c5:2b:db:12:
a0:aa:1b:45:96:85:16:7c:eb:0d:aa:86:ff:47:ed:8c:b6:1c:
77:cd:cb:92:8b:38:bd:fa:d3:80:df:75:42:a9:68:85:18:df:
5f:5b:91:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:58:52 2025 by rpki-client