Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json)
Hash identifier: 593oO+D3vks20lOb5xTSeoq/I8yh/MTXb7A9DyOt/0c=
Subject key identifier: 96:17:13:26:B3:49:F2:B8:8F:50:1C:ED:E7:F7:8B:BE:9F:FB:56:B3
Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Certificate serial: 01988054B0674E7D1A0C0269315262A33939
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
Manifest number: 3A
Signing time: Wed 06 Aug 2025 17:01:30 +0000
Manifest this update: Wed 06 Aug 2025 17:01:30 +0000
Manifest next update: Thu 07 Aug 2025 17:01:30 +0000
Files and hashes: 1: XMNcoWXaf4vnDHCArQ-gu1Y3zL0.roa (hash: c50mTMfPFSVXbnJgASutbtpma/sfEHT1BH/nlXtX2qk=)
2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: QWuVKFNupFFFQszo/Od0JUKnp6/6/8bNiKTgT2O6r24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 14:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:54:b0:67:4e:7d:1a:0c:02:69:31:52:62:a3:39:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Validity
Not Before: Aug 6 17:01:30 2025 GMT
Not After : Aug 7 17:01:30 2025 GMT
Subject: CN=96171326b349f2b88f501cede7f78bbe9ffb56b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b2:36:96:c7:1d:03:06:32:0d:55:aa:d8:aa:
37:72:00:cb:6a:dd:a1:28:5c:89:68:82:5f:74:85:
95:8a:c1:8c:c6:ca:13:31:09:eb:a5:8e:51:5a:be:
2e:4f:f7:8b:fc:ac:db:72:b5:4c:f4:88:2f:b4:34:
08:8a:92:91:e2:ef:de:db:21:b6:89:f3:ae:83:97:
a1:0f:17:76:35:bc:61:3d:75:f8:88:16:2d:85:c0:
a1:3d:c2:c1:f1:e2:fe:9d:4b:b3:05:72:88:c8:cf:
2e:fe:43:aa:32:85:b9:2a:12:66:ee:5b:d6:2e:63:
39:aa:d1:68:69:6d:c6:9c:de:ed:4e:c2:23:22:49:
df:9a:91:d2:a6:0c:6f:d1:f8:b8:4f:e1:86:02:ea:
94:52:c0:b8:00:3d:ae:82:4f:45:42:32:d6:49:45:
ac:aa:75:df:e3:61:5b:4b:c8:99:fc:50:ba:ed:d7:
de:5f:ba:ef:7a:d5:dc:fb:43:4a:0f:e9:e3:5c:3e:
c8:72:2d:ea:90:e5:b0:c1:71:46:79:27:96:19:0e:
26:e4:77:68:2b:32:12:f6:e7:bb:f2:e1:ac:ba:af:
99:4d:d2:85:4d:a8:71:2e:ec:be:43:92:0b:7f:7f:
07:f9:df:23:99:7a:f0:49:41:dc:d6:88:35:8d:78:
17:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:17:13:26:B3:49:F2:B8:8F:50:1C:ED:E7:F7:8B:BE:9F:FB:56:B3
X509v3 Authority Key Identifier:
keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:88:0f:ca:82:73:d0:70:f1:42:bd:2d:ac:76:f9:02:3a:87:
1e:2f:ce:a9:a5:69:e4:20:09:87:c8:4f:9e:9a:98:59:be:2b:
43:dd:17:9a:1a:5b:ee:42:d2:cb:e2:5c:cf:8f:30:f3:dd:56:
a7:66:c1:fa:e1:46:e7:5f:52:a6:e2:e7:51:1c:fc:17:64:a8:
4c:1b:c7:1f:ac:0b:06:20:01:5a:05:db:5f:83:32:e3:14:7c:
44:6b:70:91:61:85:31:73:b5:48:7f:ba:17:a1:85:73:b3:e2:
fc:15:45:fe:91:fe:56:73:e4:b6:c0:bd:b2:c6:89:00:22:4e:
34:d4:58:8a:64:59:1b:06:15:0d:98:dc:57:29:16:35:79:0f:
cf:28:be:e5:ef:b3:3b:8e:fb:3e:de:d0:47:a0:75:ec:af:f6:
8b:b3:86:08:ac:a5:8c:7e:4d:35:c6:b7:04:bc:89:17:80:a0:
12:c7:0b:59:66:c1:0b:fe:d4:ed:46:8a:23:d0:93:44:8c:a6:
da:3d:f0:2b:1b:e3:d7:ab:e0:a3:b3:b8:6a:fa:75:5c:37:d5:
79:e8:df:2c:b6:88:c6:1a:a9:5a:3d:cb:cb:77:57:a0:7d:a9:
e2:79:56:f7:e8:77:a8:98:94:1a:e1:12:82:8b:e6:14:49:13:
2b:11:44:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:23:37 2025 by rpki-client