Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
File: You5JTbCD0KwW-UywNuquYt1XzU.mft (raw, json)
Hash identifier: +n2Jjjd3/7SH74Mz2aeBLoU3cT3Q7/5g0eQRKzVqiwQ=
Subject key identifier: 3D:D1:CB:91:7C:E2:12:0D:08:BD:33:82:45:DA:95:E6:74:8B:70:F1
Authority key identifier: 62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35
Certificate issuer: /CN=628bb92536c20f42b05be532c0dbaab98b755f35
Certificate serial: 01989637732A4DB0D84C1D72454B258FF3BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
Manifest number: DE
Signing time: Sun 10 Aug 2025 23:01:12 +0000
Manifest this update: Sun 10 Aug 2025 23:01:12 +0000
Manifest next update: Mon 11 Aug 2025 23:01:12 +0000
Files and hashes: 1: You5JTbCD0KwW-UywNuquYt1XzU.crl (hash: CRJ7UovLBEUF5koKfInNQ94Riy3YGNiQNxZNpCT6qvA=)
2: lUZIxGhzOYxZGWoE_bPIsAcvBns.roa (hash: 181xs0vbEO2Q9NjKNLp5nMH7XagJ9a8i0PdC3k4WAwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 23:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:37:73:2a:4d:b0:d8:4c:1d:72:45:4b:25:8f:f3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=628bb92536c20f42b05be532c0dbaab98b755f35
Validity
Not Before: Aug 10 23:01:12 2025 GMT
Not After : Aug 11 23:01:12 2025 GMT
Subject: CN=3dd1cb917ce2120d08bd338245da95e6748b70f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c8:69:35:ff:02:46:2a:1d:3d:df:a5:af:72:
58:75:63:d2:f2:29:5f:63:a7:8b:c6:d2:77:27:52:
e1:43:d5:c6:6f:99:69:59:23:be:55:47:47:a1:0d:
af:fe:1c:d1:3b:04:e4:9c:54:10:15:96:9d:70:b0:
6b:de:2a:55:e9:57:e5:25:71:f7:73:41:a8:73:d4:
32:e0:16:84:6f:b8:dd:12:20:14:92:7b:fb:8e:02:
fb:b4:2c:ff:82:d4:4e:a6:fb:46:8b:47:b8:98:97:
2c:e8:e4:bd:6c:eb:db:3a:96:e2:d9:9f:6e:0b:80:
af:b4:a8:f7:b4:e7:bb:f4:1e:3a:00:43:d7:ab:14:
fc:0b:0f:32:a0:93:cc:ed:c6:4b:ee:19:7f:9e:7e:
8d:a7:1f:5a:de:8f:c3:5c:ac:00:7a:27:87:b0:28:
b8:78:be:d2:ba:fc:7c:b1:2f:9a:8f:ed:19:f2:7d:
09:4d:c3:d3:3b:db:a6:f3:f3:e1:d3:32:c5:97:a7:
66:ee:21:b6:32:48:2b:c9:60:d8:70:57:c1:db:c2:
f7:38:3e:54:83:85:67:c3:0f:12:9f:9f:14:64:d2:
17:0c:c8:fb:04:1c:9f:8a:77:86:2b:74:d2:3b:e2:
ce:28:d9:cd:4f:8b:e4:e1:b2:dd:f5:11:17:52:d3:
36:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D1:CB:91:7C:E2:12:0D:08:BD:33:82:45:DA:95:E6:74:8B:70:F1
X509v3 Authority Key Identifier:
keyid:62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:78:2d:b8:5a:e3:8b:dc:74:d5:ac:0c:31:81:c5:68:bf:d9:
9e:a8:22:1b:97:a7:90:f9:98:86:38:53:85:33:0f:d2:4c:5e:
b3:36:81:90:1d:79:91:9e:08:d8:fb:70:57:75:82:68:a8:8d:
69:fa:1b:86:e1:f6:7f:a6:cc:05:62:23:ed:35:14:0e:a6:2a:
0e:91:9f:7d:98:d6:fe:e9:96:b2:f1:a2:f9:29:65:6e:0a:89:
a4:fd:6f:27:ae:d4:40:cc:49:85:eb:4a:ff:52:4c:01:df:63:
78:aa:91:4c:c2:0b:fe:31:74:c2:c1:d2:6f:a7:30:25:3d:8f:
69:14:08:47:ca:e2:da:2f:43:23:c3:9b:c8:88:01:67:ab:38:
84:2e:12:4e:6c:39:40:c6:b3:d1:b5:8f:7b:e7:2c:a9:26:d1:
12:51:9d:1b:54:29:60:25:33:d3:7e:3d:01:1b:e0:57:a0:e8:
f5:ab:1b:09:24:16:48:c4:7a:32:72:fa:46:81:3f:03:af:ef:
58:84:e2:c3:a4:16:18:ad:46:1c:a4:72:05:81:f6:76:af:df:
07:a5:1a:b1:8e:78:22:72:eb:72:f4:4c:ea:73:da:98:ce:ad:
db:1c:f6:cc:73:c3:ca:bd:4c:c5:2f:c4:fa:ee:1b:8c:7a:5c:
04:f5:6d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:14:00 2025 by rpki-client