Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
File: yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft (raw, json)
Hash identifier: sZgLuQODk0EtqlAJvN4aT2Lcma7lk0YBuzGN8G9sQew=
Subject key identifier: 0C:11:7D:6F:58:B8:23:8D:F1:71:1D:49:BD:D2:60:0A:D1:11:F6:5C
Authority key identifier: CA:AF:C0:93:C3:C4:25:6D:11:4A:8E:DC:0D:06:C7:3C:B6:3E:18:6D
Certificate issuer: /CN=caafc093c3c4256d114a8edc0d06c73cb63e186d
Certificate serial: 019873E337735261065B463C4D5BFB437B87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 07:02:07 +0000
Manifest this update: Mon 04 Aug 2025 07:02:07 +0000
Manifest next update: Tue 05 Aug 2025 07:02:07 +0000
Files and hashes: 1: NUVu2dR1iocqmPEQ_D2e-q6eSn8.roa (hash: 1hCazZpKjVTtjQVFUWpkmXqPQOre2tDQ3dmWvgeOvfo=)
2: yq_Ak8PEJW0RSo7cDQbHPLY-GG0.crl (hash: xVAVg3HMMFlPwI392o6fbsSqp90AB4FMRP37c9rte9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:37:73:52:61:06:5b:46:3c:4d:5b:fb:43:7b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caafc093c3c4256d114a8edc0d06c73cb63e186d
Validity
Not Before: Aug 4 07:02:07 2025 GMT
Not After : Aug 5 07:02:07 2025 GMT
Subject: CN=0c117d6f58b8238df1711d49bdd2600ad111f65c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:c0:22:87:fe:79:81:0a:01:8a:a7:a7:df:92:
e6:e8:4a:25:e5:16:a1:65:49:76:6f:1f:c3:3e:8e:
ff:9a:4c:33:e8:37:a1:00:47:cf:5a:9b:2b:60:b8:
9f:3a:5c:20:55:d7:6d:59:01:0e:2c:89:16:b7:6c:
8b:c6:9f:e5:a8:1b:eb:70:da:09:f9:38:1e:bc:1d:
6a:92:a8:98:47:95:cf:18:4d:fb:27:bc:61:10:9c:
ff:07:52:e3:27:e3:04:0c:ed:53:4e:2d:64:74:52:
84:16:5a:b7:96:9c:9a:4f:1f:7a:25:45:10:c9:ec:
40:ca:eb:00:89:0f:d2:51:2a:af:c8:cb:b4:7d:36:
f0:e1:4d:79:c9:b0:bf:94:04:25:1c:97:63:18:89:
eb:18:57:ff:cb:0c:a5:f7:45:3b:09:64:00:8b:09:
86:ad:e0:42:0a:7a:6e:c8:00:d5:ec:58:37:d8:9a:
69:d8:dc:2e:79:0c:4f:b2:43:93:8c:eb:ab:36:b2:
e6:64:d4:f7:32:92:2e:0c:ce:e3:ca:49:59:cc:74:
5f:f5:84:76:ca:e5:45:9b:2a:74:6c:8b:1e:7b:fb:
f2:5e:bc:84:f6:29:29:a2:af:dc:a1:b8:5a:35:80:
92:05:f8:da:ea:49:78:d1:83:e5:c4:00:45:d2:81:
30:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:11:7D:6F:58:B8:23:8D:F1:71:1D:49:BD:D2:60:0A:D1:11:F6:5C
X509v3 Authority Key Identifier:
keyid:CA:AF:C0:93:C3:C4:25:6D:11:4A:8E:DC:0D:06:C7:3C:B6:3E:18:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ea:ec:9e:fb:31:60:b2:09:e7:e6:fc:38:57:02:d2:d4:6b:5c:
d2:2f:08:75:ff:c5:5a:2e:0e:9e:60:b0:04:f0:ba:77:c5:eb:
d8:e6:45:35:f4:f0:aa:4c:6a:67:20:97:4e:0f:51:a8:1a:68:
08:a3:80:9a:76:73:c5:59:95:e4:6c:28:ec:a3:cf:c3:b2:8c:
c9:aa:ea:4a:f9:c8:fc:45:89:b9:47:1a:87:f2:30:50:e5:d2:
d2:ca:06:60:15:3d:cb:48:ee:12:53:f8:2d:06:91:c7:66:cf:
a9:96:42:7b:53:18:9c:8e:10:65:34:f1:4c:83:a2:99:f7:10:
0a:f2:48:b4:d2:b3:77:da:f3:d9:ce:7e:a8:38:f7:44:de:44:
3e:c3:8a:a1:ab:f6:63:5e:ea:45:c4:d1:d6:0a:20:1a:9b:cf:
46:8e:86:80:10:f2:6b:a3:ed:ef:91:04:ac:4a:b6:ba:97:12:
ff:7b:96:4f:2c:d6:a0:cf:82:fa:fe:3d:9c:79:8c:79:08:37:
ed:9b:66:92:00:df:c1:cf:d1:9f:13:e3:34:57:7c:f6:93:c8:
b1:2e:b6:77:63:6f:b1:81:5e:e7:f9:86:ea:e9:9c:a6:82:94:
f1:f3:cf:d0:29:67:66:eb:d9:78:d9:8e:23:7d:50:3f:c2:40:
98:98:b9:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:22:19 2025 by rpki-client