Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
File: YGVg4D7ogzLu-_ppROvRA4rg6rg.mft (raw, json)
Hash identifier: KBMY1Ky3OQhbUqcXTWwoWzgrtvup7D6LUb3MnVI/z/w=
Subject key identifier: F4:B8:E4:25:9F:91:29:72:14:73:E3:40:C0:AD:F1:1D:DD:DF:C4:AD
Authority key identifier: 60:65:60:E0:3E:E8:83:32:EE:FB:FA:69:44:EB:D1:03:8A:E0:EA:B8
Certificate issuer: /CN=606560e03ee88332eefbfa6944ebd1038ae0eab8
Certificate serial: 019873E32096A3BF1BB4799F4D9E6F7076F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
Manifest number: 0DF0
Signing time: Mon 04 Aug 2025 07:02:01 +0000
Manifest this update: Mon 04 Aug 2025 07:02:01 +0000
Manifest next update: Tue 05 Aug 2025 07:02:01 +0000
Files and hashes: 1: 6He2HCHOgYmFWCnJx-CHnw1DNw4.roa (hash: R/op20lcuNNKjtAV2ZxOf6+gcTn27jdjTjhCIstJEzU=)
2: YGVg4D7ogzLu-_ppROvRA4rg6rg.crl (hash: dA5KXhs/X2QrHXWWMA/3vdOTJLuzS2yfJJo36qi3eSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:20:96:a3:bf:1b:b4:79:9f:4d:9e:6f:70:76:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606560e03ee88332eefbfa6944ebd1038ae0eab8
Validity
Not Before: Aug 4 07:02:01 2025 GMT
Not After : Aug 5 07:02:01 2025 GMT
Subject: CN=f4b8e4259f9129721473e340c0adf11ddddfc4ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a7:7f:ec:04:01:fd:d0:b3:34:fc:85:34:7a:
d0:69:95:05:6d:11:e6:d3:ae:eb:f7:a2:b6:29:c7:
9c:ca:b8:01:ef:ef:49:6e:b5:84:9c:a5:60:86:70:
eb:48:4e:2b:46:b3:b0:ff:57:ce:66:64:a3:f8:cf:
a5:66:0c:8c:9b:8d:14:42:72:4f:2a:c2:60:e4:90:
02:b8:89:a5:06:2c:ca:f1:20:bb:c0:d7:cd:27:95:
29:71:81:94:65:e0:9e:fa:df:68:5d:dd:c1:29:f9:
34:ff:b7:93:97:c2:de:23:af:9f:3b:b7:1a:89:b7:
ef:3f:d5:81:01:d7:7d:c9:29:14:eb:b9:bc:6f:2b:
55:66:dd:b3:f7:99:8f:31:bb:5f:29:d5:55:08:f5:
11:31:bc:04:d0:53:bf:75:12:09:a2:e9:11:ba:67:
79:f5:07:79:c2:0f:94:fd:e3:73:fd:00:38:60:25:
49:9b:08:88:3d:9f:60:58:1e:c7:d1:2d:95:46:14:
19:89:40:fe:a0:00:84:44:7c:b8:a0:de:ec:69:ca:
cd:c4:82:8b:3d:e7:d2:83:4d:96:86:4e:7e:7e:4a:
61:51:46:05:d3:99:10:69:3b:0a:ee:dc:08:95:a2:
d5:e4:28:fe:1d:cf:29:6c:8e:d4:79:ea:95:d2:9b:
a9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B8:E4:25:9F:91:29:72:14:73:E3:40:C0:AD:F1:1D:DD:DF:C4:AD
X509v3 Authority Key Identifier:
keyid:60:65:60:E0:3E:E8:83:32:EE:FB:FA:69:44:EB:D1:03:8A:E0:EA:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:70:ef:ee:bb:b1:12:c6:25:2d:04:58:28:86:80:db:5f:d9:
8f:9c:7e:cd:a7:9c:e6:70:c1:44:95:93:95:d7:e2:9f:ca:e3:
9c:c8:d6:e7:b7:de:46:d3:14:1d:0c:7b:c5:f9:f0:0e:47:1a:
9e:0b:71:3b:2f:f6:43:1b:e4:6a:cc:a3:d8:28:94:8e:67:88:
16:71:49:44:b6:06:59:7b:d9:87:8c:c8:a9:97:da:5f:7a:3b:
84:e2:cf:c4:20:b4:b5:05:88:9e:93:9e:72:e5:c7:bd:85:69:
70:2e:4f:d1:b2:c5:d4:7e:59:78:1a:a1:57:82:21:55:b5:76:
2d:36:29:4c:ac:f4:1a:fc:bc:83:f7:a9:30:e2:eb:ea:8d:6a:
a1:79:70:71:96:9b:dd:05:dc:54:4e:a9:c8:ac:fc:23:38:20:
27:40:6a:a2:11:7e:6a:5c:98:bb:ff:f7:31:50:6a:27:44:1d:
66:dc:64:af:9e:47:ff:26:a1:f3:09:e9:3f:22:76:cf:a9:26:
5d:13:0a:49:53:da:5e:bc:32:1d:2a:24:e5:bb:c5:65:6c:43:
ea:6b:fc:40:82:d8:85:1a:4d:4e:90:6c:cf:c3:f5:9d:b4:33:
6e:8a:e7:e6:8e:f4:59:b7:a3:56:e0:81:e1:5f:b8:dc:87:cf:
a4:e6:49:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:12 2025 by rpki-client