Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.mft
File: yGEQ5MdkHRgOjxkgrGX7788G18c.mft (raw, json)
Hash identifier: erSEDH9VjwLxEFqExX8FlAlLOzGgzhzymVwdIuJ1vt4=
Subject key identifier: AB:5D:B7:8E:D1:A6:EB:49:E7:18:AE:26:F8:3D:1B:A0:29:72:3A:70
Authority key identifier: C8:61:10:E4:C7:64:1D:18:0E:8F:19:20:AC:65:FB:EF:CF:06:D7:C7
Certificate issuer: /CN=c86110e4c7641d180e8f1920ac65fbefcf06d7c7
Certificate serial: 0198793F80DD7C547EC7144B47CB84B16B03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yGEQ5MdkHRgOjxkgrGX7788G18c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.mft
Manifest number: AD
Signing time: Tue 05 Aug 2025 08:01:01 +0000
Manifest this update: Tue 05 Aug 2025 08:01:01 +0000
Manifest next update: Wed 06 Aug 2025 08:01:01 +0000
Files and hashes: 1: yGEQ5MdkHRgOjxkgrGX7788G18c.crl (hash: 0E2zDJ3XhZw/FYFPvyp0B7cIwDjZ9XJ1/P4p9OEJk1A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.mft
rsync://rpki.ripe.net/repository/DEFAULT/yGEQ5MdkHRgOjxkgrGX7788G18c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 08:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:3f:80:dd:7c:54:7e:c7:14:4b:47:cb:84:b1:6b:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c86110e4c7641d180e8f1920ac65fbefcf06d7c7
Validity
Not Before: Aug 5 08:01:01 2025 GMT
Not After : Aug 6 08:01:01 2025 GMT
Subject: CN=ab5db78ed1a6eb49e718ae26f83d1ba029723a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0d:41:5c:d7:f2:24:0d:bb:e4:ea:3e:ee:c4:
be:11:48:0a:40:69:3f:3c:9a:44:5f:82:ac:28:38:
03:cb:ff:18:20:38:77:4b:9d:1c:ac:24:90:5c:73:
e9:da:c8:d2:be:32:4e:96:ad:d6:9a:7a:3d:a4:79:
eb:86:49:bb:f3:aa:42:86:d4:ba:bd:22:e5:04:f9:
de:a4:d1:65:1b:3c:1e:6c:39:7e:a2:57:16:f1:4d:
52:21:76:d2:05:69:84:4b:03:65:a8:60:d2:be:85:
07:6e:4a:f9:b5:59:49:10:c3:21:11:d7:a4:9b:52:
8f:3c:fa:da:1f:46:1e:7c:1b:67:f9:19:65:31:cb:
ab:f9:c6:52:a0:d4:62:a0:37:f0:80:52:e7:6f:1e:
60:ed:d7:d9:ad:d0:3c:8d:70:72:06:2c:0d:de:a5:
da:2d:9d:bd:11:02:9d:bc:ec:61:ee:4b:b0:7f:8e:
c2:31:f7:6c:30:c0:d2:82:35:3b:19:d9:a4:1b:2b:
61:de:35:0d:0b:2c:5b:c4:75:1a:d8:39:10:b5:61:
e8:49:44:cd:50:c3:20:8e:88:c5:fc:1e:be:00:11:
d1:fa:db:2d:22:0b:ef:84:27:9d:d1:d5:03:bf:29:
9a:a6:89:07:1d:7f:aa:90:76:9a:4c:e3:dd:e6:2e:
88:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5D:B7:8E:D1:A6:EB:49:E7:18:AE:26:F8:3D:1B:A0:29:72:3A:70
X509v3 Authority Key Identifier:
keyid:C8:61:10:E4:C7:64:1D:18:0E:8F:19:20:AC:65:FB:EF:CF:06:D7:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yGEQ5MdkHRgOjxkgrGX7788G18c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:0e:ca:d3:eb:15:ea:4e:2f:e6:48:11:c4:46:d2:2e:9f:2d:
be:2d:36:3c:3b:5e:4e:44:19:ce:ca:60:f2:b4:d7:18:f4:9f:
bf:4c:3f:ef:29:f3:a9:bd:da:71:ea:77:89:43:b9:ea:c5:9b:
50:f9:ea:cb:d0:c5:a6:da:93:c6:1c:5a:1f:14:73:54:ce:4c:
8a:9b:1e:e2:86:14:54:6c:e9:bb:d1:7a:58:cd:2a:bd:41:e0:
54:a5:a0:0f:95:09:de:3b:cf:ac:82:cd:af:a5:f7:32:ff:2b:
18:d8:cf:7c:01:c4:c2:f9:9a:16:5b:14:fa:3c:f6:2e:50:ae:
22:b1:28:9b:92:3a:4b:e4:f2:5b:c4:2d:ba:74:80:5c:94:15:
cd:9e:8d:85:f2:b8:12:2d:7f:2a:04:a4:19:74:ce:53:e6:ce:
16:51:2d:51:1c:8f:21:42:4f:11:28:a7:82:83:c9:53:b4:ea:
ef:db:35:f5:3b:02:4b:da:d9:5f:72:13:06:bd:96:3a:20:40:
df:c7:27:48:c9:81:b7:f6:67:0a:9a:fd:31:d7:8f:86:fe:fb:
ae:1b:1e:81:79:69:22:24:07:9c:54:45:e5:d4:5d:09:9a:71:
97:ad:32:88:35:29:6a:ac:f4:cf:b8:94:25:cd:2e:24:a9:e3:
50:9b:7b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 16:43:53 2025 by rpki-client