Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
File: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft (raw, json)
Hash identifier: RXF0UAFv60bvjcfqwvz5qZdjDGdIighmOe5CBP9uAfk=
Subject key identifier: 66:96:51:0E:03:68:34:E8:7C:6A:29:7C:59:A3:52:7A:30:58:25:5A
Authority key identifier: 63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
Certificate issuer: /CN=63e30980305345fd5365b3515e3568f9cee58541
Certificate serial: 01987B9C212F21C361D8CA975D1296F17FC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
Manifest number: 161B
Signing time: Tue 05 Aug 2025 19:01:26 +0000
Manifest this update: Tue 05 Aug 2025 19:01:26 +0000
Manifest next update: Wed 06 Aug 2025 19:01:26 +0000
Files and hashes: 1: Hs2TvjBAbChswFTm05pNrXJsCJA.roa (hash: xtJBUOZoNvBaKTOo18EAAqIaZQ4IjdLX9G/viT94FJA=)
2: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl (hash: EqxCfacoqPJ9em8sVFLCWTF0ahrN/OHEE5APbI1PF6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 19:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:9c:21:2f:21:c3:61:d8:ca:97:5d:12:96:f1:7f:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e30980305345fd5365b3515e3568f9cee58541
Validity
Not Before: Aug 5 19:01:26 2025 GMT
Not After : Aug 6 19:01:26 2025 GMT
Subject: CN=6696510e036834e87c6a297c59a3527a3058255a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0f:ea:7f:a7:87:ba:a0:c9:9c:14:93:36:a8:
b4:bd:b4:08:b8:69:f3:62:2c:1f:96:83:f0:4c:89:
b2:48:72:5a:2a:ff:b1:80:96:ca:92:8b:75:6a:29:
b6:53:6f:9e:1e:2a:42:ae:97:54:ec:f7:c6:9f:44:
79:7a:ac:62:f6:9a:47:8b:bf:2e:1d:0f:9c:db:81:
04:5e:61:53:ab:25:fb:a6:e8:6a:6c:0c:0a:3a:50:
d5:da:29:a7:92:7d:09:4c:a0:ce:5f:67:63:75:a6:
d8:2a:0c:a4:77:85:6d:d5:91:f7:c3:09:e5:f4:bf:
a6:d6:72:95:ae:4f:ac:5d:ba:72:8f:00:15:64:55:
f5:31:a0:21:70:70:53:1d:93:69:07:41:38:1a:a6:
dc:b5:92:f4:84:10:76:0e:86:a1:aa:4b:93:b2:3a:
d4:97:15:8f:5a:84:2c:a5:41:2f:bb:0d:f5:e5:91:
c8:7b:6e:c1:c4:f2:9a:1e:52:62:05:92:69:56:e6:
e6:f7:78:06:85:f2:7f:25:9c:34:c8:1a:93:e7:c8:
66:f4:cf:96:3d:21:92:33:64:2a:4f:da:19:ff:de:
4e:c1:ea:f8:47:67:5f:46:44:c1:c2:4f:46:e2:ce:
c5:64:12:50:a9:34:a3:11:e7:34:33:74:f8:80:5b:
92:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:96:51:0E:03:68:34:E8:7C:6A:29:7C:59:A3:52:7A:30:58:25:5A
X509v3 Authority Key Identifier:
keyid:63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:b2:d5:21:54:8b:3f:0b:76:dd:46:31:6a:e8:b9:a5:2d:f9:
af:8e:ea:25:d0:4e:9d:45:fa:4f:74:d0:65:da:20:09:db:56:
65:21:bf:4f:3a:41:04:b6:9a:47:7b:50:82:3b:11:86:c4:62:
c0:c3:63:92:bb:c3:3d:02:2a:65:28:5c:c6:40:ac:75:4d:f5:
11:d0:f6:a4:11:40:2c:28:cc:62:d0:ed:fa:dc:a4:f0:4c:b4:
08:21:f6:e0:fd:80:34:0d:81:10:db:05:82:f0:51:1c:b0:87:
71:23:a1:52:1e:4d:08:d3:87:71:6b:bc:89:de:0c:1e:44:96:
8f:18:01:b0:60:c0:06:1a:dd:68:14:9d:10:06:78:80:12:a2:
b2:c7:90:89:22:81:b6:7b:ac:65:8e:cc:e9:f1:1b:a2:b2:63:
64:4d:37:52:d9:9a:1c:47:a6:bf:e6:d5:cb:f6:cd:26:f8:56:
fa:28:03:9c:bd:2b:3d:d7:09:ef:c9:72:2d:88:b3:ab:9c:21:
7f:88:a6:21:5c:c3:b9:56:c7:5a:15:6f:8e:3f:9b:be:99:4a:
12:c3:15:2b:84:88:ed:83:30:ad:e0:ff:98:a6:d1:f9:58:5f:
21:13:0a:3d:6d:d3:e4:60:42:58:55:f7:3e:97:5c:96:64:95:
ed:bd:f6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:13:27 2025 by rpki-client