Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
File: YmFlv7I92h-YcLJBf0lkhebAinQ.mft (raw, json)
Hash identifier: JrdcTB4eH7jDxnxMBBVGt+qrr96h/Lzixmlgvu4eGKU=
Subject key identifier: B4:03:4E:0B:E0:02:1B:30:5F:89:AB:31:A4:6C:14:F8:5B:57:C6:96
Authority key identifier: 62:61:65:BF:B2:3D:DA:1F:98:70:B2:41:7F:49:64:85:E6:C0:8A:74
Certificate issuer: /CN=626165bfb23dda1f9870b2417f496485e6c08a74
Certificate serial: 0198879FFD859A072DCBAE54829A37B00EEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmFlv7I92h-YcLJBf0lkhebAinQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
Manifest number: 03AF
Signing time: Fri 08 Aug 2025 03:01:05 +0000
Manifest this update: Fri 08 Aug 2025 03:01:05 +0000
Manifest next update: Sat 09 Aug 2025 03:01:05 +0000
Files and hashes: 1: YmFlv7I92h-YcLJBf0lkhebAinQ.crl (hash: 86py6u6rHUcOwaW0bpswbJXJtuN7ErjaDs1wMdOkRBs=)
2: sqHnWw_DTKSgc5zNQG4iPku5PBw.roa (hash: w6R1JeMOp3KdC2WjMvic0T8urUWBQwEZKMQrdXTts0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmFlv7I92h-YcLJBf0lkhebAinQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 03:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:9f:fd:85:9a:07:2d:cb:ae:54:82:9a:37:b0:0e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626165bfb23dda1f9870b2417f496485e6c08a74
Validity
Not Before: Aug 8 03:01:05 2025 GMT
Not After : Aug 9 03:01:05 2025 GMT
Subject: CN=b4034e0be0021b305f89ab31a46c14f85b57c696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:83:45:7f:63:a2:cc:61:07:3b:05:35:6b:71:
db:12:fa:3f:8e:b5:26:a8:18:15:b3:6f:5a:49:90:
96:a2:f2:19:b1:61:19:73:19:d0:2a:be:5a:05:17:
d0:fa:ad:28:4e:6a:31:c5:75:9a:96:d0:71:41:9c:
4a:8b:41:ab:8d:fd:bb:5a:74:53:27:88:99:24:ea:
1b:59:e4:58:6f:50:f9:5d:73:37:75:57:6d:aa:02:
af:01:9c:76:27:58:73:f2:09:ea:c4:21:31:fe:75:
fc:3a:48:73:2a:70:1a:cf:00:85:a8:0d:16:06:61:
37:1d:78:cc:71:7c:12:2c:47:99:12:6d:c9:3b:13:
8a:e0:3a:47:29:1e:88:a5:da:67:51:e2:98:a1:cb:
05:57:a2:7b:07:12:ac:99:1d:48:4a:8a:72:a7:9e:
04:dc:f1:76:07:d5:05:27:c5:7d:31:73:0b:99:2c:
a2:79:30:03:98:1e:72:7d:a0:f6:d1:89:f2:bd:07:
f5:39:9f:c4:2a:7b:76:b5:c4:ca:fb:ee:f1:a6:e0:
c2:37:c6:d5:68:a8:48:a7:33:1b:26:93:13:ec:31:
64:e4:65:e5:e2:f1:93:8c:a1:3f:b4:46:91:cc:42:
84:9b:52:06:48:5b:0c:f7:b5:f8:2c:e7:85:37:83:
70:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:03:4E:0B:E0:02:1B:30:5F:89:AB:31:A4:6C:14:F8:5B:57:C6:96
X509v3 Authority Key Identifier:
keyid:62:61:65:BF:B2:3D:DA:1F:98:70:B2:41:7F:49:64:85:E6:C0:8A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmFlv7I92h-YcLJBf0lkhebAinQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:b3:92:81:e7:00:57:80:41:61:8a:fc:35:c4:15:ae:75:f4:
eb:ec:57:b7:6b:63:2d:e5:e0:81:d9:04:ee:dc:10:e1:96:a7:
24:e5:e6:66:81:be:0f:0b:ad:be:c1:6f:01:bd:9c:b7:0d:31:
c7:47:e2:6d:57:a3:31:3a:72:db:9e:9e:be:92:48:72:19:94:
78:c4:03:a2:14:17:0b:bc:5a:c2:18:ff:0c:85:aa:e3:22:bc:
28:2b:2f:6f:55:0e:32:df:dc:3a:ce:c2:4f:da:1c:cd:87:21:
09:52:88:8d:4a:ef:3c:86:b4:2f:36:f7:d8:b9:66:64:3d:3c:
7c:0f:04:38:ff:37:5d:f4:05:28:b5:23:74:1c:34:9d:b5:4f:
8f:00:fe:72:70:a0:3b:d9:ae:64:dc:93:2e:6a:18:7b:e7:db:
18:70:7f:99:c9:af:0e:e7:cc:f3:e7:5c:18:a1:ca:21:40:6f:
2d:c0:8d:f8:14:7f:21:c6:17:0c:06:18:c2:e8:5b:76:89:53:
39:b8:58:4a:af:b0:95:0c:24:ae:3d:3e:79:47:1a:dc:a8:46:
1a:39:3b:e8:ca:3a:4a:34:d4:bc:2b:b7:b3:f2:46:03:3c:d9:
4a:84:c9:b1:e9:3d:e1:87:61:24:88:cb:c5:97:03:17:0b:ff:
7e:93:3d:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:59:25 2025 by rpki-client