Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
File: YQy4N7bSF3jkw9u5aWefDxxQtIo.mft (raw, json)
Hash identifier: ztTtH8C7i90GpwJiJT6gaJf9dCFbh8T9Ch3c5Bq+SfQ=
Subject key identifier: E8:C9:D4:94:1F:3E:63:37:6A:2A:2D:31:95:D0:1B:D3:20:CE:0F:3D
Authority key identifier: 61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
Certificate issuer: /CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Certificate serial: 019873E1E01323AD1F36A82392C6525B58F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
Manifest number: 0E2F
Signing time: Mon 04 Aug 2025 07:00:39 +0000
Manifest this update: Mon 04 Aug 2025 07:00:39 +0000
Manifest next update: Tue 05 Aug 2025 07:00:39 +0000
Files and hashes: 1: YQy4N7bSF3jkw9u5aWefDxxQtIo.crl (hash: t0NxrfKv7n6CFBtd+X6pKJAQ7V69feChhSImepIPCt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:e0:13:23:ad:1f:36:a8:23:92:c6:52:5b:58:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Validity
Not Before: Aug 4 07:00:39 2025 GMT
Not After : Aug 5 07:00:39 2025 GMT
Subject: CN=e8c9d4941f3e63376a2a2d3195d01bd320ce0f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:99:c7:18:a0:f4:e0:53:fa:dd:11:80:d2:dc:
0d:aa:96:8c:34:ce:8c:81:50:b3:c7:64:44:18:83:
fc:ee:e9:eb:cd:6b:02:08:45:07:86:30:a7:93:d5:
cc:47:40:85:87:97:4e:0a:36:d0:d7:52:60:15:59:
03:9b:ed:49:f9:40:90:ca:fb:4a:51:47:7d:3c:5f:
c8:58:60:db:f4:e2:92:ba:d3:14:a6:6b:95:4e:5f:
10:85:5d:a6:5d:2e:85:c9:87:2c:88:1b:9d:1d:85:
92:53:4b:86:c4:7b:35:00:62:43:df:ec:3c:16:9a:
38:e1:f5:68:18:7e:fb:ac:da:73:8d:7c:42:b8:35:
a4:99:13:c0:d8:a3:3c:14:7d:0f:a3:06:5b:26:cf:
89:b0:e1:49:31:6f:12:f2:f5:55:6e:49:a8:4c:81:
84:88:ab:95:c9:02:d9:c0:93:ea:7e:33:ca:a9:e0:
49:dd:1a:2e:8d:ea:21:e5:ce:58:f4:c0:de:b2:86:
b5:e6:c1:6e:ce:51:f8:ed:6a:9f:15:73:dc:3d:14:
63:2a:5f:da:ed:47:aa:1c:fe:9a:c2:66:97:b5:87:
81:a8:54:0c:48:66:89:c9:2d:e3:c2:c3:8e:71:86:
8c:80:52:25:79:a0:5d:2e:af:4a:03:97:28:bf:da:
82:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:C9:D4:94:1F:3E:63:37:6A:2A:2D:31:95:D0:1B:D3:20:CE:0F:3D
X509v3 Authority Key Identifier:
keyid:61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:ff:80:01:c9:30:d0:1a:4c:4e:77:1a:64:ae:f8:30:09:1c:
fe:81:60:70:7f:38:72:80:12:08:29:03:82:2a:00:89:4a:83:
a5:36:48:a8:55:55:25:50:e7:3c:4c:8f:71:0e:2c:b9:17:7f:
45:7c:9c:6e:87:02:ee:60:7e:f6:1e:13:c4:a7:6c:2d:da:55:
e2:56:b9:3f:f0:37:c3:64:e9:8a:5f:d0:3a:3b:85:e1:31:b4:
9a:1c:e1:26:bf:61:3f:d9:27:12:d7:83:5c:c3:34:18:9b:bf:
4a:23:bd:c1:ac:81:8d:7f:b2:de:d4:78:6a:df:fb:52:a3:3a:
da:dc:f0:a6:26:77:18:31:e7:04:0e:02:48:34:c6:61:12:fe:
55:74:75:c5:be:a8:e0:1d:cd:c8:b8:a8:5d:65:b1:50:31:99:
6d:0f:a3:e4:29:72:2f:94:75:67:ba:d5:1f:c8:87:b8:2c:db:
3e:5b:a7:b4:c1:e6:7c:50:fa:f3:8b:8b:f0:7b:29:c3:29:24:
44:d5:4e:e9:97:e8:8e:82:bf:3d:99:20:9a:8f:b3:0c:db:23:
c8:df:24:1a:41:19:9a:4f:5c:19:53:9c:9f:c4:f6:14:de:63:
ad:ce:ba:0c:22:1c:b8:65:ff:88:1d:fc:2a:9d:1f:1a:9c:2b:
8a:6c:56:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:15:57 2025 by rpki-client