Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
File: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft (raw, json)
Hash identifier: KzflRqP7q4G89sjctUPhYwmnxEbK5Bch9vs0rlI7gIU=
Subject key identifier: 22:EF:97:50:FC:0E:A2:53:1C:B1:4A:8F:E9:68:0A:38:5E:39:FC:F6
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 01987CAE5CA696DBCE93DF16CE7D0BCB7AB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
Manifest number: 0BFE
Signing time: Wed 06 Aug 2025 00:00:58 +0000
Manifest this update: Wed 06 Aug 2025 00:00:58 +0000
Manifest next update: Thu 07 Aug 2025 00:00:58 +0000
Files and hashes: 1: 2ATvNbnGawNlZZ5eknfDSbXFIzQ.roa (hash: tXSd9lU5fCgD64Z/fTQv/A1ZJJrB3ZcLdqsIZET5sKI=)
2: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl (hash: y4RJz98BfkvFWsynijIt0DDk9lXvv8UPYvtXdbJWC1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:ae:5c:a6:96:db:ce:93:df:16:ce:7d:0b:cb:7a:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: Aug 6 00:00:58 2025 GMT
Not After : Aug 7 00:00:58 2025 GMT
Subject: CN=22ef9750fc0ea2531cb14a8fe9680a385e39fcf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e9:cf:a4:b0:12:cd:3b:e6:35:39:03:46:81:
6a:ab:93:0b:82:ee:05:8d:a0:fe:d4:bf:9d:ed:bf:
ff:c3:f5:04:bc:d8:d2:14:e0:eb:9b:ec:b9:3e:11:
39:90:6b:61:5f:4b:50:4b:7b:bf:59:02:cf:44:f5:
91:78:2c:0f:8a:83:8c:30:48:e7:82:6e:6a:f7:cb:
60:6e:5b:9c:35:29:8b:91:7e:1d:90:88:0a:05:e0:
04:f8:20:cb:62:12:78:03:30:4c:44:d3:8b:d2:87:
5e:24:e1:dc:de:b8:08:c8:1e:60:90:24:76:16:bc:
ae:b4:8c:15:f5:7b:ce:dd:f6:31:19:8f:72:98:a9:
88:ad:eb:02:23:c4:7d:31:25:cd:aa:e6:db:c2:bb:
66:16:1a:2d:8e:20:1e:04:76:f6:2b:23:0a:78:06:
f9:44:1b:49:ac:47:c4:43:a9:fd:b3:eb:36:13:1e:
69:24:92:0d:b6:81:80:90:ae:8b:e4:56:f2:c6:92:
90:b6:77:ae:15:0c:43:09:c9:0e:2f:dc:e4:2f:3b:
bc:2e:d8:ee:0b:50:ee:fe:fd:82:ed:cf:38:a5:55:
6b:07:63:77:5b:e7:ad:a7:77:ed:13:04:ac:9c:7c:
c4:30:ef:bd:ca:da:dc:29:6d:39:18:11:10:f7:93:
1c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:EF:97:50:FC:0E:A2:53:1C:B1:4A:8F:E9:68:0A:38:5E:39:FC:F6
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:52:ee:c3:4e:aa:48:a7:be:6f:3b:fe:a4:15:c0:78:e3:5b:
b8:39:3a:3b:64:b8:a0:c0:55:88:23:c6:b8:2f:f3:3d:04:80:
ae:07:01:35:59:65:27:ce:b8:c4:88:55:e0:fb:71:cc:94:5c:
5b:d1:54:4e:5f:c9:4c:3d:99:39:9a:8d:6a:59:a7:e7:77:42:
0f:d9:c7:9c:be:90:dd:da:4d:16:aa:85:58:76:9f:99:b9:c0:
77:72:23:e5:96:21:d0:d9:1e:1c:54:fa:9e:09:48:48:27:33:
06:4e:f5:f8:d3:a0:8e:68:5a:92:89:e1:41:e5:52:b9:74:a6:
66:36:5b:91:27:1b:01:30:dc:cb:da:13:31:d8:7d:37:e1:ed:
81:6e:6b:e2:b8:fc:05:8c:f1:8d:b7:ca:78:20:e0:47:d1:e5:
dd:8b:e7:20:42:b6:c8:a4:99:60:db:5d:ef:95:eb:c8:27:24:
56:64:8f:1a:54:77:2e:de:ed:fc:6e:e7:5b:1f:3d:ed:68:9f:
a2:81:c6:2d:2b:e3:b9:26:dd:6d:e2:3c:c8:91:1d:af:18:b6:
ed:b3:64:b7:1c:c1:09:41:4f:7c:69:9a:fd:57:28:0e:37:f1:
4e:af:50:f5:7c:18:07:b8:44:fb:a4:5c:92:b9:42:57:60:87:
24:04:2c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:41:51 2025 by rpki-client