Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
File: yniqfjFrIfhDz7lYEMaAzdv6bm8.mft (raw, json)
Hash identifier: 0BMfHmm7CyRpCNgva065/vZcqRIl0plwUaUUIxynSg0=
Subject key identifier: 2D:60:F8:97:E2:99:39:81:90:FB:FE:63:3C:B2:C4:6E:B1:4F:4D:29
Authority key identifier: CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
Certificate issuer: /CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Certificate serial: 01987298E28AADCF102C5887097E1DD7DF67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
Manifest number: 0367
Signing time: Mon 04 Aug 2025 01:01:18 +0000
Manifest this update: Mon 04 Aug 2025 01:01:18 +0000
Manifest next update: Tue 05 Aug 2025 01:01:18 +0000
Files and hashes: 1: KmT0zBeAxHbx64CqcJ4Kw-HSMGw.roa (hash: g294VQOsqRVKkLhlE8NKqam6KvGQ9H8e4fukJsFTk1Y=)
2: yniqfjFrIfhDz7lYEMaAzdv6bm8.crl (hash: cikEBKK/h3cbOSCj/VA0F78vGPCWErlrvu+5jcoOBBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:e2:8a:ad:cf:10:2c:58:87:09:7e:1d:d7:df:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Validity
Not Before: Aug 4 01:01:18 2025 GMT
Not After : Aug 5 01:01:18 2025 GMT
Subject: CN=2d60f897e299398190fbfe633cb2c46eb14f4d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c6:7a:ae:bd:a4:5f:95:d3:9f:8c:c8:e8:63:
99:a6:76:db:d3:a7:c2:02:12:ac:ce:c4:08:d7:e1:
53:05:e3:c5:d3:5c:ab:98:4e:b2:4c:71:68:b6:39:
38:fe:d8:6b:5f:3a:c1:62:1c:8f:65:1e:63:29:0a:
5c:a1:52:86:8f:51:e7:49:88:85:41:11:a7:2c:53:
63:27:35:7f:dc:9d:b3:b9:ab:99:a3:df:05:84:87:
f4:2f:e3:fb:c5:a7:6c:58:c6:3c:4c:2f:2f:e3:ee:
c6:df:a2:06:91:a6:66:eb:4a:9d:e9:36:f0:47:ec:
06:2a:5c:c0:db:cf:b1:b3:e4:e9:be:d3:29:21:c2:
f7:e4:05:90:1b:7d:57:a2:25:e0:21:ea:fb:85:54:
aa:31:95:03:72:44:94:d4:38:5e:49:1f:2a:83:46:
00:39:14:24:11:a0:49:68:96:23:cd:4a:f2:cd:a3:
9a:d3:6f:0b:b3:d6:c0:64:5a:99:37:ec:83:f7:ed:
c8:cc:23:cc:c0:fc:84:e5:73:78:42:e2:d8:7d:a4:
3f:0d:b9:c7:4f:16:df:d4:6f:ef:08:a9:22:da:d5:
9a:3a:42:5c:7d:fa:f5:1d:63:dc:81:8b:b0:b0:52:
37:4b:f9:6c:54:15:a1:56:74:6d:5e:af:79:29:ee:
9a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:60:F8:97:E2:99:39:81:90:FB:FE:63:3C:B2:C4:6E:B1:4F:4D:29
X509v3 Authority Key Identifier:
keyid:CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:31:00:a6:e2:6e:59:21:ab:9f:6b:73:95:04:2b:4d:cb:3b:
4e:8e:b8:6a:4c:ec:ae:98:51:17:ff:3e:0f:1d:a1:ab:56:d2:
ab:b7:be:ec:0e:38:58:20:af:13:0c:b6:bb:c0:ef:28:14:0f:
26:e0:6e:ea:27:91:86:53:2f:17:79:c7:96:72:7a:9c:71:d8:
27:0c:1f:11:23:37:b1:ee:66:96:a1:79:89:1c:d3:b7:c4:96:
ce:6b:9f:88:bd:7b:a6:ea:a2:8e:cc:ea:b7:ab:11:e6:59:91:
eb:63:de:cd:34:07:4d:3c:34:b0:e0:39:d8:87:fa:ee:73:47:
cb:0f:dc:fc:5c:aa:fe:e5:3d:99:0f:6d:44:e1:53:cf:1e:30:
53:b4:b2:2c:5e:20:a1:81:cf:56:e7:e6:da:b3:07:92:e7:17:
56:c3:69:f9:18:eb:de:98:68:e6:86:6e:da:1a:c7:20:a8:94:
8a:71:1b:28:7d:73:b9:f8:c5:0c:e8:88:d4:c8:64:79:2c:e8:
d2:ab:9e:61:17:86:47:39:a3:a7:f1:99:58:58:e6:0f:cf:61:
fd:cf:b3:a9:14:a2:0c:ac:de:76:66:3d:cf:92:e9:f0:c7:5a:
a9:31:ed:61:f3:38:37:b2:54:79:60:ac:01:da:47:84:c9:73:
78:8c:25:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:09:03 2025 by rpki-client