Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
File: Yv8lPFoTQ6JWma4I51dnrya52-U.mft (raw, json)
Hash identifier: LkuqJQRBqezHFvRrByLB5gLFXg+WY5aF7zOyw39e/5c=
Subject key identifier: 1C:EE:2C:C5:0C:47:C6:D0:35:85:EE:9A:20:38:A0:3D:59:59:24:49
Authority key identifier: 62:FF:25:3C:5A:13:43:A2:56:99:AE:08:E7:57:67:AF:26:B9:DB:E5
Certificate issuer: /CN=62ff253c5a1343a25699ae08e75767af26b9dbe5
Certificate serial: 01987CE5B0F807B231BAABEB4B0585C55D93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv8lPFoTQ6JWma4I51dnrya52-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
Manifest number: 15AB
Signing time: Wed 06 Aug 2025 01:01:24 +0000
Manifest this update: Wed 06 Aug 2025 01:01:24 +0000
Manifest next update: Thu 07 Aug 2025 01:01:24 +0000
Files and hashes: 1: Yv8lPFoTQ6JWma4I51dnrya52-U.crl (hash: f9zGK0gtyn/xvxghkME463KXPPOHGPF6r2mTGCjkQmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yv8lPFoTQ6JWma4I51dnrya52-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:e5:b0:f8:07:b2:31:ba:ab:eb:4b:05:85:c5:5d:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62ff253c5a1343a25699ae08e75767af26b9dbe5
Validity
Not Before: Aug 6 01:01:24 2025 GMT
Not After : Aug 7 01:01:24 2025 GMT
Subject: CN=1cee2cc50c47c6d03585ee9a2038a03d59592449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2e:47:e7:53:bc:95:fe:3a:c2:7f:72:e4:32:
a2:0f:3f:03:95:51:d2:66:62:6a:bc:7b:cd:94:55:
f2:17:73:1f:b8:5e:e1:d3:23:b7:4b:fd:81:a0:5b:
04:8b:6b:9e:cd:87:6d:b9:a0:31:7a:da:8e:dc:aa:
4c:a2:1b:17:82:15:7d:43:3e:7d:7a:ea:03:46:95:
f1:2f:36:9b:55:0d:c8:3e:8c:b5:bc:30:5b:b5:d0:
04:3d:58:37:3f:ed:a4:23:29:28:fc:2b:1f:7c:01:
ac:5b:ff:39:08:e8:00:2e:6a:28:bc:9e:a4:ef:fc:
31:5e:c8:7d:f2:11:9a:d6:a7:96:6c:19:dd:71:98:
1f:d0:bf:31:fc:66:1a:90:a2:84:13:d8:4b:b7:ad:
12:30:fc:13:ca:21:4c:97:91:ff:07:7d:fa:9b:3a:
01:c2:d7:6d:d2:ba:8e:f2:98:d7:eb:d5:cf:4f:2a:
c8:1e:76:f8:c5:62:c2:e9:6b:47:29:a4:0f:68:be:
25:d7:65:f2:91:1e:26:50:ec:be:33:69:22:82:a9:
41:0a:da:f5:14:12:93:d7:ec:f0:c9:6f:fa:2f:3f:
92:ad:3a:22:eb:bf:c0:06:99:df:96:d4:25:2d:1e:
38:5e:e7:98:e3:1a:97:80:02:f2:92:14:c1:94:5f:
01:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:EE:2C:C5:0C:47:C6:D0:35:85:EE:9A:20:38:A0:3D:59:59:24:49
X509v3 Authority Key Identifier:
keyid:62:FF:25:3C:5A:13:43:A2:56:99:AE:08:E7:57:67:AF:26:B9:DB:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv8lPFoTQ6JWma4I51dnrya52-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f76a8e-1884-41bb-8113-f8d755b3d2a7/1/Yv8lPFoTQ6JWma4I51dnrya52-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:2f:58:8c:93:03:ff:46:ab:58:5e:a7:6a:d5:30:42:a8:09:
e7:2b:c0:b1:19:ce:a4:59:97:c6:ac:ad:30:45:4f:bc:e0:1d:
f9:b4:af:6b:a2:32:be:20:dc:ec:4a:2f:6c:d6:13:16:d6:a5:
02:89:aa:9c:d4:f1:51:d7:c3:e4:54:5a:88:d9:5c:99:36:83:
97:b5:e2:d3:9a:4a:b5:5b:34:e2:44:80:df:76:87:2d:fd:32:
a3:e5:32:c6:c2:5a:6c:37:f4:2c:ce:7f:59:6d:51:74:33:eb:
50:b6:37:c7:1d:6a:8a:c2:65:19:0a:f2:d6:6e:a6:8d:6c:0b:
c2:0a:a2:45:3e:a5:56:ea:7b:71:4e:ed:0f:e9:c6:fc:4f:49:
a7:5d:b0:eb:8a:8d:08:be:b1:da:e0:56:88:30:d3:2f:5e:07:
e8:e4:a2:8f:a2:9f:4e:4c:af:74:cb:cc:8c:54:5a:b7:0b:7b:
6d:a0:d2:3f:9b:01:04:31:13:54:f1:73:3f:55:1e:fe:b2:ea:
36:c8:ef:13:e8:07:0f:7a:6a:77:49:58:e5:6e:46:18:c3:3b:
25:aa:5e:9a:fd:03:08:e8:56:79:1f:6d:bb:57:08:e5:3f:f2:
10:3a:36:60:07:75:69:38:ba:75:0b:08:7b:41:9e:2b:0c:ea:
37:e2:fd:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:23:05 2025 by rpki-client