Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json)
Hash identifier: ro2HesJEbN+YcOPb1MxDVEs6b01QnTzf4Pwo3MLqmjw=
Subject key identifier: 1F:5E:7A:6F:44:44:F4:70:E5:41:A2:C0:36:AC:EE:08:E5:A0:8D:44
Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Certificate serial: 01988DA1E3D7AF506A27B2444E496BA0FF3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
Manifest number: 1625
Signing time: Sat 09 Aug 2025 07:00:53 +0000
Manifest this update: Sat 09 Aug 2025 07:00:53 +0000
Manifest next update: Sun 10 Aug 2025 07:00:53 +0000
Files and hashes: 1: UvHXXFoVL7W8kRf_CmjRtC48uH4.roa (hash: E8q/i3b6Anio6852XqG98vgAFVWa9Xn560kQh/u0aSY=)
2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: BXcEecp6+qU6x2jvInpLAglxmEuxFtAfBVxdwB+u4wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:a1:e3:d7:af:50:6a:27:b2:44:4e:49:6b:a0:ff:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Validity
Not Before: Aug 9 07:00:53 2025 GMT
Not After : Aug 10 07:00:53 2025 GMT
Subject: CN=1f5e7a6f4444f470e541a2c036acee08e5a08d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9f:98:84:ea:94:d1:61:43:e4:a0:a1:de:83:
86:af:c6:19:46:b3:c2:e2:87:16:7d:6e:84:fc:95:
62:cd:3c:ee:80:87:a0:0e:85:40:6c:d7:53:84:61:
72:f7:b5:c5:97:b2:59:99:d9:6c:bd:b8:1d:ab:fa:
78:04:be:30:09:c4:2d:16:8e:af:19:97:eb:e5:d9:
36:70:a3:8c:33:33:7a:f3:31:ff:4f:fb:ed:32:e5:
77:4a:b5:c1:3b:2a:a6:9a:fd:52:03:0d:df:db:5b:
9a:13:79:05:11:6e:3a:2c:bb:ab:82:00:0d:31:32:
82:20:32:1f:8d:17:92:b5:62:7a:52:ee:fa:6c:3a:
bd:a8:c1:b7:ea:27:39:c3:8e:b7:84:d9:14:d6:c1:
e2:4b:f0:43:1b:f2:34:22:7b:61:66:dc:ae:af:f7:
66:9b:b7:4a:7e:6f:f0:5e:b1:fb:29:aa:40:ca:f8:
8d:30:bb:6f:98:0d:3c:24:52:16:dc:55:91:29:1e:
4e:5b:99:0b:68:3b:cc:50:f4:fc:1b:c5:e6:9e:99:
2c:a4:d7:e8:59:ee:85:44:ca:f5:5c:7e:86:a4:3c:
9b:63:c9:d3:a0:9f:ff:c2:e0:e8:7c:a0:79:69:d8:
e6:53:ca:db:ee:80:21:0c:c9:78:f1:3c:79:d9:58:
37:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5E:7A:6F:44:44:F4:70:E5:41:A2:C0:36:AC:EE:08:E5:A0:8D:44
X509v3 Authority Key Identifier:
keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:d4:1e:4f:51:92:fa:d3:fd:c1:b5:b1:6d:6c:dd:9e:c3:24:
6f:aa:6e:ba:da:22:5c:1a:3b:2c:f6:77:36:05:4c:51:99:c3:
b4:38:65:e4:14:7a:6e:bf:80:8a:bc:ea:e1:ae:43:28:10:72:
c4:eb:7d:34:a7:8f:e7:0c:13:33:bf:7b:dc:2f:fc:2a:53:d6:
09:53:18:ff:72:23:d7:e5:ad:65:f0:6e:ed:ce:22:e1:c4:88:
91:c8:a7:21:fa:be:fb:0b:01:bc:82:d5:13:90:dd:3f:e9:fb:
70:9a:b8:22:34:d6:d2:06:a7:6f:5a:d3:82:59:38:21:88:17:
ee:e9:d4:86:bd:a5:15:f3:2e:33:2f:51:63:9f:63:06:18:e5:
10:24:4b:43:3a:06:c2:e5:fd:38:93:e8:06:f2:a8:c7:c8:a1:
dc:fd:d0:32:7b:9f:3a:be:61:f4:a5:55:44:6d:26:c8:17:93:
c8:2a:00:40:01:10:ce:b0:cf:ea:ff:70:cb:68:13:08:67:81:
38:5c:f1:cc:b1:09:42:e5:66:9e:42:e8:95:48:2e:ee:da:15:
f6:30:dc:14:03:18:12:f3:04:1c:ff:e2:60:82:46:63:07:18:
e5:87:2e:a1:bb:88:07:e1:e1:0f:22:3e:4e:7d:ef:57:7b:bf:
9c:cb:4a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:32:13 2025 by rpki-client