Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: hhflHeP+QUOkPxguUuvXZWpWShfwMJ3dfyvqnoV0TsQ=
Subject key identifier: 72:B8:4A:B0:DF:1D:93:1B:C3:2B:7D:34:C7:A6:B2:DE:56:6B:0C:32
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 01989CDDC3F08F89749CA424BA23EDCC4B8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0C3D
Signing time: Tue 12 Aug 2025 06:00:36 +0000
Manifest this update: Tue 12 Aug 2025 06:00:36 +0000
Manifest next update: Wed 13 Aug 2025 06:00:36 +0000
Files and hashes: 1: 7-uxb2sVoc0kcAT2m9SP5qVnZ8E.roa (hash: acdZUKxa+ye22RHZ+hlpmz4eeOUGVIjJiD1cAB8HEbo=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: XytwUbbLKzCkfDPQxl2ybVOEN6JWZOaw3s7zl0LtB9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 06:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9c:dd:c3:f0:8f:89:74:9c:a4:24:ba:23:ed:cc:4b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Aug 12 06:00:36 2025 GMT
Not After : Aug 13 06:00:36 2025 GMT
Subject: CN=72b84ab0df1d931bc32b7d34c7a6b2de566b0c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:82:35:cc:e2:25:3e:0d:08:e1:e9:b3:72:67:
ca:8b:71:51:15:62:8e:bf:38:cb:f2:92:db:40:51:
ed:4b:43:77:27:4e:40:23:f4:88:35:a5:b6:f1:b7:
8e:ce:d9:06:96:ac:81:3d:b3:b2:e1:99:47:21:59:
78:71:d8:c2:47:9f:61:f5:f1:72:f7:f9:bc:ab:4c:
ac:03:83:64:2c:e1:09:6f:f5:c3:44:fd:08:52:96:
cb:46:15:60:92:f9:ea:00:2c:8c:21:a9:0c:8c:1d:
68:4a:0e:0d:dc:05:8c:0e:36:9f:a1:5b:09:e1:20:
51:61:68:2d:71:30:88:a5:c2:3a:99:96:b8:4d:ab:
50:cc:d9:72:fe:c4:44:87:94:91:ee:f7:1e:0d:76:
d8:10:aa:2e:3b:37:e1:b8:98:0d:f4:3f:9f:e8:44:
5f:a1:1f:6c:ce:85:b1:2c:c5:52:7e:e5:f7:a9:09:
94:09:21:d9:18:07:f3:13:99:67:41:30:78:ee:dc:
e1:b8:79:35:05:fc:91:e8:e9:e2:e3:d8:29:2b:38:
94:69:ae:fc:77:07:2b:d9:8b:ac:24:ba:b8:1a:2d:
66:7b:2c:be:a1:a2:09:b0:73:48:01:b3:13:45:5a:
d7:ce:80:04:f3:91:80:36:23:5a:89:4e:b3:74:3e:
96:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B8:4A:B0:DF:1D:93:1B:C3:2B:7D:34:C7:A6:B2:DE:56:6B:0C:32
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:4b:3d:15:c5:07:9c:32:fd:b0:2f:11:6c:31:d5:e9:9d:c2:
4f:33:50:7f:50:12:47:4a:57:16:a8:a7:e8:50:64:93:e4:9e:
ea:4c:a9:4d:de:35:01:8f:b5:c2:69:97:80:57:32:9d:d8:0e:
40:e4:36:e2:40:6e:fd:fc:5c:4c:6f:00:a8:ce:d6:b7:8b:59:
cf:9f:79:c2:85:ee:65:61:b0:68:16:2f:ca:19:8e:2a:c2:ea:
97:07:22:dc:38:2a:2a:6b:6b:92:8b:99:48:d2:9e:5b:34:89:
b2:64:b9:77:0c:65:cc:49:16:d5:dd:b8:5d:77:aa:c7:14:28:
d3:9f:81:35:b8:4c:13:81:a3:87:4b:31:64:ef:d6:54:a3:87:
d4:bd:6d:3b:5f:86:e2:08:92:3d:5f:e7:1c:28:b1:50:ef:00:
26:1c:3a:5c:7d:a3:4f:db:e0:d3:8b:36:a9:3f:10:58:ee:83:
08:1d:67:d4:ac:6c:4b:c0:43:ff:f1:f3:32:0f:0b:16:b5:2a:
51:ea:70:f7:4a:ef:dc:4d:fc:b3:b3:3f:36:4b:6f:9a:f8:6b:
1d:27:c4:22:fb:10:11:47:56:66:56:66:6d:03:a9:ff:0d:0c:
44:e1:01:da:1e:28:06:87:cc:a7:85:9c:11:52:a7:4a:d6:88:
08:c1:fc:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 13:44:29 2025 by rpki-client