Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json)
Hash identifier: tZhf/VxB88XhtXaPHclg+98klBetfj8f/++X1K6EW5w=
Subject key identifier: A6:52:55:B1:3B:CB:FC:B2:C4:72:91:57:8F:6C:50:AC:F8:F8:FE:56
Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Certificate serial: 01976BF3FDF8053B74987D6F0CE00DFEE159
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
Manifest number: 158C
Signing time: Sat 14 Jun 2025 01:00:41 +0000
Manifest this update: Sat 14 Jun 2025 01:00:41 +0000
Manifest next update: Sun 15 Jun 2025 01:00:41 +0000
Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: Sck2leDNrU+/128LkOOUAVSkpKtFjAHQzgmRt+98Kq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f3:fd:f8:05:3b:74:98:7d:6f:0c:e0:0d:fe:e1:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Validity
Not Before: Jun 14 01:00:41 2025 GMT
Not After : Jun 15 01:00:41 2025 GMT
Subject: CN=a65255b13bcbfcb2c47291578f6c50acf8f8fe56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:09:37:51:af:07:6a:60:a0:09:b2:3b:e1:e1:
94:05:14:ff:3b:5c:ee:0f:27:ef:f1:0d:54:ac:af:
bf:cf:ab:7d:d9:d7:c5:00:c4:00:be:be:02:f3:d4:
fe:7a:61:ea:95:03:35:c0:9b:a9:c8:06:97:9a:83:
51:84:29:68:fe:61:3c:92:0e:4e:27:7c:29:ea:df:
01:cd:2e:54:d1:6b:62:21:59:c4:bc:eb:3b:32:78:
19:70:e8:0f:ce:c4:90:81:01:ed:d9:d8:33:6c:cf:
fb:77:ca:46:1c:3e:0a:4c:1e:c0:71:d6:17:1e:5b:
4e:ec:90:7b:6d:12:76:c6:f1:06:55:b6:e0:90:8a:
06:37:cd:5f:4a:71:a8:81:a5:ed:ad:a8:61:53:01:
77:6b:39:83:2d:11:91:8c:fd:4d:02:0d:e1:2e:83:
06:b0:b6:d1:32:57:26:4e:a0:d4:60:bc:c0:57:85:
f8:12:2e:ad:f1:79:a0:db:6a:13:51:3a:d8:eb:22:
34:62:4e:db:89:5c:ea:7e:ec:cb:ee:ae:ee:bd:5d:
7a:4e:78:be:a1:8e:3f:14:18:a3:0e:4f:01:b9:5f:
6e:b0:27:6f:97:5b:3e:80:10:28:da:63:c8:56:9e:
90:77:a4:91:9f:3a:24:b5:24:cb:54:5c:2e:17:9c:
96:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:52:55:B1:3B:CB:FC:B2:C4:72:91:57:8F:6C:50:AC:F8:F8:FE:56
X509v3 Authority Key Identifier:
keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:0e:af:23:e3:4d:5f:33:53:18:9d:7f:22:b3:18:be:50:26:
02:0d:e4:dc:30:0f:fd:bd:13:d8:24:41:a5:c4:0c:c2:c1:4b:
fa:b2:ea:0e:f1:b4:19:bf:8b:7d:cc:5d:d4:f9:c9:fc:f2:ce:
d0:bf:12:5c:e2:e8:3e:41:30:75:d0:ba:7f:91:57:0b:21:15:
a6:66:c6:23:e4:e2:c8:f6:95:16:a2:c2:b6:57:0e:c2:58:86:
6f:07:1e:44:a5:46:73:f1:45:5e:73:81:0b:91:b2:12:cd:ae:
38:86:7d:d7:78:a5:9b:05:b6:8b:e4:63:6e:18:80:61:09:ea:
3d:8a:79:2a:93:9a:77:7c:37:31:8d:00:3f:21:94:6a:31:47:
9d:93:7c:c3:8d:cc:cd:1e:2a:07:85:0a:15:96:5c:5c:5a:8a:
fd:48:5a:1e:34:7f:04:b5:fe:2e:a7:df:d3:55:5d:a1:89:0f:
c0:31:d5:da:e0:04:54:e0:db:4c:c3:7d:8e:80:88:a3:a5:23:
4b:ca:40:c9:57:1d:ca:be:70:66:00:50:9e:eb:9e:05:df:b4:
2a:b6:b9:31:1a:7a:39:ce:60:92:cc:63:95:ad:51:ac:25:a8:
f6:ad:d0:2f:b9:e8:5c:6c:a5:a5:08:11:b4:1e:e4:e5:86:bf:
e4:33:6e:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:34:57 2025 by rpki-client