Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json)
Hash identifier: Ru4FZdLwBgkzAQyywGkScj3HxoEuecgrmV8kpE4MMGM=
Subject key identifier: 4C:96:0D:FC:48:D1:ED:E6:C2:90:59:84:05:30:DF:A3:90:86:31:F6
Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Certificate serial: 0198936D4C2482690A6A7C5292745ABBCFFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
Manifest number: 1625
Signing time: Sun 10 Aug 2025 10:01:10 +0000
Manifest this update: Sun 10 Aug 2025 10:01:10 +0000
Manifest next update: Mon 11 Aug 2025 10:01:10 +0000
Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: tiuzHawAMYuZLJItrJgSlu/+R0s8aroj7oqWzXPD5Ss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:6d:4c:24:82:69:0a:6a:7c:52:92:74:5a:bb:cf:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Validity
Not Before: Aug 10 10:01:10 2025 GMT
Not After : Aug 11 10:01:10 2025 GMT
Subject: CN=4c960dfc48d1ede6c29059840530dfa3908631f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7b:67:b6:b5:a1:ad:14:64:c1:20:7e:b5:5f:
04:82:42:23:af:67:f1:9c:8a:49:3a:29:01:ea:ea:
e5:b2:03:6a:5a:67:0a:7f:f0:3f:5e:fd:f4:22:9c:
82:d4:1a:69:cd:f6:3b:f2:a1:6b:ae:cb:e1:2d:f0:
af:19:2a:c7:5f:0e:5d:5e:bf:fd:7e:68:7d:a4:9f:
f6:b7:02:02:f8:73:5d:ee:c5:89:7b:97:2c:b8:9e:
ba:c1:c6:bc:6a:0e:64:2f:d4:6b:23:f6:16:96:be:
fe:1f:2f:c8:59:3d:2e:d4:5d:e2:72:31:ed:1d:47:
d1:e4:03:f8:b5:6f:d6:a5:86:18:d0:30:44:3a:68:
db:9f:f1:23:b8:c4:70:88:ca:bb:a0:8b:15:3d:0b:
10:1a:e6:59:09:ac:19:44:59:0e:15:94:66:f2:0f:
ae:05:23:cf:d3:94:10:37:ba:22:3b:a7:6b:94:13:
4c:d3:8d:88:4a:e0:79:d8:73:a6:48:c2:88:9e:1b:
00:e6:ed:55:f1:75:c7:2e:a3:63:d2:16:85:41:4c:
19:c7:2e:80:ca:09:3b:d9:99:8f:bd:c6:1b:86:c4:
dc:d3:c3:a1:09:06:9d:03:bd:64:0f:7f:5f:ef:f1:
a1:98:0b:d1:92:fc:68:da:49:7c:79:77:da:5b:b6:
6b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:96:0D:FC:48:D1:ED:E6:C2:90:59:84:05:30:DF:A3:90:86:31:F6
X509v3 Authority Key Identifier:
keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:73:f0:d9:d7:34:f2:8b:27:6c:a6:8a:99:a1:30:40:20:3f:
19:35:94:d4:75:4f:89:c5:4c:b1:c2:7d:24:1a:89:c2:26:fd:
89:d5:dc:09:f1:85:20:e5:0b:37:53:09:b8:a0:8b:81:9a:09:
91:6e:c2:78:95:95:fb:a3:f8:db:3d:88:3a:2e:91:c3:59:ad:
37:30:9c:d6:2d:36:3d:a9:4f:f6:78:18:14:c9:8f:0a:a3:83:
23:3b:72:63:d8:7a:d6:68:51:d5:13:79:08:e4:1d:1e:a0:73:
6d:61:53:48:0b:b0:53:86:2e:3a:d7:40:85:6d:f3:51:97:89:
4e:5b:fa:bd:b9:6a:f0:a1:d7:64:b0:93:13:90:f8:9e:90:6b:
79:30:45:6c:d5:01:a3:ff:51:58:33:c7:be:6c:1f:7e:50:f1:
cf:cf:aa:f6:d7:05:fc:41:79:28:e8:bb:df:3f:77:e3:3f:ec:
f4:4f:90:65:db:c6:18:7d:0f:c8:2d:a7:b7:d0:49:cd:0a:9c:
80:7f:8c:35:d6:05:f9:75:d9:f2:cd:1c:46:fc:b7:4f:88:69:
cb:8e:c7:ed:ab:2d:d3:80:26:cc:68:a6:8c:23:11:f4:df:78:
f4:91:ff:bc:d1:57:ea:19:56:d4:fd:a1:37:0f:8d:8d:da:11:
19:f9:0c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:57:38 2025 by rpki-client