Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
File: sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft (raw, json)
Hash identifier: 09IT1gIih6O8hA7tRe6CKwwSzbiAXgmZhWmY9FS2ojY=
Subject key identifier: DC:67:31:88:1B:92:5B:8B:C9:31:AD:CC:C4:D2:3C:A5:D0:54:40:DE
Authority key identifier: B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
Certificate issuer: /CN=b24d588df20b32db9787d77864394cd7a66d4030
Certificate serial: 0198963714E7DC5250D19DB9D456DEE67D3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
Manifest number: 150D
Signing time: Sun 10 Aug 2025 23:00:48 +0000
Manifest this update: Sun 10 Aug 2025 23:00:48 +0000
Manifest next update: Mon 11 Aug 2025 23:00:48 +0000
Files and hashes: 1: YAynT2rFqTF7GPjWR_vJKmQMToY.roa (hash: Nj9HjgClC5YboiO8+CeqUE2/z4iqwPpiEtBTjxVCiAo=)
2: sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl (hash: QWei6LfsuJJ4adXEsttXDDAWY9H9NvNu2zgEAIZhLm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 23:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:37:14:e7:dc:52:50:d1:9d:b9:d4:56:de:e6:7d:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b24d588df20b32db9787d77864394cd7a66d4030
Validity
Not Before: Aug 10 23:00:48 2025 GMT
Not After : Aug 11 23:00:48 2025 GMT
Subject: CN=dc6731881b925b8bc931adccc4d23ca5d05440de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:dc:9a:ad:ef:36:c4:60:ee:72:22:cc:f0:f2:
30:69:16:1a:25:67:77:5a:9f:4a:a3:61:98:1c:c1:
33:8f:20:36:fb:42:98:5c:f6:c8:50:1a:d0:81:fd:
1c:df:39:b6:0c:ac:a0:66:df:df:d6:f2:1e:17:ea:
7f:7a:30:1c:e8:41:d0:50:25:27:8b:29:7e:9d:fd:
9d:24:01:74:8d:b1:2e:14:80:c5:00:01:f7:ae:ee:
0b:a7:6f:ad:18:60:18:c5:af:e3:a9:b6:0d:18:c2:
1d:c1:9b:bb:39:9d:ec:1e:fa:d8:12:46:c4:98:cb:
22:73:f8:58:5c:9b:e0:09:54:b1:14:24:e6:cd:c9:
e5:a9:22:be:f2:0d:fa:48:51:75:c6:b7:64:6b:95:
10:28:d7:d4:b0:38:77:bd:68:50:c3:d0:00:2d:b9:
33:94:f2:3e:62:2b:3c:54:f8:e2:9e:29:74:e6:ab:
22:2c:c8:f5:c8:f1:0e:ef:2a:30:4f:77:2d:f2:6e:
09:6b:28:7f:a2:bf:dc:15:4c:f3:f1:38:3a:60:d6:
37:1a:e0:0d:98:6f:05:73:3d:dc:15:1d:10:ad:de:
d3:35:2c:aa:e4:68:77:db:5e:ff:6c:d7:e7:ff:38:
1f:4e:17:f6:f6:64:9b:a9:24:db:a4:bb:3b:10:33:
85:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:67:31:88:1B:92:5B:8B:C9:31:AD:CC:C4:D2:3C:A5:D0:54:40:DE
X509v3 Authority Key Identifier:
keyid:B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:c8:4f:75:ce:8b:e7:fd:40:b7:5d:a6:02:34:3e:ed:58:f6:
ce:dc:ab:46:41:28:4f:b6:8e:a6:b5:7c:da:65:3d:88:ab:14:
1a:6e:27:e0:a8:d0:97:d6:2e:02:ce:cf:53:b6:5e:23:a0:94:
96:19:29:d5:ea:a2:51:0d:0f:4e:96:4a:33:26:58:1a:bd:b9:
23:f6:8c:ec:80:80:e2:c4:53:7d:9c:9d:f2:4b:7e:52:bb:ec:
ab:9b:85:19:d7:71:ab:42:2b:04:4a:65:be:0e:c6:3b:e2:6f:
13:e8:56:26:ef:b2:1e:ff:48:74:53:a4:7a:da:b9:f6:3b:6e:
2b:fd:9b:bd:c0:91:8b:8f:cc:7a:ed:a6:f3:f5:ae:8b:71:53:
cf:20:34:9a:df:5d:1a:ab:93:4a:91:25:4e:9a:6d:7d:ff:fd:
98:ba:a7:e0:21:f9:ca:a3:d6:c1:54:c7:48:18:0e:98:cc:fc:
45:60:a6:3b:99:62:8d:c0:e9:d0:d4:00:23:d4:b7:ef:aa:ec:
c2:28:47:dc:7e:e9:cc:da:02:25:d1:3d:b0:d4:22:08:3d:5b:
4e:b8:ce:1f:0e:b3:d8:12:8f:35:68:c7:58:3a:64:fb:a3:0a:
5f:1e:19:44:f2:8e:1c:8b:13:9f:bc:c9:7a:93:c7:e8:38:cd:
36:34:44:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:50:30 2025 by rpki-client