Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
File: yYDRnDv8xARxVndvAqNJiY5GuQ0.mft (raw, json)
Hash identifier: IbqjrAAXXYtcqPxQ2kO8v2NOYLx2nwLRFC8oczUFh84=
Subject key identifier: 45:23:72:DF:3A:D0:27:97:5C:20:4C:C9:88:37:22:BE:3E:BA:C0:BA
Authority key identifier: C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D
Certificate issuer: /CN=c980d19c3bfcc4047156776f02a349898e46b90d
Certificate serial: 01988CFE62841B394E196576AACD1C6B1560
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
Manifest number: 093F
Signing time: Sat 09 Aug 2025 04:02:17 +0000
Manifest this update: Sat 09 Aug 2025 04:02:17 +0000
Manifest next update: Sun 10 Aug 2025 04:02:17 +0000
Files and hashes: 1: yYDRnDv8xARxVndvAqNJiY5GuQ0.crl (hash: +kiPpa0V/2f7TvAGvZuOcz2zm/UsYWAGeyxGEK8Rirs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fe:62:84:1b:39:4e:19:65:76:aa:cd:1c:6b:15:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c980d19c3bfcc4047156776f02a349898e46b90d
Validity
Not Before: Aug 9 04:02:17 2025 GMT
Not After : Aug 10 04:02:17 2025 GMT
Subject: CN=452372df3ad027975c204cc9883722be3ebac0ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:52:f1:46:db:75:48:e6:fd:39:d9:43:a2:be:
1b:3c:ab:29:2a:59:93:ce:24:ff:eb:03:8e:04:de:
bb:e3:0c:84:18:80:91:09:e0:20:61:ae:9e:e1:80:
1e:bc:28:e8:6e:81:31:f1:9f:ac:cd:12:ef:92:7a:
47:88:16:dd:c6:53:60:b9:97:28:30:f2:e5:3d:ea:
47:e9:7f:cb:ff:54:cd:95:1e:80:5f:4f:da:53:03:
04:02:c7:d8:de:da:06:7b:67:3e:80:e5:b9:dc:b9:
07:bc:7e:a1:b3:ac:5d:ca:41:cc:80:04:5b:3b:79:
18:c7:4c:70:c6:d6:7a:26:88:18:ce:d3:5c:a3:b4:
43:4c:69:f0:09:03:d3:5b:93:32:29:2b:4f:f8:e1:
be:df:44:ba:d9:de:0d:b9:62:0b:c8:4e:1b:2b:f4:
e4:89:e7:45:9d:7c:d3:ad:8e:70:99:21:bb:c1:be:
76:a2:c8:37:79:27:b5:6c:96:f0:c6:44:e4:fe:0a:
6c:d2:a4:5c:8b:f3:c1:db:68:df:15:d6:c0:a1:0d:
84:c8:c4:b1:13:7b:e2:9e:e2:de:e5:78:8b:26:a1:
8b:4d:08:6d:2d:69:3c:8b:ce:64:ec:e7:0e:e2:c5:
ef:42:fb:0d:ec:49:85:de:e1:ad:1a:9a:7c:26:39:
84:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:23:72:DF:3A:D0:27:97:5C:20:4C:C9:88:37:22:BE:3E:BA:C0:BA
X509v3 Authority Key Identifier:
keyid:C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:35:1f:e6:1e:8d:2a:29:a4:aa:dc:ac:90:dd:64:0e:b4:66:
52:29:85:33:9b:a3:59:45:9c:94:7b:d6:75:45:e7:9e:b1:32:
6f:59:fc:d2:cb:75:f2:18:ec:ce:df:d5:7c:27:e6:43:76:4e:
4b:b0:41:5d:ba:11:c7:be:f8:fd:48:94:07:fa:d1:3c:b5:65:
d2:32:00:b6:62:a5:f4:01:22:e1:9a:00:31:00:84:ff:6d:86:
7e:7c:5b:4f:07:d7:a1:62:0b:7a:53:43:f3:94:b9:20:9c:c2:
26:c5:75:8b:e3:e8:45:ef:50:0f:02:66:57:14:32:13:b6:00:
b4:ec:82:00:36:4e:90:ec:f3:7d:66:8c:de:1b:b8:49:82:d4:
5e:b1:96:ad:a6:f9:af:b2:2d:8e:92:21:4d:c6:bf:42:75:71:
ef:06:b0:d3:8b:61:f4:46:76:e9:7d:36:0a:54:2a:cf:39:09:
49:9f:c2:36:78:96:f8:f7:4a:5d:e3:bd:df:45:c4:b8:4a:a4:
08:41:70:b2:5b:6e:68:47:a7:96:17:0c:20:c5:c7:58:85:04:
a2:0e:28:9c:28:27:74:ef:fa:bb:a8:89:56:cb:a3:26:b3:d1:
a3:b1:b7:d0:f4:64:3d:c4:da:6c:9e:8b:2d:de:37:aa:5a:ba:
7a:db:15:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:46:46 2025 by rpki-client