Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
File: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft (raw, json)
Hash identifier: QQHhc460chKzPMVk5gaohyx3D9dFaHA5zHkDyU7Y2ls=
Subject key identifier: 36:44:34:8D:C5:0D:C2:C2:67:A3:A1:B7:FB:10:3E:EC:02:1E:B1:A2
Authority key identifier: C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
Certificate issuer: /CN=c8544c778152f0fd85e5dcb44904f001e5987424
Certificate serial: 01988E7D6A7FFF9145734D89EE58000A1122
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
Manifest number: 06D0
Signing time: Sat 09 Aug 2025 11:00:40 +0000
Manifest this update: Sat 09 Aug 2025 11:00:40 +0000
Manifest next update: Sun 10 Aug 2025 11:00:40 +0000
Files and hashes: 1: S6l_0JOcWBI56o1Ky2VXoMdeNbs.roa (hash: Wj6L5jF5/gTOwMGZzw/KKTZV7RAbfIUF0qejcJRN4Ao=)
2: nUgVe_wCiJGaFj6dh7AjUlPsEn0.roa (hash: jaTBLGxMAzmUNw1xz6jc+rhc56U1GYTnqK8npgQkUZU=)
3: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl (hash: k5r8tV2hzU3J8PMrf/drudFqxjBPYT6I/2C0DLys7Wc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 11:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:7d:6a:7f:ff:91:45:73:4d:89:ee:58:00:0a:11:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8544c778152f0fd85e5dcb44904f001e5987424
Validity
Not Before: Aug 9 11:00:40 2025 GMT
Not After : Aug 10 11:00:40 2025 GMT
Subject: CN=3644348dc50dc2c267a3a1b7fb103eec021eb1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cb:99:f7:c0:e3:c7:01:48:83:09:d5:0e:f9:
8d:83:79:6f:a3:6b:39:55:ae:37:dc:d2:9f:56:54:
d6:ed:95:a7:fc:3c:e7:9f:fc:d1:6a:ef:12:a1:d9:
8a:d2:dc:d9:af:44:08:d6:96:73:34:3e:93:a9:85:
9c:b2:3f:92:b5:f4:59:8d:d9:f1:71:aa:5c:4f:fb:
5f:96:26:49:ae:55:19:bb:b5:4f:08:46:af:36:cf:
4a:f5:f0:68:40:89:e6:73:5d:c3:f1:d4:e7:f8:75:
6e:61:2e:c5:55:49:28:5f:5b:dd:b4:f9:2a:82:80:
10:c8:d8:41:99:d6:b8:4c:5c:b2:f7:73:92:86:84:
0c:25:c4:25:1a:6b:c6:ae:b0:e1:5a:dc:fb:1b:34:
6f:94:a5:a7:23:7b:27:0a:7e:5e:53:bb:aa:1f:48:
e5:36:e6:a6:f0:81:4d:ff:e1:98:38:4f:e0:22:6a:
75:be:7e:10:aa:81:f1:39:4e:71:17:ad:9d:25:bd:
2b:68:57:51:ae:7d:b5:10:85:d1:7c:06:72:7c:b0:
96:e0:eb:48:b7:41:a9:d3:fc:d1:77:25:7f:68:43:
46:27:ce:c2:f4:1d:6e:37:3b:cf:4d:d4:96:90:30:
36:42:bb:b9:e9:d6:da:35:b4:9b:86:ba:bd:7d:c8:
83:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:44:34:8D:C5:0D:C2:C2:67:A3:A1:B7:FB:10:3E:EC:02:1E:B1:A2
X509v3 Authority Key Identifier:
keyid:C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:94:58:09:6d:d0:4f:06:7e:16:e4:15:4e:06:e9:d5:04:03:
23:26:37:0e:61:e5:e5:7e:39:30:54:2f:a4:b0:83:e9:e4:c3:
ac:4f:a1:d8:14:a5:b5:41:65:cc:69:81:39:94:3b:f8:cc:6e:
ba:42:8b:2b:d2:0e:7f:63:da:91:f7:0b:76:bf:e9:ed:59:96:
e3:1e:96:04:1c:d6:70:9a:fb:61:74:28:e0:b9:46:eb:c6:4f:
f3:15:19:e1:4e:be:c7:f2:06:39:fd:59:01:c3:69:06:fa:b2:
f3:d0:5f:0b:21:45:9d:cf:db:61:22:0d:70:29:cf:e3:d7:d4:
ce:c3:ad:73:b5:3c:2e:65:aa:70:56:39:de:bb:79:fd:19:cb:
9d:89:a3:02:39:e1:76:e8:25:c2:84:5d:f0:73:54:ea:2b:42:
0a:f8:cf:09:2a:01:4a:13:83:06:b1:6d:d6:e9:41:ba:17:de:
dc:ee:70:d1:5b:dc:d1:2c:c2:f1:88:e8:6a:49:e2:56:6e:f6:
fc:de:fe:ff:4d:93:b7:10:3b:99:3d:08:2d:ec:f9:e0:ab:c9:
d4:fb:20:01:67:c7:b7:01:3a:3c:0c:7d:3f:80:9d:4b:8e:9a:
8c:77:ea:53:cc:95:e4:28:f5:c9:40:fa:86:66:d0:eb:4f:88:
a3:4b:11:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:40:50 2025 by rpki-client