Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: KTr/Zboz+BnMhRCvIxQhNCQwfbMTOkal/qSIHfAA+1M=
Subject key identifier: 89:D8:9B:DD:65:40:9E:10:29:68:98:7F:BD:B2:50:3F:C0:13:7A:13
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 0198917EC2236471D3D59CCB594C7BDC8A4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 0647
Signing time: Sun 10 Aug 2025 01:01:00 +0000
Manifest this update: Sun 10 Aug 2025 01:01:00 +0000
Manifest next update: Mon 11 Aug 2025 01:01:00 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: QW3loIyz/w+gx+qv62iIRX1g+AUnjLGSi5qiWNT6sCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:7e:c2:23:64:71:d3:d5:9c:cb:59:4c:7b:dc:8a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Aug 10 01:01:00 2025 GMT
Not After : Aug 11 01:01:00 2025 GMT
Subject: CN=89d89bdd65409e102968987fbdb2503fc0137a13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:32:95:ad:e5:59:fa:68:26:7a:90:fc:5f:60:
18:a5:5e:5b:3c:57:b5:84:57:d7:11:16:d7:08:3c:
36:f8:2b:53:ca:40:c7:61:32:51:03:5a:e2:ff:3e:
d7:83:2f:ca:7c:41:28:8a:06:6c:47:45:44:47:f9:
72:48:e1:ae:44:67:8b:7f:0e:c4:52:eb:b8:4a:2e:
25:40:4d:de:72:c6:f4:91:e1:eb:30:50:e0:6a:98:
6b:eb:8c:28:5d:29:0c:1f:f7:24:46:c5:c5:af:84:
3c:bd:6b:45:a6:03:cb:dc:f2:2f:bf:31:95:5d:69:
65:cd:74:23:dd:57:bc:29:60:eb:7c:54:ce:80:27:
78:58:f5:35:4b:bb:a2:80:8b:7d:91:34:5f:21:32:
93:01:89:41:6d:f6:67:64:a8:69:d2:df:c1:10:d4:
c9:8e:54:a7:62:ad:17:52:06:02:21:a2:d6:64:02:
82:13:03:59:d9:43:4e:87:56:fa:c6:16:0f:b2:a7:
83:e5:e7:58:51:a7:b9:cc:e0:0a:c1:23:b7:50:2a:
1d:e4:47:36:d2:d1:d5:48:c0:c2:91:55:27:c8:fe:
19:25:e2:48:02:ab:a4:74:b3:cd:56:47:63:06:8d:
d1:fe:cd:1d:9e:2d:87:f8:77:11:af:99:a6:34:44:
70:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D8:9B:DD:65:40:9E:10:29:68:98:7F:BD:B2:50:3F:C0:13:7A:13
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:f4:27:0d:5d:ca:60:8a:10:0f:c4:b8:fd:31:88:c8:0a:1c:
b8:14:36:7f:88:2d:e3:9a:58:51:a1:71:a0:0b:7b:c6:29:0b:
e1:d8:0f:77:da:88:fa:6d:6d:82:54:3e:cd:78:78:a7:0d:d3:
e0:48:28:44:90:41:a9:d2:47:bd:15:8d:33:04:64:43:cd:d0:
27:f7:92:e4:7c:64:d9:43:f9:18:c8:18:09:94:13:32:8b:76:
89:14:5b:f7:0b:75:ef:86:c6:5f:b2:8f:d1:6d:4f:ce:1c:75:
af:29:84:71:46:b9:2b:c2:bd:45:34:56:5c:f5:ea:1f:35:ac:
44:dd:57:44:54:7b:15:48:9a:dc:48:e1:62:f0:82:5c:bf:10:
dd:d7:1a:02:93:a0:d3:0c:e8:a6:3d:87:ee:c4:de:aa:49:6a:
7c:fc:6f:6e:87:22:bf:43:25:4c:f1:27:f4:ab:31:98:ce:97:
74:d8:24:2f:7f:a1:b0:75:1d:1c:5a:f2:a5:e7:a2:ba:15:1f:
e0:a8:a1:c2:d9:d9:6e:2d:40:29:ea:f8:3f:d2:84:12:6a:28:
20:47:f7:bd:fb:90:67:9b:b9:78:e6:04:55:9e:50:8c:41:e9:
88:7d:fa:de:22:94:08:09:d5:7d:26:3e:7b:8a:7f:02:85:4c:
59:f9:64:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 03:44:07 2025 by rpki-client