Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: v/Um99vBo18WThg14A+aIuag5DxbBz3gkmlzfOqjM2Q=
Subject key identifier: 8D:D7:59:FA:22:FA:9B:DB:B7:D1:26:1A:0F:B3:9D:3C:26:A5:8F:07
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 01985456B473EABF52C160AC77FB82B810FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 1607
Signing time: Tue 29 Jul 2025 04:00:25 +0000
Manifest this update: Tue 29 Jul 2025 04:00:25 +0000
Manifest next update: Wed 30 Jul 2025 04:00:25 +0000
Files and hashes: 1: NA5mgzoDK6jbbKh48XeliWtbDYM.roa (hash: 9nIV3wU01lTdftDhSQVjEb+D2h3DXok24aEDQGNAM3o=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: B/9rG7V3F6o3FPHZFuAWNFBn1C0aP9OZiOZxGigFKbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:54:56:b4:73:ea:bf:52:c1:60:ac:77:fb:82:b8:10:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Jul 29 04:00:25 2025 GMT
Not After : Jul 30 04:00:25 2025 GMT
Subject: CN=8dd759fa22fa9bdbb7d1261a0fb39d3c26a58f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0c:ee:ee:9c:a7:5f:d9:be:aa:3c:0b:7a:e9:
ec:90:db:9a:92:ac:da:1b:29:45:2d:58:4a:96:a7:
45:83:7e:0a:f6:c7:35:37:49:b0:1f:59:62:5b:eb:
3a:6f:dd:bd:0b:17:3a:77:c7:6c:95:95:4e:52:35:
2d:01:f7:8d:61:c0:8a:c1:43:66:12:a5:71:10:ca:
05:64:5b:3a:46:f1:14:8e:1e:90:7f:c3:fd:88:4d:
e9:0c:3d:06:7f:2c:fe:e8:77:0a:c2:53:5d:a0:ba:
f0:07:bb:30:33:eb:7e:b2:7b:35:4c:69:4e:8d:b0:
c8:06:0e:96:6b:0f:62:5b:2b:f3:22:82:a2:c0:40:
65:40:10:85:e5:13:3f:c7:7b:08:3c:08:b0:c1:a4:
6f:e9:07:21:5e:b3:22:d8:c1:24:0e:ac:cb:43:ea:
ef:64:0a:8b:de:7c:30:a6:1c:6c:48:1f:aa:c7:37:
48:a6:8d:fb:06:07:f0:84:84:13:1d:bf:46:48:37:
43:c5:b9:cc:e7:81:33:b9:7e:99:c4:c5:8e:92:b2:
3c:c5:7e:54:2f:42:61:a3:70:31:41:41:cc:d5:6f:
c8:c8:e4:3a:7b:7e:31:f4:f0:39:61:67:a6:a9:f0:
dc:a0:c7:0e:75:1b:69:2b:ac:11:4f:c9:65:eb:bc:
1f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D7:59:FA:22:FA:9B:DB:B7:D1:26:1A:0F:B3:9D:3C:26:A5:8F:07
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:25:b2:04:9d:e1:35:95:0c:26:bc:54:7a:85:11:14:79:04:
8c:22:16:60:6e:2a:03:a7:15:c4:8d:4e:cf:a3:8a:11:2d:3e:
3c:5d:0f:9a:56:ef:55:0c:1f:3b:d9:01:8b:30:66:ec:d3:78:
ad:67:78:40:77:f2:33:bd:dc:6a:4c:04:93:d6:db:e3:0b:51:
92:a4:63:57:60:c2:f3:ad:8a:d7:e5:18:95:b7:db:45:64:20:
f3:d5:77:d5:25:5e:c2:2e:85:9d:33:88:c8:60:b2:e6:f7:f1:
f5:dd:f0:fa:99:ad:c3:bd:a3:7e:51:f7:e2:a9:1c:96:28:fe:
70:7a:41:3f:04:0c:ba:96:fa:bb:10:5f:2b:bb:de:c7:fa:85:
14:b2:ee:d9:ad:2b:c3:ea:90:11:52:a7:a4:91:d5:40:7d:15:
ee:51:51:6c:76:ba:f7:d2:d6:27:0f:da:c9:d9:af:44:2b:b8:
a8:d4:a7:6b:f9:fc:2b:84:9d:47:27:c0:9f:3e:24:81:5e:b2:
26:50:70:a1:a7:66:3c:dc:ab:eb:b0:e4:b6:f8:3d:27:d3:ab:
9d:3b:e5:ea:6f:5d:e8:9a:f9:59:45:3b:a4:36:59:39:e1:b0:
0f:3e:a1:4f:23:d9:f2:cd:75:b0:a1:58:2f:12:3b:c7:b8:dd:
f3:dd:23:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 06:31:04 2025 by rpki-client