Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
File: YB3AD5pIG0FQhrFDp91M2h_7JHA.mft (raw, json)
Hash identifier: zfZa+q4OtjE4GCigBrJYTA6nsEKI5ykaSEzRMHGDhoY=
Subject key identifier: FF:55:A7:B8:07:D8:52:CE:0A:97:EA:FC:40:BB:EF:AE:03:B3:44:B2
Authority key identifier: 60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
Certificate issuer: /CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Certificate serial: 01984A0A3F9859C950324FA2A57608EA3D98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
Manifest number: 15FF
Signing time: Sun 27 Jul 2025 04:00:41 +0000
Manifest this update: Sun 27 Jul 2025 04:00:41 +0000
Manifest next update: Mon 28 Jul 2025 04:00:41 +0000
Files and hashes: 1: 4mIaRiVfusRCW_nZ919kue73VcU.roa (hash: KAlnZdYdnEt6W3Qh7SxuikxG/eJq1ZmaN4m/5vXa+us=)
2: YB3AD5pIG0FQhrFDp91M2h_7JHA.crl (hash: KIf82jQmzh56BF6XaIMtyag9nQ3K4HSSoQq75kNuiUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:0a:3f:98:59:c9:50:32:4f:a2:a5:76:08:ea:3d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Validity
Not Before: Jul 27 04:00:41 2025 GMT
Not After : Jul 28 04:00:41 2025 GMT
Subject: CN=ff55a7b807d852ce0a97eafc40bbefae03b344b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:19:8e:7c:4b:49:e2:ff:52:b0:3f:0f:47:0d:
01:b9:d3:67:6a:bc:a7:c0:86:76:1a:ce:1c:ef:a4:
5d:9c:07:7e:8b:4d:1e:09:f9:1e:29:58:36:14:20:
db:67:69:a1:4c:d2:a1:62:45:dd:0b:07:18:3a:94:
49:db:1b:12:ab:6b:38:b6:a9:3a:48:03:27:13:52:
0a:4c:f7:80:d4:7c:58:6e:31:22:e6:1e:2c:95:25:
43:f6:41:23:e1:bc:b6:5a:38:ae:29:af:a4:4c:79:
bb:25:7d:2e:80:cc:82:cf:87:ab:42:53:ab:63:27:
c4:1d:5b:e6:6e:25:11:a8:86:38:84:20:a6:c8:5e:
50:13:b2:9e:56:74:57:31:97:06:e5:9e:eb:0c:72:
50:e1:4f:54:88:92:94:39:6c:b6:c8:cb:9a:23:e2:
0c:ae:72:ad:ee:b3:78:0a:c8:76:f3:b8:3a:00:27:
eb:68:12:48:2e:6d:e4:8e:68:a7:12:bd:70:03:9a:
0d:8f:98:13:27:38:98:6f:90:c4:ee:53:2d:e6:4f:
79:96:3f:59:cf:d5:7c:1e:aa:6b:32:1f:16:83:94:
20:61:67:c0:9f:49:8a:d6:3b:2f:63:18:a8:7e:01:
bc:70:84:79:4b:7d:28:ae:42:d9:8d:f0:28:9e:ea:
f4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:55:A7:B8:07:D8:52:CE:0A:97:EA:FC:40:BB:EF:AE:03:B3:44:B2
X509v3 Authority Key Identifier:
keyid:60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:24:12:0f:5e:11:a6:cd:59:b5:dd:e2:74:d7:78:12:84:39:
75:4e:01:4b:f1:1d:ff:a1:5a:1d:ee:9f:4c:2b:a9:0d:98:cf:
4a:29:85:89:ad:37:a5:e5:a8:a2:ce:31:18:6a:cf:c3:31:f1:
90:e8:5f:5a:41:db:72:ca:12:59:cf:cb:f1:0e:06:72:b6:05:
93:29:fd:85:12:33:90:35:35:97:23:4d:70:38:39:be:b7:be:
2a:c1:9f:77:8d:82:96:32:a8:0d:b1:01:a2:dc:38:21:61:be:
0b:af:ab:7e:50:48:2a:ff:54:fa:c6:0d:14:fa:e3:66:21:db:
19:f6:ca:41:fb:50:ad:3e:ab:8e:a4:84:fd:b7:c4:1e:f5:49:
13:3d:5f:0c:2f:78:e6:af:29:0d:97:c9:6e:27:b8:a4:1a:97:
98:5c:a0:82:b3:3e:5e:ad:df:6c:8a:1f:f3:00:d6:45:a2:63:
33:27:42:e1:47:b1:fd:24:17:f6:a0:ce:9b:df:ca:4f:35:63:
e1:d4:dc:9e:c2:fb:67:d8:65:e5:2d:4a:cc:59:a1:b3:ff:2c:
44:ef:3e:30:3b:5e:30:b6:5b:62:83:49:5b:4b:ac:03:bc:e7:
e4:fa:71:87:a0:6c:61:d5:b4:7e:05:69:a0:8c:66:af:04:09:
82:9f:f8:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:50:49 2025 by rpki-client