Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
File: YFUCYwejbuxeaBw5SK71Oif5lzY.mft (raw, json)
Hash identifier: DpEr2th7gkYNU8tF87V8JPZect1T3T2wubDEmZHU1Tk=
Subject key identifier: 98:69:34:CB:9B:F3:81:6D:47:F6:8B:49:DA:2B:51:DD:01:CB:4F:29
Authority key identifier: 60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36
Certificate issuer: /CN=6055026307a36eec5e681c3948aef53a27f99736
Certificate serial: 01982859E89CA8DC95BF1B2FFB9E5D8807ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
Manifest number: 0C
Signing time: Sun 20 Jul 2025 15:00:37 +0000
Manifest this update: Sun 20 Jul 2025 15:00:37 +0000
Manifest next update: Mon 21 Jul 2025 15:00:37 +0000
Files and hashes: 1: 7jIqwtDbMy9vdRo0YUm5EEwEiSU.roa (hash: zcVysxxJ8InMIpqNYEgmGN9PoMJVnhc3HSBD/6SlWos=)
2: YFUCYwejbuxeaBw5SK71Oif5lzY.crl (hash: uaZklKwksOrdRaBIxsLw1ueW/eHFzMyczzsCVtLULQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:28:59:e8:9c:a8:dc:95:bf:1b:2f:fb:9e:5d:88:07:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6055026307a36eec5e681c3948aef53a27f99736
Validity
Not Before: Jul 20 15:00:37 2025 GMT
Not After : Jul 21 15:00:37 2025 GMT
Subject: CN=986934cb9bf3816d47f68b49da2b51dd01cb4f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a7:d6:61:50:f4:2d:7b:5d:ef:3c:56:a6:41:
0f:30:bd:ee:77:1f:df:ea:4e:b0:76:fa:53:29:df:
83:7b:a8:22:8f:02:98:8a:86:b6:34:b2:66:38:23:
12:f7:d7:45:0b:aa:a1:7d:ee:c3:46:15:c4:1c:97:
18:0b:4f:d2:7b:d3:07:4c:cb:db:63:eb:c7:30:ea:
95:f4:14:20:83:e8:58:14:5d:fc:57:07:15:d2:08:
e0:85:cf:ff:68:c6:82:94:1e:10:ec:aa:e9:dd:74:
d7:af:31:be:20:d2:38:9a:41:a9:b0:80:60:8f:65:
11:a1:57:6b:52:4e:ab:29:61:73:28:39:1a:69:70:
d8:b6:d9:c1:4a:a5:6b:12:52:bc:17:b2:9d:ef:b1:
80:c7:2d:49:6d:ca:74:16:03:4f:ec:4c:31:8d:89:
dc:f1:54:db:0e:e8:90:35:10:db:ba:c8:f9:6b:d1:
72:39:7c:f3:37:87:7c:8e:2a:31:95:20:41:b0:3e:
f4:f8:42:e2:ec:87:30:4c:c7:95:bb:fd:c7:2f:ca:
ba:35:31:80:9b:40:7b:24:8f:50:0d:60:35:1a:5e:
de:42:29:51:04:ca:9b:11:4f:75:a2:96:8f:95:89:
52:80:c5:f9:af:75:ae:78:d8:0a:d1:7b:cb:20:0a:
ea:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:69:34:CB:9B:F3:81:6D:47:F6:8B:49:DA:2B:51:DD:01:CB:4F:29
X509v3 Authority Key Identifier:
keyid:60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:30:32:64:62:b7:4c:38:49:2b:5a:1e:a2:69:94:60:93:00:
c3:de:06:d8:a8:da:00:de:48:96:72:3d:dc:f7:6f:c8:33:24:
c1:5b:d2:e5:21:71:17:38:ba:3a:ef:0e:68:0e:64:ea:01:c8:
e4:4f:40:e2:7d:04:1b:b6:ae:f4:04:9a:17:aa:a2:0c:e8:f1:
87:53:9f:1a:7c:0f:6d:32:55:78:92:35:7a:f6:ff:b4:7b:48:
5c:0e:1e:5d:ef:86:d7:40:fb:5f:2a:27:a8:a5:62:9d:90:4a:
50:ff:00:c4:4e:a8:7f:54:9f:65:81:a2:1d:d7:f5:a0:1e:98:
0c:4e:06:79:85:20:14:9f:71:01:92:00:b9:c7:55:64:95:5b:
39:e8:bd:e6:2f:7f:5e:34:19:35:93:92:87:27:9a:bc:23:03:
e3:69:cc:00:bc:7b:5e:cf:ab:b0:ea:15:15:58:ef:eb:99:f3:
8a:f3:55:28:31:5f:a9:5f:c3:f5:1d:83:82:04:85:0b:ce:81:
ac:4e:e3:c1:a5:24:5a:fb:87:88:2a:20:31:50:38:99:97:f7:
dd:b7:bc:31:9e:80:96:7e:df:e7:b8:6e:6a:48:c1:c2:f0:88:
2a:6e:1a:63:63:e3:51:4c:00:93:1f:57:0b:75:de:44:f6:99:
67:cf:38:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 16:24:46 2025 by rpki-client