Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
File: yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft (raw, json)
Hash identifier: PNTmq/xPqor9rC/PA21aGhDUve6PPq5EbK9tqWf3Pjc=
Subject key identifier: 81:4D:A0:E1:1C:1C:25:9D:11:5C:06:CF:65:42:C7:1C:CB:2D:18:86
Authority key identifier: CA:18:3A:66:91:30:9A:79:D6:E6:60:5B:0D:5C:11:E3:FF:7E:91:94
Certificate issuer: /CN=ca183a6691309a79d6e6605b0d5c11e3ff7e9194
Certificate serial: 0199228C470E5DD51F13F6128C5D0E36922E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
Manifest number: 1600
Signing time: Sun 07 Sep 2025 05:00:42 +0000
Manifest this update: Sun 07 Sep 2025 05:00:42 +0000
Manifest next update: Mon 08 Sep 2025 05:00:42 +0000
Files and hashes: 1: yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl (hash: lxXloNyLmEOANag6Uxsb24TK1s7uSRis34dZlwxy2O8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:47:0e:5d:d5:1f:13:f6:12:8c:5d:0e:36:92:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca183a6691309a79d6e6605b0d5c11e3ff7e9194
Validity
Not Before: Sep 7 05:00:42 2025 GMT
Not After : Sep 8 05:00:42 2025 GMT
Subject: CN=814da0e11c1c259d115c06cf6542c71ccb2d1886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:89:e3:8e:c6:64:63:32:bb:50:10:92:a3:28:
5f:f3:eb:dd:8a:16:84:05:0b:22:ce:77:26:4a:15:
d6:05:37:36:31:a8:da:9f:5e:22:11:4b:26:a4:2c:
4a:75:2e:eb:3f:6c:c3:81:d0:0b:62:f0:a5:6c:f3:
a4:20:1c:39:c1:8c:0a:74:a2:eb:f1:3e:ee:a0:42:
0f:00:01:b3:cb:fb:6f:b5:40:17:c1:66:b2:d3:f3:
7b:1f:4a:55:31:4d:63:ce:ef:46:f6:be:ca:c1:c8:
71:95:11:1c:3c:47:3a:22:0c:d6:66:f7:e4:e5:c2:
38:e8:e7:ea:ec:3a:bf:16:e5:a5:40:99:fa:99:af:
94:20:23:ec:da:0e:1b:de:2e:0b:bb:6c:a5:d0:fc:
c1:05:70:6f:e6:6a:41:b6:c1:14:6f:78:3e:2d:60:
e0:4b:ce:bf:08:63:8b:62:9c:05:8a:a9:cf:97:68:
ef:3c:96:a4:93:64:ef:55:34:7b:70:0d:fc:02:c7:
86:5c:ad:b6:a1:92:fb:13:da:8f:f0:16:f7:af:15:
9a:bd:67:ca:aa:f6:e7:bb:12:d0:c8:ec:f0:e3:16:
6a:05:b2:f3:6a:7d:9a:78:1b:fb:43:dd:0a:02:b2:
2d:23:a5:5f:fc:dd:ab:27:7c:3c:23:d8:de:e9:0b:
be:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4D:A0:E1:1C:1C:25:9D:11:5C:06:CF:65:42:C7:1C:CB:2D:18:86
X509v3 Authority Key Identifier:
keyid:CA:18:3A:66:91:30:9A:79:D6:E6:60:5B:0D:5C:11:E3:FF:7E:91:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:ed:a1:0e:35:1a:9a:02:9f:5e:a0:57:81:9e:e3:93:b3:12:
da:9a:c9:52:9d:23:77:20:8c:26:a0:67:3e:47:47:de:88:ef:
d5:3c:00:41:cd:3a:9a:be:d1:af:11:e0:23:d8:1c:5c:d2:4f:
39:85:ce:67:d9:66:4b:f5:aa:64:43:e3:ba:b8:1f:a7:74:67:
f1:3f:fa:74:cb:35:f8:60:f1:c1:51:08:a0:77:32:ec:d0:0d:
ba:2b:2c:38:5d:b1:dc:0b:61:35:41:bd:c1:12:71:5a:ed:2e:
58:39:ba:34:74:ad:10:88:fa:9b:3e:ca:84:eb:2d:c2:12:61:
a6:58:ae:0c:c7:ef:ba:c1:f8:85:e8:0b:e6:c2:e1:1c:7e:54:
dc:dd:91:61:d7:00:6e:8e:42:ac:a5:93:46:80:de:8a:3f:c4:
60:c4:16:4d:fd:66:59:4f:8d:75:ce:f5:e6:17:c4:68:6d:49:
a3:71:90:ff:d2:fd:11:1c:7e:91:93:bc:97:b5:ee:13:56:1b:
e1:45:e6:93:ea:cb:5c:1e:5a:a5:af:d5:39:6a:4e:b8:b6:cf:
9f:73:11:fd:f9:18:e3:83:54:f8:84:e0:3c:9a:56:14:60:b4:
2e:c0:2c:f5:a5:02:e6:08:c7:7f:01:c9:3d:f6:00:28:ea:df:
0a:c4:a1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:38:15 2025 by rpki-client