Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
File: YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft (raw, json)
Hash identifier: qxJarUyw4XWubk4xzbf0k50ouBaIq/U3id9nDhNCahM=
Subject key identifier: E1:FA:2E:1E:A3:A8:84:09:4B:9E:84:79:5E:9F:CF:10:50:C9:EE:7A
Authority key identifier: 60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
Certificate issuer: /CN=60f31d820c32400dec0c60496178994d57752acc
Certificate serial: 019921B237898C6E84ED49C65B65C8568FBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
Manifest number: 166D
Signing time: Sun 07 Sep 2025 01:02:31 +0000
Manifest this update: Sun 07 Sep 2025 01:02:31 +0000
Manifest next update: Mon 08 Sep 2025 01:02:31 +0000
Files and hashes: 1: YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl (hash: D85hKrC2PkZs6iwd0+kfvYgg761sWyulJejk1fE6iQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:37:89:8c:6e:84:ed:49:c6:5b:65:c8:56:8f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f31d820c32400dec0c60496178994d57752acc
Validity
Not Before: Sep 7 01:02:31 2025 GMT
Not After : Sep 8 01:02:31 2025 GMT
Subject: CN=e1fa2e1ea3a884094b9e84795e9fcf1050c9ee7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ce:95:60:d2:18:39:ed:da:7a:ff:e1:07:67:
7c:0a:bd:97:68:00:dd:cf:96:61:d0:17:85:84:73:
c5:04:b3:0f:9e:a9:60:47:f9:2d:67:e1:86:85:5b:
7f:97:24:31:b4:91:59:1a:e9:94:41:ba:fe:56:cf:
b8:f3:f5:e9:09:60:16:5c:d7:d9:07:59:cf:93:84:
d6:1a:2b:51:28:58:5e:47:21:a9:9d:5c:57:ff:af:
ca:4d:40:ef:cb:57:e6:1a:d2:f8:35:f6:82:a9:f0:
5c:00:f1:64:6a:63:8e:ce:fe:62:90:a0:75:28:24:
5d:5b:a0:ac:88:1b:17:ad:bf:35:2e:2f:b4:bd:7a:
32:75:e0:11:30:12:a4:47:fd:7c:a2:0e:71:ba:25:
ad:83:dd:6f:90:f2:35:6d:fa:5f:ed:5d:e6:a1:88:
5e:e4:74:62:7b:61:7f:9a:66:9c:b6:0d:0c:b7:54:
c2:8c:60:29:17:6e:9d:4c:03:43:db:55:3a:d9:1e:
f6:91:45:4f:97:d7:89:fa:eb:82:21:72:3f:0a:5b:
ee:75:89:c6:b1:cc:45:9d:e1:35:33:ba:81:c3:d5:
64:d7:a1:21:8c:f9:ef:c6:d3:b2:3a:d4:46:31:57:
71:0c:a0:e6:9e:1a:ad:05:69:9e:2d:95:47:e8:b4:
36:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FA:2E:1E:A3:A8:84:09:4B:9E:84:79:5E:9F:CF:10:50:C9:EE:7A
X509v3 Authority Key Identifier:
keyid:60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:71:5b:d2:fa:70:9c:81:cf:3f:94:98:21:dd:7e:b0:7e:db:
e7:dc:1b:74:53:b7:1f:e5:4c:20:0c:2c:76:0d:5c:cd:38:48:
df:17:a9:01:e7:4c:99:35:78:9d:2b:e7:e8:7a:2c:80:fd:77:
09:ff:2f:03:db:bd:b2:8f:20:9d:85:23:2b:8d:ca:75:85:04:
f4:30:03:c1:f6:09:72:dd:64:b3:9b:df:8a:fe:51:18:3b:22:
92:38:33:8c:50:fd:9f:f9:43:66:3e:27:15:6d:c6:69:61:cb:
96:73:f7:dc:43:5a:86:5c:b1:46:a0:5d:c2:8d:88:07:7b:f5:
f1:e2:e0:ab:7b:71:46:15:96:42:8f:34:ac:c0:ee:17:22:6b:
54:97:67:e9:a8:8f:82:a5:a2:7d:eb:dd:38:03:59:97:70:1c:
c1:71:65:b0:16:57:cd:62:15:5f:8f:dd:9c:65:90:f4:6a:da:
7c:46:0e:0a:f4:7a:16:90:5e:4f:6b:ee:71:6f:2e:98:b9:03:
08:81:73:2f:d3:4f:bd:25:7e:46:29:1e:72:a3:17:af:f9:bf:
12:31:85:4b:1e:82:e7:c7:72:59:c1:23:57:53:36:9b:cf:cc:
2a:61:97:3c:af:8b:32:2a:59:32:36:b4:8a:06:4a:4e:da:64:
b7:e3:ef:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:16 2025 by rpki-client