Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
File: YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft (raw, json)
Hash identifier: 68QpvPN+QyFyA4QubKRSkTQMp+5fGSVjQG8ny4EwJ3c=
Subject key identifier: 88:12:4D:7C:56:8C:15:BE:E0:09:18:E1:0E:9D:19:EE:75:C0:AE:03
Authority key identifier: 60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
Certificate issuer: /CN=60f31d820c32400dec0c60496178994d57752acc
Certificate serial: 0197D587353FC0A826E31318157D3A8D57E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
Manifest number: 15C1
Signing time: Fri 04 Jul 2025 13:01:37 +0000
Manifest this update: Fri 04 Jul 2025 13:01:37 +0000
Manifest next update: Sat 05 Jul 2025 13:01:37 +0000
Files and hashes: 1: YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl (hash: YisI+WUpfrBSPsR2OB7ciDCimoOWq3MZVdOra73WTpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d5:87:35:3f:c0:a8:26:e3:13:18:15:7d:3a:8d:57:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f31d820c32400dec0c60496178994d57752acc
Validity
Not Before: Jul 4 13:01:37 2025 GMT
Not After : Jul 5 13:01:37 2025 GMT
Subject: CN=88124d7c568c15bee00918e10e9d19ee75c0ae03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:21:d2:3c:9e:5b:b7:74:56:dc:b6:49:0d:4a:
de:5d:32:4e:e8:7d:33:67:2e:ec:88:d1:90:32:78:
7e:57:ad:15:00:3b:20:77:e7:2a:e3:52:64:3f:0c:
60:8f:2e:ce:d3:37:03:7e:0c:ed:43:68:6f:e0:ce:
35:48:30:7a:02:ba:c2:81:cc:82:87:ee:19:8a:b6:
02:3d:54:a0:99:a0:6a:d9:ed:43:76:8d:00:09:af:
47:c9:a6:3c:9d:21:7d:19:c2:ad:d8:4e:bd:ac:69:
ee:c0:6f:21:e2:56:4e:f9:93:5b:aa:12:dd:c9:46:
ce:e1:e1:0e:db:53:90:c0:90:78:42:21:de:42:f3:
c1:35:82:bc:46:5e:89:6f:36:ea:86:11:fc:fb:eb:
3c:45:7d:f4:af:9f:4c:29:1e:5f:a5:d3:21:47:5c:
7e:a3:a4:58:87:02:f1:b5:09:40:be:81:0e:36:35:
80:11:0c:89:5b:60:d7:82:06:ea:07:a5:ad:18:19:
56:56:29:cf:f3:1b:d1:fc:2c:1c:b7:d2:aa:fd:63:
5a:ba:5e:3b:04:46:80:2c:14:e8:d4:db:2a:6b:43:
cb:08:d6:5c:3b:25:a3:f9:e4:f8:f6:f5:95:8d:9d:
b9:dc:0a:21:e0:0d:18:26:19:e8:dc:fe:24:7b:36:
fa:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:12:4D:7C:56:8C:15:BE:E0:09:18:E1:0E:9D:19:EE:75:C0:AE:03
X509v3 Authority Key Identifier:
keyid:60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:d4:65:84:fe:cf:3d:b0:59:e5:b6:2a:65:50:98:86:98:23:
4e:55:99:6a:cb:a6:c4:84:0a:df:a8:76:57:cd:12:9c:3d:42:
72:e5:f0:12:dc:3b:22:45:de:24:13:8e:62:79:c3:6e:61:76:
12:33:20:78:da:5f:91:12:a8:06:44:1c:e3:1d:79:90:d3:b1:
04:28:cc:6c:1f:af:9f:0a:a8:9b:66:eb:6c:80:be:ed:36:46:
bb:81:f2:9f:b3:bd:28:72:ea:96:cc:5c:90:1b:33:c8:9f:6f:
a5:38:eb:0b:ce:05:3b:4b:04:4c:f6:e0:11:86:74:5e:39:e5:
4a:d8:9b:8b:92:38:f8:da:2f:00:da:a9:ad:6d:14:41:41:80:
05:b7:2b:20:2b:0a:bb:28:2f:fd:cb:f5:ca:26:8a:47:d6:3b:
81:ca:f6:57:e8:80:14:af:d9:38:bb:ef:72:c3:fd:06:7d:9c:
97:39:85:3e:6f:87:c6:99:2c:f2:9b:23:64:5c:ee:bf:03:21:
0f:e8:4e:84:cd:8e:c5:cf:5f:32:93:be:ba:72:56:24:22:ba:
ec:6c:5d:68:06:4f:6e:f9:97:cb:85:e9:e2:20:d8:18:28:ff:
a8:1d:4c:d6:88:0c:10:79:a8:2d:fe:fa:3d:08:df:d8:80:76:
ad:1f:11:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 15:39:50 2025 by rpki-client