Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
File: YzMz1xUm9TOxwc8L6fwyG2IzltM.mft (raw, json)
Hash identifier: 8MnrE2XSNNW5R8V4gUDWRMtAGabgSRiHckAGSgmSc/Q=
Subject key identifier: 2A:5C:EB:F1:A3:61:8F:AC:23:2A:0C:90:96:6B:EB:55:4A:D8:A5:14
Authority key identifier: 63:33:33:D7:15:26:F5:33:B1:C1:CF:0B:E9:FC:32:1B:62:33:96:D3
Certificate issuer: /CN=633333d71526f533b1c1cf0be9fc321b623396d3
Certificate serial: 019916BF37FFBD940E18CD6629927836DEF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzMz1xUm9TOxwc8L6fwyG2IzltM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
Manifest number: 0700
Signing time: Thu 04 Sep 2025 22:00:54 +0000
Manifest this update: Thu 04 Sep 2025 22:00:54 +0000
Manifest next update: Fri 05 Sep 2025 22:00:54 +0000
Files and hashes: 1: YzMz1xUm9TOxwc8L6fwyG2IzltM.crl (hash: GAxlJJ58q0V0Ka5DyOPP130E7Vqmgr51ldD5+wsNxXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
rsync://rpki.ripe.net/repository/DEFAULT/YzMz1xUm9TOxwc8L6fwyG2IzltM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:bf:37:ff:bd:94:0e:18:cd:66:29:92:78:36:de:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=633333d71526f533b1c1cf0be9fc321b623396d3
Validity
Not Before: Sep 4 22:00:54 2025 GMT
Not After : Sep 5 22:00:54 2025 GMT
Subject: CN=2a5cebf1a3618fac232a0c90966beb554ad8a514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:20:1c:96:42:85:31:02:ac:9e:ca:e8:68:82:
4a:11:ab:17:44:a4:4c:6e:4c:80:05:98:38:ab:1b:
2e:3e:0d:b6:54:54:96:e3:25:f0:a6:ed:df:02:cf:
28:eb:20:03:03:58:23:bb:d5:66:2c:e7:f6:c7:2c:
5d:59:bb:2d:06:84:5a:48:4e:2d:17:a8:31:2e:3b:
59:71:25:e3:48:b5:88:b1:3b:16:01:61:f7:3e:ee:
17:85:94:6f:88:38:3e:17:8e:cf:d3:ac:d2:0b:bd:
5a:fd:93:d2:09:8e:71:da:7d:22:47:35:04:13:e5:
ed:cf:fc:4c:2f:71:01:61:4a:50:42:bf:b4:7a:9e:
e9:24:b4:96:fa:ef:60:46:8e:8d:89:ed:69:26:9f:
0c:3c:0a:3b:f3:86:46:89:88:0b:c5:2f:3e:e2:de:
ad:a7:0e:08:9c:d7:5e:66:54:b3:a5:52:a9:9e:2f:
6f:3d:63:cb:d7:97:aa:eb:43:10:ff:e3:23:66:2e:
7d:d8:43:77:cf:fa:7b:9c:3d:2e:4a:f1:47:ab:eb:
fa:60:38:56:a4:23:ab:2f:e7:6e:f1:56:1f:5c:4e:
64:4d:29:1a:3a:c2:34:2f:a4:3a:b1:d2:e5:5a:73:
67:61:51:fb:43:7d:2d:84:36:1c:ad:c4:d9:89:2c:
36:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:5C:EB:F1:A3:61:8F:AC:23:2A:0C:90:96:6B:EB:55:4A:D8:A5:14
X509v3 Authority Key Identifier:
keyid:63:33:33:D7:15:26:F5:33:B1:C1:CF:0B:E9:FC:32:1B:62:33:96:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzMz1xUm9TOxwc8L6fwyG2IzltM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f50950-0039-4e74-be41-9cfc4838d3ec/1/YzMz1xUm9TOxwc8L6fwyG2IzltM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:88:a1:c2:3e:cb:0a:e3:0d:6a:44:be:c4:03:52:61:c4:e7:
c2:6f:c6:72:8b:99:ba:8f:d0:d7:a2:7b:47:99:17:28:f5:63:
0f:52:2f:70:69:c5:bd:3c:7d:30:1d:e7:a9:17:d8:7d:15:e8:
a5:c9:6b:75:d2:5e:e2:cf:74:4c:92:17:04:2c:01:86:ef:4d:
4c:37:62:11:16:2c:bd:cb:c2:87:3d:9a:58:70:f1:e9:05:d9:
ab:33:b8:b5:5c:5a:2e:8a:b6:49:3f:4a:fd:fd:c1:3e:d6:52:
f5:70:33:f1:76:9e:cf:0a:1d:b0:26:85:e1:c3:32:5a:be:c5:
6d:04:b7:5c:aa:b2:95:4d:2c:2e:6e:15:48:8b:1c:c9:41:6f:
6e:f1:e9:0f:75:ca:4f:a3:81:39:70:48:f4:5c:92:10:42:0c:
3a:6b:d8:f8:8f:94:c6:fe:7d:de:03:d6:47:74:4d:d8:e0:cf:
6c:5c:56:ff:82:35:98:14:54:d8:5c:4b:2e:94:60:e0:60:f4:
71:15:a2:0e:9c:c2:cb:25:ac:23:aa:38:26:f5:e6:ba:8c:96:
90:2a:4b:22:a3:5a:49:a4:dd:0a:cf:fe:b9:a0:f1:a2:02:6b:
06:61:c2:20:ba:32:5e:40:1c:2e:51:72:d4:e4:d7:b6:ea:0d:
2c:bc:5e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:30:15 2025 by rpki-client