Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
File: yuDyZX221YxEden7gXNW4u3SzA8.mft (raw, json)
Hash identifier: 2ZvrwCc/jTNyxvVlDVfeMJrrInOdQpjSDQNtKZ+jjPQ=
Subject key identifier: 5E:C0:1B:FC:0E:DC:6C:D4:90:3F:65:EB:BA:BB:53:FE:81:EF:F6:42
Authority key identifier: CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
Certificate issuer: /CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Certificate serial: 0199240CA765BF209C3AF43840DB005A4BCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
Manifest number: 124E
Signing time: Sun 07 Sep 2025 12:00:33 +0000
Manifest this update: Sun 07 Sep 2025 12:00:33 +0000
Manifest next update: Mon 08 Sep 2025 12:00:33 +0000
Files and hashes: 1: yuDyZX221YxEden7gXNW4u3SzA8.crl (hash: 7gTrHq4cgEPAlTRB6l2Vwgtqs4St8Ntgg/N2SalTsIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0c:a7:65:bf:20:9c:3a:f4:38:40:db:00:5a:4b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Validity
Not Before: Sep 7 12:00:33 2025 GMT
Not After : Sep 8 12:00:33 2025 GMT
Subject: CN=5ec01bfc0edc6cd4903f65ebbabb53fe81eff642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7b:34:c4:6e:6f:db:ff:95:ed:94:0f:48:be:
90:6a:c7:62:09:73:9a:33:bb:93:82:8e:44:c5:e5:
d9:5e:cb:f7:e7:ec:aa:c9:10:e6:4f:6c:ef:01:cd:
a2:35:ac:5a:66:90:24:68:22:7b:5b:92:7e:c6:9c:
14:0a:0f:ab:d7:bc:da:28:1e:da:f1:b2:ae:69:d7:
94:3b:a5:e2:28:e6:98:54:25:07:25:ce:c5:50:60:
55:df:15:0a:8b:c2:a5:70:95:cd:82:b8:3c:c0:85:
b8:9d:d4:5a:bd:f5:18:87:90:08:74:33:54:55:85:
fe:11:56:d6:6e:f5:56:86:ab:38:ec:6f:62:86:f4:
74:47:1b:4f:43:46:c5:92:49:d3:24:91:8d:e2:3d:
7f:eb:12:33:92:7e:6e:2d:0d:f0:4b:4b:31:f1:ba:
e4:f9:14:da:6f:96:a1:c1:bf:5b:32:1a:a4:fc:ca:
3d:a1:3f:c8:21:4d:5e:f2:83:ca:84:63:6d:b6:76:
4d:6a:32:04:5b:62:be:85:fb:20:29:d5:8d:0f:34:
85:81:03:14:df:4d:cd:04:53:e7:65:06:e9:e6:cd:
41:08:ae:81:6f:ba:30:ea:55:99:e1:a9:e8:bc:42:
bc:80:9a:09:33:5e:03:a4:f3:bb:75:6d:84:b8:e5:
5b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C0:1B:FC:0E:DC:6C:D4:90:3F:65:EB:BA:BB:53:FE:81:EF:F6:42
X509v3 Authority Key Identifier:
keyid:CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:c7:17:41:79:31:9a:6a:a0:4f:2b:0e:3d:43:30:c2:99:d0:
01:cc:dc:f5:57:57:89:fb:85:de:e5:4a:a4:40:09:ee:be:ac:
37:6a:ce:99:3d:15:b8:43:d6:b5:68:6d:3b:74:76:38:a9:c9:
8c:f1:b0:71:08:1c:2c:46:49:08:a8:d6:71:73:eb:de:0f:e9:
92:83:c0:25:34:66:70:55:73:de:f9:fa:bf:d2:b8:47:77:a7:
5a:16:50:b9:bf:59:b2:2c:09:40:7d:b0:b1:19:fa:b0:5b:3e:
21:64:35:4e:8b:17:9f:58:ef:8d:34:ed:4c:a5:09:80:0a:79:
d9:90:64:de:d6:fa:9a:34:54:40:88:ec:ac:8d:11:b4:8d:ee:
8c:2e:39:e7:08:ff:e7:35:32:04:a4:11:07:5b:22:27:dc:f8:
cd:a9:d1:81:c8:22:26:24:8e:fd:48:9f:da:df:37:a4:31:b0:
ca:58:b8:54:56:cf:2a:5c:07:3f:48:58:57:a2:db:ea:00:37:
c3:63:76:48:ac:10:2e:df:12:8e:c9:1f:df:9a:c1:84:dd:fc:
29:44:17:5b:91:4f:40:0d:2b:49:86:f6:32:ab:9f:9c:40:48:
04:29:cc:1f:0e:f5:a5:02:9b:fc:1c:08:5b:00:3c:a4:f5:eb:
d2:9e:c8:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 16:08:06 2025 by rpki-client