Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
File: yS0-Y6HAGI17pgy4TXDk64m4rlE.mft (raw, json)
Hash identifier: OLw+/HhZfPz+9mlRX1VUUl9yzcKma/6pyGHNZvsEsUM=
Subject key identifier: 3C:F4:99:5D:99:D0:CC:D2:EF:88:44:1E:C7:BA:C3:00:24:E2:8D:E9
Authority key identifier: C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
Certificate issuer: /CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Certificate serial: 019921B14A6FEBAC4F63D91DE26BA974D71F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
Manifest number: 06F9
Signing time: Sun 07 Sep 2025 01:01:30 +0000
Manifest this update: Sun 07 Sep 2025 01:01:30 +0000
Manifest next update: Mon 08 Sep 2025 01:01:30 +0000
Files and hashes: 1: yS0-Y6HAGI17pgy4TXDk64m4rlE.crl (hash: 9VCwWUx9w/dQ/ilUcrLgz+UjgxWjj33pLKi9ipDUZy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:4a:6f:eb:ac:4f:63:d9:1d:e2:6b:a9:74:d7:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Validity
Not Before: Sep 7 01:01:30 2025 GMT
Not After : Sep 8 01:01:30 2025 GMT
Subject: CN=3cf4995d99d0ccd2ef88441ec7bac30024e28de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:85:76:e8:1f:8a:cd:ad:be:7e:1f:63:e0:a0:
1c:43:5a:3b:ff:86:5f:8a:18:18:35:ca:c6:c2:24:
e0:df:1c:44:26:08:34:9f:8c:61:cb:a0:de:c9:1b:
97:55:7e:97:16:c6:02:89:9b:f0:e3:10:27:3b:3b:
84:2d:4c:21:51:6b:40:17:e2:56:11:96:6e:9b:d5:
08:c0:1d:b1:b5:dd:2d:b7:14:68:55:a5:e4:f2:24:
93:35:9e:37:6e:72:62:3a:d2:fc:bd:e0:fb:65:0a:
37:d8:28:b7:c7:39:dd:0b:5c:11:3f:32:6c:7e:90:
b4:4a:76:b5:07:c6:10:d4:a9:36:02:05:bd:b5:4c:
26:e4:a2:55:5d:1d:e6:af:29:86:32:b3:08:36:1e:
06:ec:cc:31:f6:d2:fe:93:f5:68:ce:0a:e9:c3:45:
17:16:33:8e:c8:45:4a:05:9b:0d:cf:f8:03:0b:03:
03:78:bf:4c:fa:94:33:f5:4d:36:76:78:f9:e8:58:
7e:63:42:2c:62:36:fd:64:fb:33:17:bc:7e:c2:8f:
15:d0:4e:f3:51:4e:6d:0a:da:62:9b:2f:51:9a:d2:
f8:d3:d0:19:b9:01:3f:a1:b2:85:d1:03:a0:3f:a1:
3c:f5:8c:2b:6d:5b:81:66:6b:2c:27:06:76:5a:30:
59:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F4:99:5D:99:D0:CC:D2:EF:88:44:1E:C7:BA:C3:00:24:E2:8D:E9
X509v3 Authority Key Identifier:
keyid:C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:2f:d6:1f:34:58:2d:a5:2e:a3:87:54:b4:aa:f9:78:81:05:
55:e6:ac:ee:c2:58:6a:52:c0:1d:06:94:3a:56:ba:f2:f1:91:
7c:45:73:0a:f2:5d:03:e9:a1:11:f5:c5:52:25:bb:37:16:87:
5e:a6:75:b1:88:6e:8d:b6:a9:59:a9:0c:6d:81:16:8b:9e:54:
1a:3d:33:90:f0:f2:fd:bf:2e:2a:0c:d8:5c:3d:46:ea:f6:56:
08:a9:29:11:39:d6:42:df:f7:6a:31:27:8f:a3:e6:ed:57:1b:
37:a0:e0:c2:5e:e0:ec:a6:0b:ef:72:3f:7c:cf:e6:39:e3:37:
61:10:5a:94:8a:b0:87:14:bf:81:56:83:1b:2f:2b:3e:51:8f:
c0:db:3a:21:d2:ae:14:49:06:6f:1e:04:77:95:dc:a7:9c:2e:
77:9a:94:08:fd:ab:1d:b3:8d:e3:03:84:98:01:54:b0:d4:60:
0b:c2:39:aa:4f:74:d1:c2:d8:81:da:4c:4f:4c:4e:68:00:e0:
01:48:eb:c0:00:5a:b7:cf:35:e3:ba:fe:79:52:b6:6e:8e:8d:
53:ed:78:7e:a2:45:92:03:44:84:11:7b:cd:b0:34:d3:95:a4:
19:bc:3e:1a:67:f4:39:43:37:00:0a:99:d5:53:00:29:50:fb:
ec:24:eb:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:53 2025 by rpki-client