Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
File: YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft (raw, json)
Hash identifier: bqzA4MtGB5GNQj5vI0zt3IV4BRojEdIe1O0k7OUwEq4=
Subject key identifier: E4:B5:8C:24:95:24:74:3A:62:F0:E1:54:35:9F:BA:91:B4:FD:0B:DD
Authority key identifier: 62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
Certificate issuer: /CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Certificate serial: 0198E640EA1E2B06ABEC44DD19512CBE486F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
Manifest number: 1650
Signing time: Tue 26 Aug 2025 12:01:10 +0000
Manifest this update: Tue 26 Aug 2025 12:01:10 +0000
Manifest next update: Wed 27 Aug 2025 12:01:10 +0000
Files and hashes: 1: Fd7jj4UgNX8KUEunLGyTOECk2zM.roa (hash: 4ykrgJNWkElQuXhdhPDtDMLnIYLOev4Sm6TYtDwClXU=)
2: YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl (hash: Q+duMfIyucf0mRSezsPRNZWgNIchtvWDpeoWDWYfmwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Aug 2025 12:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:e6:40:ea:1e:2b:06:ab:ec:44:dd:19:51:2c:be:48:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Validity
Not Before: Aug 26 12:01:10 2025 GMT
Not After : Aug 27 12:01:10 2025 GMT
Subject: CN=e4b58c249524743a62f0e154359fba91b4fd0bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3b:b5:7b:ba:33:6e:44:4a:38:d1:db:78:04:
2d:8f:40:53:c5:28:0e:39:48:18:30:e1:dd:fb:12:
15:9a:bd:74:69:02:c6:7f:30:cc:ca:1b:21:f6:7c:
19:9e:74:96:f9:38:db:3b:68:64:6c:b2:17:d9:08:
69:fd:b0:bd:11:9a:40:f8:af:ff:c8:03:90:8e:c5:
f4:90:8c:65:29:42:fb:32:ec:8b:ad:f2:0e:11:90:
90:17:f3:7d:ea:81:ea:8d:74:0e:75:17:82:9d:94:
54:7e:13:30:bb:82:bb:1c:95:cd:f2:40:d8:76:8a:
b4:1e:1c:0f:a3:b6:89:8c:6c:b8:64:87:7b:3b:14:
c0:ca:55:8d:3d:a0:2a:de:6e:d9:42:5c:1a:80:64:
6d:53:2e:31:3e:9b:79:8b:d8:55:65:a9:be:57:44:
be:21:75:47:4e:a8:03:6c:dd:34:de:8a:19:eb:2d:
3a:f9:75:62:b4:f6:ae:b8:86:38:2a:ee:63:41:93:
fa:ff:d2:bd:14:00:e0:4b:61:20:de:41:ce:40:c8:
04:59:35:7d:66:0d:90:8b:04:80:e4:5b:96:c0:9f:
1f:0e:49:55:3c:65:c8:60:c1:14:b9:e0:72:5f:38:
32:35:dd:78:6d:e0:36:5c:ce:8b:90:cf:d8:57:4e:
6a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B5:8C:24:95:24:74:3A:62:F0:E1:54:35:9F:BA:91:B4:FD:0B:DD
X509v3 Authority Key Identifier:
keyid:62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:71:bb:6e:0b:f5:97:3b:33:e5:19:af:13:11:98:e3:d3:48:
9f:3b:4b:61:df:36:d6:23:12:99:f8:ed:7f:e7:7f:ce:a6:cc:
f4:65:ca:fa:9b:36:28:b1:8f:df:7f:b1:40:e7:73:56:eb:fa:
39:0b:54:35:e3:11:44:a4:f7:b1:f9:14:b9:62:3b:b0:9d:c6:
30:00:aa:41:3d:1b:f1:74:7c:48:8e:c5:52:a8:76:24:4a:eb:
7d:83:35:11:cf:54:08:bf:71:c0:e8:b2:5e:cd:a7:8a:09:05:
e2:e6:92:3b:94:c0:d1:f1:d9:b3:49:07:d7:1a:8a:cc:d0:0b:
6d:26:9a:dc:be:e5:39:42:94:05:80:c6:f9:d7:e9:38:46:f0:
40:48:b4:8a:bb:ec:4e:9e:f4:e2:32:d7:8a:35:d1:fe:45:e3:
0e:c8:12:91:be:ec:fc:3f:a5:d2:ab:da:0d:11:bf:ad:8a:8d:
cc:e3:ff:a1:70:09:9a:eb:f7:e3:d4:57:fd:ea:4b:a1:50:5e:
07:3b:2e:f6:6c:3a:1c:d0:98:2f:7f:10:3d:b0:d3:d5:65:b9:
52:62:4a:a4:5f:39:f2:47:76:b0:f2:b9:a5:2d:79:f9:14:83:
fb:1e:7f:f2:1e:4d:40:8c:31:cc:6c:b5:ac:81:3b:cc:72:0e:
14:cb:aa:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 26 18:26:59 2025 by rpki-client