Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
File: yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft (raw, json)
Hash identifier: g35DJoO6O5aig5OU4cUY/o3MYrlPGFWUOnooN+yp708=
Subject key identifier: 59:FF:11:AD:3C:9B:AF:FC:C2:00:2E:5F:30:24:9F:02:48:CB:E1:C6
Authority key identifier: C8:E5:0C:A1:71:34:83:7A:50:D3:06:3D:43:D4:43:38:5A:BE:6F:49
Certificate issuer: /CN=c8e50ca17134837a50d3063d43d443385abe6f49
Certificate serial: 019868B9E03FA70E072C515205E23BD3962A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
Manifest number: 1586
Signing time: Sat 02 Aug 2025 03:01:08 +0000
Manifest this update: Sat 02 Aug 2025 03:01:08 +0000
Manifest next update: Sun 03 Aug 2025 03:01:08 +0000
Files and hashes: 1: kclBuRKTMfByXqrmrwIbc_lZEnM.roa (hash: MQr5fqlXn7Xd/Z8IgiENjDF+OVj4PMx+/5QB1sHm+8E=)
2: yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl (hash: S+YBY72/lqkYMJ71TyFcF99Vu/wSIS1D1Hgde0Ct/co=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 02 Aug 2025 21:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:68:b9:e0:3f:a7:0e:07:2c:51:52:05:e2:3b:d3:96:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8e50ca17134837a50d3063d43d443385abe6f49
Validity
Not Before: Aug 2 03:01:08 2025 GMT
Not After : Aug 3 03:01:08 2025 GMT
Subject: CN=59ff11ad3c9baffcc2002e5f30249f0248cbe1c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1a:4f:70:86:9f:8e:9f:57:06:ec:56:b2:3e:
0d:c2:0f:5e:a7:da:5d:99:b9:a2:68:ab:ad:87:a1:
00:69:c7:61:1d:39:30:10:72:5e:a5:41:74:81:04:
6d:c0:01:d2:15:17:de:da:b4:b7:a1:bf:2b:7b:ec:
12:4a:57:c6:5f:c9:db:fd:b1:35:3b:0b:60:f5:16:
31:e4:20:cd:48:69:c2:b1:b5:a3:26:8a:7f:60:06:
dc:f8:2e:e2:9e:a8:b8:9e:54:32:91:6a:8c:32:ff:
5c:26:e4:8a:77:30:5e:8a:79:3b:58:b2:99:ea:b6:
80:32:ec:12:75:d6:b1:8e:4d:5a:22:4e:d6:d6:0f:
70:51:1c:d1:c4:c3:c3:99:3d:dc:85:87:71:98:f2:
09:be:ed:a8:ec:aa:fe:14:06:a3:92:d4:70:4d:9f:
35:23:06:3b:c6:36:30:d9:e7:a5:45:aa:a2:68:c0:
e0:c1:00:64:0a:f3:25:1e:c9:61:f9:89:fb:c5:ea:
6c:06:82:f3:4e:78:90:24:02:58:3f:53:07:cc:65:
5c:12:22:b5:53:a7:4a:5d:b7:40:83:2d:b9:1e:90:
37:3c:f7:9d:eb:63:ac:6d:94:c1:9d:20:48:68:6d:
4a:bd:e3:74:d5:4e:fb:7d:02:26:e7:e3:0e:2d:0e:
61:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:FF:11:AD:3C:9B:AF:FC:C2:00:2E:5F:30:24:9F:02:48:CB:E1:C6
X509v3 Authority Key Identifier:
keyid:C8:E5:0C:A1:71:34:83:7A:50:D3:06:3D:43:D4:43:38:5A:BE:6F:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ce:20:97:45:35:ff:be:ba:1f:28:ad:10:4d:77:10:5f:52:
57:74:13:a4:d2:2e:42:8c:c8:d6:e8:0f:9c:8c:65:ac:f6:e6:
d7:5b:89:0d:65:d2:ad:77:5a:0e:87:05:21:cb:1f:80:1c:9c:
05:18:1b:7f:30:bb:df:7c:27:f0:f0:d8:66:35:41:62:16:fb:
c6:e2:86:fe:fd:9b:00:f6:d5:09:68:5e:4f:e2:cf:ef:2f:03:
cd:73:c5:f5:3d:7a:05:e7:72:a4:c0:65:c9:3f:46:9f:5a:cf:
a3:24:04:34:60:78:ad:f0:37:fa:ae:56:80:1b:dc:21:cc:79:
9f:86:e1:01:83:3f:e2:b1:2e:78:09:94:5d:e9:9e:f7:7b:f7:
4b:c9:e0:51:ee:16:b6:78:ff:3b:86:ab:c5:1b:19:ee:dc:0f:
1e:d9:00:6c:30:7c:5c:37:12:a0:da:36:04:af:03:58:c6:30:
97:42:dc:3f:1a:90:c1:99:d6:1d:70:be:76:13:d5:b7:53:98:
ab:85:29:5d:c4:76:b8:a0:21:ea:48:ff:07:99:a4:a3:b9:02:
7d:cd:7d:fd:6a:55:2b:af:7e:76:4a:40:7d:c4:33:ce:b7:77:
ff:5c:5b:1a:ae:37:04:e9:33:c3:5d:fc:f6:99:fb:bd:32:4f:
7d:07:e6:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 2 05:36:54 2025 by rpki-client