Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: y6VMekHVeDO6dbrvLh9nUwrkKLkvhYGzlIdQ7r9ja7U=
Subject key identifier: 03:06:EE:9B:E8:73:DF:43:AC:60:CB:76:81:AE:AF:AF:EA:00:90:D4
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 01992CD8D0FE31F659128B2DC7FEAFEA997C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 028E
Signing time: Tue 09 Sep 2025 05:00:30 +0000
Manifest this update: Tue 09 Sep 2025 05:00:30 +0000
Manifest next update: Wed 10 Sep 2025 05:00:30 +0000
Files and hashes: 1: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: 3Kk1wWc7I8P+Zmlcq5kxvlFTR3ji6KJjz7x0epiWiVg=)
2: zIZvUw6LEttnk9GqCkFL8S-ncbM.roa (hash: g5dRThI/Wu6nM24igsF8Y2hQEgVjjdxUN3aRLJWGc3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 05:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:d8:d0:fe:31:f6:59:12:8b:2d:c7:fe:af:ea:99:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: Sep 9 05:00:30 2025 GMT
Not After : Sep 10 05:00:30 2025 GMT
Subject: CN=0306ee9be873df43ac60cb7681aeafafea0090d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1e:8d:b9:f6:da:0e:4f:af:45:8c:ec:c5:c8:
3b:57:99:62:0f:be:bd:b1:e9:86:9c:8c:f5:07:03:
15:08:22:3c:13:ae:51:56:86:f7:10:ab:b7:c1:9f:
3d:3f:90:8c:34:cd:67:f2:cc:61:e6:23:45:51:57:
6b:34:39:7b:cf:38:1f:0d:db:fa:2f:12:6f:21:10:
7e:c1:70:fe:b9:1a:59:0e:61:f6:52:bf:07:8d:10:
29:7d:c0:93:09:1b:0a:74:16:4c:93:2a:78:f1:6b:
99:df:49:89:0a:30:54:a4:9a:9a:28:fa:f5:18:65:
35:c7:7a:b5:0f:b8:75:bd:54:61:48:a5:61:27:62:
38:7f:b2:76:7e:6d:61:2c:a5:76:25:04:f2:3c:7b:
94:92:77:af:70:24:a0:81:20:99:69:63:c3:2a:08:
5b:55:ec:aa:6e:2c:0b:37:f5:da:51:de:a7:05:42:
8c:b9:30:cf:11:fb:d9:c9:6c:34:26:16:6c:c5:24:
cb:ec:d2:a7:73:a8:0a:8a:2b:ce:15:fd:de:a3:c9:
01:8a:ac:10:4c:fc:60:ee:4a:da:ab:d2:90:fa:77:
16:46:be:35:51:9c:57:cc:11:e2:6b:52:08:13:13:
44:41:66:b9:62:25:28:1f:cf:d1:0a:f4:23:9b:51:
c3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:06:EE:9B:E8:73:DF:43:AC:60:CB:76:81:AE:AF:AF:EA:00:90:D4
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:91:44:f1:d0:55:f1:a3:42:74:f8:45:0f:2a:c5:2a:f7:c3:
85:38:01:a6:65:76:75:41:42:2e:54:15:b8:aa:80:32:1f:61:
e3:88:23:c6:4e:a5:fb:6f:81:53:e4:47:4f:0d:21:54:76:43:
9f:a1:3a:0a:98:53:2c:0b:84:c2:f2:d4:d1:70:f2:79:4c:f8:
bf:8f:87:64:2f:d1:57:44:bf:90:8d:f9:73:6c:a3:c2:da:30:
ef:62:ce:71:57:dc:8e:e4:51:9a:2c:20:b6:19:9b:1a:9a:18:
93:3a:13:8b:01:42:2c:bd:ab:c0:ac:1c:47:35:0c:88:71:25:
bc:27:51:07:c3:58:9d:af:f3:46:f6:a4:bf:81:df:96:83:87:
f5:96:7d:52:bc:6f:17:0d:97:f2:dd:91:1c:3d:be:0e:fd:3f:
9c:3f:29:39:53:44:6b:b3:0c:c6:4e:19:00:9f:71:b4:8d:fb:
7a:83:94:47:ae:87:46:85:a8:26:51:d0:a6:b9:77:b6:c5:f8:
ea:7a:bc:2f:8f:31:00:7d:85:b1:e3:31:96:5d:62:9f:80:95:
8e:0c:d2:63:b9:df:70:15:e8:49:26:d0:d2:06:2c:13:94:17:
69:09:79:4f:1a:4d:30:7d:e2:73:aa:a4:5c:71:25:6d:fc:6c:
fd:b3:8c:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 10:33:03 2025 by rpki-client