Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/Ya7f3HEz6V9CSY93YPaPuA-qhKw.mft
File: Ya7f3HEz6V9CSY93YPaPuA-qhKw.mft (raw, json)
Hash identifier: 9pidkgkDG8L/UYrZdpHeYGFmXNIvAzHEbD6nUgv872w=
Subject key identifier: CE:84:56:BF:8F:AA:B9:98:71:E2:A7:5B:04:67:6F:65:E1:EA:16:7D
Authority key identifier: 61:AE:DF:DC:71:33:E9:5F:42:49:8F:77:60:F6:8F:B8:0F:AA:84:AC
Certificate issuer: /CN=61aedfdc7133e95f42498f7760f68fb80faa84ac
Certificate serial: 01984AAEF99F05C935D5647F8742E511CA20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ya7f3HEz6V9CSY93YPaPuA-qhKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/Ya7f3HEz6V9CSY93YPaPuA-qhKw.mft
Manifest number: 0F52
Signing time: Sun 27 Jul 2025 07:00:37 +0000
Manifest this update: Sun 27 Jul 2025 07:00:37 +0000
Manifest next update: Mon 28 Jul 2025 07:00:37 +0000
Files and hashes: 1: Ya7f3HEz6V9CSY93YPaPuA-qhKw.crl (hash: s+WISjR32bcMYI8BrdGijp6DUu8oIlzmNnflFPdPq2s=)
2: _DQ1KzWidoIdXZoVyvdN20rg8gM.roa (hash: EOelW7rq3NkXTukVpXSmytqfvzEOSEmblKrH2XLqMOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/Ya7f3HEz6V9CSY93YPaPuA-qhKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/Ya7f3HEz6V9CSY93YPaPuA-qhKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ya7f3HEz6V9CSY93YPaPuA-qhKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:ae:f9:9f:05:c9:35:d5:64:7f:87:42:e5:11:ca:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61aedfdc7133e95f42498f7760f68fb80faa84ac
Validity
Not Before: Jul 27 07:00:37 2025 GMT
Not After : Jul 28 07:00:37 2025 GMT
Subject: CN=ce8456bf8faab99871e2a75b04676f65e1ea167d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cd:aa:fc:f1:6f:f1:6b:ac:0e:51:88:a1:cb:
ec:70:a7:1a:f4:05:56:2f:55:17:44:63:48:32:83:
2c:f7:94:b2:3f:ee:d2:12:1f:5f:44:45:0d:ff:b2:
ba:78:c7:4a:e0:44:fc:35:ec:4b:82:f0:0c:c2:82:
c1:61:76:ce:dd:14:cf:d5:1a:7b:aa:37:bc:ef:a6:
02:07:be:d9:aa:d5:73:35:d6:a4:d0:82:5d:19:f0:
61:72:fc:82:00:91:b1:af:53:3e:56:b0:d0:d2:8e:
41:42:82:32:b6:99:8a:4c:7e:dc:14:0d:57:e4:52:
8b:c5:a6:04:bb:0a:5e:15:9e:1a:64:5f:00:29:c6:
5c:a0:f5:96:bd:8c:8d:1f:03:0c:92:1f:90:26:ed:
95:4a:1c:ce:c1:99:f2:0e:58:e4:94:34:ca:ed:7d:
a1:5b:42:ba:0a:85:01:b1:05:71:36:4a:5f:cb:f4:
5b:34:a6:bf:5b:e3:1e:be:71:29:da:7c:b8:bc:f2:
00:de:a7:7e:8b:2c:8a:52:dd:29:7a:65:9b:12:1d:
b4:f1:b7:ab:8f:ac:a0:f1:8e:fc:00:30:3e:d8:f0:
d3:ba:1d:cf:2e:b8:2d:19:6a:12:d7:7b:a7:21:36:
d9:d9:f6:b5:59:fe:88:69:b1:cd:77:6d:d9:88:3e:
2f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:84:56:BF:8F:AA:B9:98:71:E2:A7:5B:04:67:6F:65:E1:EA:16:7D
X509v3 Authority Key Identifier:
keyid:61:AE:DF:DC:71:33:E9:5F:42:49:8F:77:60:F6:8F:B8:0F:AA:84:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ya7f3HEz6V9CSY93YPaPuA-qhKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/Ya7f3HEz6V9CSY93YPaPuA-qhKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/02b522-9f08-46fc-99ea-9f3e8f9efc99/1/Ya7f3HEz6V9CSY93YPaPuA-qhKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:a9:a3:33:e4:c9:15:f5:3e:f6:9a:68:82:be:5f:fc:b1:20:
8f:b1:1d:c8:06:2f:f8:c6:1e:f5:64:5e:57:a6:c8:cc:eb:09:
26:58:bd:b4:6e:7c:b5:d8:79:2f:90:0a:ac:ac:5e:85:de:a3:
d2:e4:24:eb:bf:b8:15:bd:70:cf:8a:d9:71:6e:53:f6:d2:4b:
9f:28:d0:3f:c4:74:7f:4a:9a:35:9c:21:b3:13:ed:15:7e:ac:
d9:0c:dc:00:0f:3f:3d:26:8c:05:50:55:f1:e3:49:30:26:ee:
fb:04:87:71:78:c1:21:b3:d6:ab:41:3f:3a:ce:60:9a:f1:cc:
38:30:36:09:a6:ed:d7:63:b4:32:37:f5:5a:5f:ad:05:de:2b:
71:d1:7c:c6:3d:ba:37:5a:65:f8:31:e1:f7:8a:7f:2b:d7:54:
f4:fe:ac:7d:ab:01:eb:ea:d2:23:c5:36:2e:79:ad:c7:7b:0c:
e9:11:38:88:5a:83:32:14:79:bd:d7:8a:83:71:50:4b:87:82:
15:c9:6c:81:07:1f:b9:b3:cf:9a:52:dc:59:f0:00:eb:42:fd:
24:6b:35:fb:6a:3f:8e:66:7d:ff:61:0b:66:21:6c:2a:0a:3c:
31:e1:32:36:76:19:e7:65:33:52:8c:3f:78:d7:14:0e:68:fd:
fb:f7:78:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:22:39 2025 by rpki-client