Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json)
Hash identifier: oStWPIMBtRsuH5Ge4OkVLblo9puZMA8dxowOmnezcec=
Subject key identifier: 25:CC:CC:E3:08:4E:2F:AD:83:2F:69:F5:44:01:B2:CB:FA:18:3D:7F
Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Certificate serial: 019849D31FF913D1D6ACF72B22E06145029B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
Manifest number: 01B9
Signing time: Sun 27 Jul 2025 03:00:29 +0000
Manifest this update: Sun 27 Jul 2025 03:00:29 +0000
Manifest next update: Mon 28 Jul 2025 03:00:29 +0000
Files and hashes: 1: knggMszGXslbbJ2_Oh2Jaifz1gc.roa (hash: 1NY+pqUYlKwDvhTu3JTqY8SDs7jlakZ17fJjnTdwI9Y=)
2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: g19Sym59yUSK6zIJQducQjq/Rx3vwL6ZRkOnM+2S3G0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 03:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:d3:1f:f9:13:d1:d6:ac:f7:2b:22:e0:61:45:02:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Validity
Not Before: Jul 27 03:00:29 2025 GMT
Not After : Jul 28 03:00:29 2025 GMT
Subject: CN=25cccce3084e2fad832f69f54401b2cbfa183d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d3:59:74:6a:5b:fd:c3:26:49:d6:b2:43:79:
f8:25:a1:22:cd:57:db:b3:f8:15:0b:cc:3f:a1:8b:
d7:97:f5:99:77:1b:dd:2f:da:0f:26:a5:09:2d:c9:
92:7b:64:c5:3b:f2:1c:a7:77:05:5f:15:19:ea:5e:
a5:dd:cc:04:de:62:a9:33:dc:c2:62:4d:7d:ad:1c:
5c:9e:b3:f3:fc:ec:c0:56:4f:29:26:33:16:97:52:
7d:88:6e:c8:dd:ca:66:b8:ae:83:4b:84:07:69:5d:
13:94:2c:30:de:69:17:c0:c7:41:03:31:c7:5a:e1:
37:75:80:d8:04:3a:b2:17:2d:36:07:0d:f1:53:41:
64:ca:cf:d8:86:07:07:5c:2a:ac:4f:57:8c:18:f7:
95:47:eb:57:a4:78:ba:dd:ee:c9:c2:f5:a3:1d:8c:
c9:a5:f0:d0:51:55:00:57:8e:29:e7:bd:03:3a:40:
c0:2c:7d:2f:89:4f:d7:e5:81:78:9b:1d:7a:2a:fe:
ea:a7:cd:51:97:6d:6f:1e:34:61:65:40:6c:2c:97:
18:eb:06:ee:dd:d2:c2:e7:48:32:ad:f2:fa:e7:4d:
1d:68:8e:61:03:40:a9:c7:83:20:ee:92:ea:8f:ec:
40:35:0f:53:5c:22:2f:9d:e3:0e:fc:ce:2a:56:08:
5a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:CC:CC:E3:08:4E:2F:AD:83:2F:69:F5:44:01:B2:CB:FA:18:3D:7F
X509v3 Authority Key Identifier:
keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:02:80:f0:c7:4e:67:e7:98:d7:03:41:04:88:39:b1:48:86:
63:d9:87:b8:fd:d1:ed:e2:d0:9b:a4:5c:50:e6:af:f7:b1:56:
f4:ce:7b:1d:25:e7:22:65:c4:20:b6:85:c1:66:6a:88:10:7d:
32:81:b6:71:65:48:73:96:fc:df:66:f7:16:fe:37:c4:57:24:
fc:b6:87:cf:ff:5f:fd:b2:2a:21:e5:29:9a:0f:c9:f4:c1:e8:
f6:9f:0e:9d:93:a7:21:5f:51:9b:95:84:e4:68:6e:78:87:a8:
5d:bb:1f:b0:fc:3f:5a:8e:be:fa:75:61:8f:81:18:fe:98:91:
07:dd:f1:84:46:b3:76:62:d1:dc:59:f6:4b:78:e0:1c:5c:d7:
dd:4e:91:92:21:a1:27:64:4a:15:77:b6:56:57:1a:0a:fd:13:
b7:14:bb:03:cb:55:69:43:8d:f5:f6:39:45:43:a0:63:5d:d5:
5f:ae:d4:d7:c5:c3:a9:7f:d6:83:fa:2b:c5:fa:a3:59:ef:0a:
6f:ea:19:71:28:37:c4:29:97:2d:e7:35:26:ed:fa:09:b0:86:
2a:eb:55:cd:9d:e9:4f:f5:f0:5f:a2:7b:0c:e4:4a:ac:8a:33:
ea:4d:0f:d3:c2:bf:4c:05:db:f7:43:b0:c8:9b:2e:2c:4a:ac:
25:b2:9e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:02:37 2025 by rpki-client