Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
File: RyyyiCCZANGvGpmLsDnsdX5JPdU.mft (raw, json)
Hash identifier: 51Oxs9/cS+jvfCIKyqY52GXVG5FvkwsklVa7qK9LVZk=
Subject key identifier: 03:A7:28:2B:D4:2C:97:15:BF:3E:BD:2A:54:A1:28:1D:91:25:E8:8C
Authority key identifier: 47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
Certificate issuer: /CN=472cb288209900d1af1a998bb039ec757e493dd5
Certificate serial: 01974D7BFCB891AA53D1668AE38F7EF733CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
Manifest number: 07A7
Signing time: Sun 08 Jun 2025 03:01:00 +0000
Manifest this update: Sun 08 Jun 2025 03:01:00 +0000
Manifest next update: Mon 09 Jun 2025 03:01:00 +0000
Files and hashes: 1: RyyyiCCZANGvGpmLsDnsdX5JPdU.crl (hash: An8X2Xhfx0x7tXgX/kKr57HIH/CKywUovDAsJJ0UDiU=)
2: S3dIMaIh62_y7HmBxhlxOM_ScHc.roa (hash: wYfLcBDYpc1piz/XiUHEld94m4pY4RAv7rF1GCt4/I0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7b:fc:b8:91:aa:53:d1:66:8a:e3:8f:7e:f7:33:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=472cb288209900d1af1a998bb039ec757e493dd5
Validity
Not Before: Jun 8 03:01:00 2025 GMT
Not After : Jun 9 03:01:00 2025 GMT
Subject: CN=03a7282bd42c9715bf3ebd2a54a1281d9125e88c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5a:d4:41:85:4f:c9:d4:8a:08:8d:0f:25:17:
cc:f7:2a:f9:15:91:8a:d4:6f:dd:5b:6e:34:08:3b:
5e:20:bb:03:60:13:5e:88:d9:eb:1c:c8:43:c9:c5:
a5:1b:91:ad:b3:b5:20:03:cf:76:b6:a1:f5:8f:14:
6f:f7:55:61:44:7c:57:f4:82:55:17:7c:ab:b4:41:
e5:57:e5:f2:31:6f:a0:e6:77:d5:d0:fe:01:37:02:
fb:17:17:7e:21:99:80:12:22:43:af:15:4b:d1:f5:
ac:43:84:9d:a4:85:1e:a2:19:8e:ba:bc:13:19:93:
c8:47:8d:b1:ca:05:9f:77:d8:95:c7:88:d9:62:54:
58:5b:fa:15:26:4f:3d:ba:14:e1:61:d2:48:8e:57:
a6:59:d5:ff:eb:60:2f:82:3d:b1:a9:8a:a6:65:fb:
cc:eb:55:58:de:fa:9f:07:45:79:1b:15:3b:ac:b3:
d6:15:b2:38:3b:8e:a8:fc:66:c2:1b:9d:46:45:c6:
f0:1e:22:59:0c:a8:f5:d2:c3:a8:dd:cf:20:1f:d9:
89:28:56:36:dd:b7:0d:1e:cc:3d:05:b8:ca:65:cd:
3d:d3:ea:26:8b:f9:2d:74:cd:58:a1:f0:44:33:d6:
86:eb:20:57:e7:c5:d7:58:66:00:e0:3b:1b:3e:a6:
c5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A7:28:2B:D4:2C:97:15:BF:3E:BD:2A:54:A1:28:1D:91:25:E8:8C
X509v3 Authority Key Identifier:
keyid:47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:47:23:aa:fe:9d:91:90:13:d8:8b:b1:e8:3c:2e:7f:b4:ac:
8a:e8:fa:9f:da:7c:6e:fa:0f:4b:45:b9:06:3f:d0:93:6c:dd:
84:a4:12:6f:69:35:44:8a:d5:65:01:84:60:0f:a9:90:ca:dd:
c6:bb:98:1f:b5:54:35:f5:91:ae:5b:1c:bd:70:ee:73:31:3f:
b8:b1:b7:88:d2:9d:53:b9:95:f5:12:d2:fe:92:69:e4:92:36:
d0:0d:6b:8d:65:7f:ed:14:a7:7b:d7:29:eb:62:f9:59:d8:df:
2e:9e:9a:c6:dd:ca:30:2d:38:8d:dd:0a:04:b9:63:2a:55:68:
c9:f8:55:09:15:28:ce:7a:e6:50:cd:dd:ee:db:5e:78:35:81:
36:fd:e7:52:cd:1a:7b:e6:b3:65:d3:1e:48:a2:43:93:e6:17:
f1:99:23:1c:90:92:73:8f:6c:7e:be:d3:b0:d7:b3:ad:52:0b:
f0:88:07:0b:63:80:80:fb:37:4b:c2:d1:ab:8a:e0:c6:89:64:
01:5c:94:73:b1:65:be:10:0b:83:4f:9a:e3:25:6a:29:2f:53:
78:5f:35:23:4e:dc:ef:0a:84:9d:48:79:b4:7d:4a:4b:ff:a6:
f0:77:bb:c0:7b:2d:9f:2d:a5:a9:81:12:7f:9f:95:e5:3a:68:
38:9f:3a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:49:54 2025 by rpki-client