Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: Kb9OTBZUrnVLnf8fb245EwshufgQnOeJQpF7g8NRcME=
Subject key identifier: 23:E4:55:E4:13:A5:63:E7:68:D7:62:7E:CE:86:5D:25:89:F2:1B:AD
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019747E7520A927C7EBAE0ECB9E84E3A6B04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 01:00:31 +0000
Manifest this update: Sat 07 Jun 2025 01:00:31 +0000
Manifest next update: Sun 08 Jun 2025 01:00:31 +0000
Files and hashes: 1: NA5mgzoDK6jbbKh48XeliWtbDYM.roa (hash: 9nIV3wU01lTdftDhSQVjEb+D2h3DXok24aEDQGNAM3o=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: pDPcO9vgY557BYsn5l+hGmSh70gEOyQXudNsI/HuY0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:52:0a:92:7c:7e:ba:e0:ec:b9:e8:4e:3a:6b:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Jun 7 01:00:31 2025 GMT
Not After : Jun 8 01:00:31 2025 GMT
Subject: CN=23e455e413a563e768d7627ece865d2589f21bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:93:22:d7:32:d0:71:a9:3e:30:6b:2e:b7:78:
7a:82:90:93:06:d1:7d:18:89:41:46:ad:3d:4d:7d:
72:78:11:a9:5a:b7:a0:09:0b:83:09:da:19:d0:81:
ab:f5:3b:64:96:70:7d:d1:36:81:ed:6f:ab:3f:1c:
a8:e4:de:63:cd:91:86:52:47:6f:17:99:d6:f8:83:
d9:7c:7a:f2:35:00:84:21:19:50:97:ab:a4:eb:e3:
76:2e:84:32:a5:a6:1f:28:14:e2:39:2e:f4:b3:de:
ac:70:73:cf:09:cd:0a:56:f2:91:55:da:f2:95:38:
b9:40:ad:40:ef:01:fb:2b:45:cf:e0:4b:f9:9d:09:
72:d6:b4:d2:5e:47:fa:12:9b:0a:ba:4a:7a:46:de:
fd:b2:5e:31:c8:ba:81:52:a7:e7:6e:07:cf:78:fe:
9d:74:7d:a7:9c:c8:ab:8e:d7:71:6d:50:09:af:e8:
dc:56:9e:db:ce:c2:74:ec:50:3d:d4:53:15:ce:9b:
54:e4:08:b7:4a:32:a4:cd:9c:14:f3:0d:3a:b5:90:
9c:aa:dd:9a:d3:59:18:4d:b4:81:ee:bb:e3:67:95:
8b:5b:e6:a1:1b:c2:9b:64:4e:85:fc:9a:7e:80:dc:
3b:ec:49:ff:61:55:86:b0:4c:b2:80:f2:66:f2:ec:
ac:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:E4:55:E4:13:A5:63:E7:68:D7:62:7E:CE:86:5D:25:89:F2:1B:AD
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:2b:06:4d:31:68:14:4d:7b:8a:fc:f3:9d:fe:b8:b9:e5:12:
d3:9d:ae:fa:69:1c:c8:bf:01:c0:c1:87:9f:e6:c7:75:5b:b2:
36:ce:86:47:55:dd:23:b6:00:c5:3d:3f:66:bf:d5:f5:21:bf:
ae:03:1c:c7:2d:13:4d:09:fc:6f:2f:c6:98:a4:14:d7:f1:24:
bd:c8:94:be:fe:11:67:4c:e2:c4:7e:04:26:45:d9:d8:09:20:
0f:9e:44:2e:c7:01:04:71:b5:1f:73:21:30:a8:d0:4a:f6:9c:
27:72:7f:38:9e:f7:c7:ed:bd:68:f6:b2:bc:ee:23:1c:5a:d2:
b5:ff:af:48:09:f6:cb:e1:e6:0d:79:9b:f5:b6:aa:fd:c3:42:
66:9a:c5:e9:d1:22:08:fc:d6:2b:6c:ed:5a:ef:9d:d9:bf:71:
0e:7c:8e:70:1f:7e:28:b5:19:e5:52:4d:59:18:c8:c3:b9:56:
90:da:59:69:d1:a8:18:84:db:8e:95:2f:18:bc:cd:a8:54:00:
c5:47:3b:45:86:21:11:9b:1e:06:29:b0:1c:05:e7:ca:ab:f7:
2d:c6:78:87:03:4d:71:58:a4:82:0a:48:41:19:b2:a3:ea:58:
92:b3:31:c6:b3:e0:97:d1:78:01:46:99:64:87:6f:68:bb:b7:
fe:33:df:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:56:39 2025 by rpki-client