Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
File: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft (raw, json)
Hash identifier: 0kCl/8d3mWmW96jKT96PdhGGM9fzbEW1KOFifwsYPEc=
Subject key identifier: 0E:C6:CC:78:C4:C4:8A:E9:53:70:CD:DC:D7:2B:38:AF:93:59:86:E5
Authority key identifier: 63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
Certificate issuer: /CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Certificate serial: 01974E203E7F9EF344DC8C9B36B3E54CEF48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
Manifest number: 08B4
Signing time: Sun 08 Jun 2025 06:00:25 +0000
Manifest this update: Sun 08 Jun 2025 06:00:25 +0000
Manifest next update: Mon 09 Jun 2025 06:00:25 +0000
Files and hashes: 1: RiW5W8SWQ6-vverb8NRdVDj6CjU.roa (hash: 4IAwVod5pwysrRco/iSy8Lzx8KDdHZ/Q8/hyLLW5E4w=)
2: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl (hash: xN/4/lEUc6u4zGV9FmIstDUY6STrz91LYXG9U/Aqkb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:3e:7f:9e:f3:44:dc:8c:9b:36:b3:e5:4c:ef:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Validity
Not Before: Jun 8 06:00:25 2025 GMT
Not After : Jun 9 06:00:25 2025 GMT
Subject: CN=0ec6cc78c4c48ae95370cddcd72b38af935986e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:42:57:bb:fc:0b:26:b8:ba:e5:8e:ae:6f:a1:
8c:2e:3c:54:14:4d:49:14:4e:f9:06:8f:04:86:36:
80:9e:c1:ac:c6:80:c3:d2:35:e4:d9:02:a1:e9:4d:
23:67:64:f6:0b:d3:3f:81:45:2b:d5:b5:74:ee:94:
87:e6:b5:8c:0c:c1:db:25:9c:a8:91:1a:6a:74:c8:
25:d8:86:3b:ff:9e:ce:6b:0b:8f:eb:d0:d4:6d:c2:
d3:e1:8b:d7:17:de:e4:5f:44:32:66:71:ff:83:1a:
74:66:14:71:81:86:31:6e:21:04:3c:83:f4:4d:ed:
07:ee:3d:23:e9:d3:87:6d:1b:01:1c:3c:a4:d1:d6:
ee:18:4c:f4:e2:19:34:5d:fd:bc:eb:8c:e2:9b:0c:
74:96:7d:61:ba:0f:14:01:ec:a4:92:f6:1f:f2:6b:
b7:ea:04:1d:5b:43:5c:4a:1d:4a:60:5f:13:68:a0:
3a:9d:9c:57:ac:0a:f0:94:82:a2:99:a2:3d:97:31:
3b:b0:c8:54:3d:c5:00:2d:7b:54:f1:15:a3:88:ca:
e1:82:b6:cd:52:c7:84:9d:cf:b1:b0:56:e4:e6:a0:
b5:a2:b4:88:64:b0:71:52:b6:54:e3:63:a0:41:29:
a3:0b:37:5f:03:c2:0c:51:12:c3:4f:3b:51:3f:97:
e1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C6:CC:78:C4:C4:8A:E9:53:70:CD:DC:D7:2B:38:AF:93:59:86:E5
X509v3 Authority Key Identifier:
keyid:63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:54:7e:47:10:c8:d7:06:1e:bc:e7:93:a6:f4:f8:17:45:1c:
bf:f1:cd:ed:ee:a3:70:f9:89:49:92:95:bb:b6:0f:86:6e:6c:
44:8a:bd:7f:dc:c8:04:2f:eb:ed:bb:36:a5:1e:d8:29:de:29:
b5:cd:47:06:46:6e:e7:1a:13:67:98:e8:0d:45:2e:75:f8:3a:
35:6a:cc:71:d1:cb:17:e9:05:0d:2d:88:50:9d:0e:bf:fe:64:
84:24:72:b9:f2:4f:95:04:5d:b1:03:79:3d:20:51:7a:ea:00:
69:a3:08:be:f8:db:7d:ef:6b:20:46:1c:f2:51:c0:f4:b4:5c:
28:24:fd:b2:70:f7:42:5a:1e:4d:ab:d6:da:78:3f:f7:43:37:
d2:5a:9c:29:12:0c:4d:f7:bd:4b:47:bf:81:c0:61:e0:ef:6b:
d9:94:4c:d6:f8:6d:d6:6c:0d:76:cc:70:9f:86:b3:5b:e4:46:
2d:68:c0:92:d6:d7:ca:56:22:8e:71:15:d1:b8:90:4b:16:09:
bc:22:27:c9:af:d9:9f:e7:cc:62:31:13:99:63:bb:cc:26:ac:
0e:1e:a5:e4:77:4f:c6:b3:fe:07:e6:14:f8:f0:ac:00:7a:c0:
c2:44:f8:ad:99:f9:b6:2f:8c:ee:65:86:58:ee:f7:7e:84:27:
fd:26:27:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 10:29:27 2025 by rpki-client