Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: hOdyH5sU6gHMN3qjoXv2hKspm6Ld5iORwJaMGOK57qI=
Subject key identifier: A4:40:46:AB:4F:51:1B:AB:97:9F:6B:F4:E2:5B:2E:C4:88:F9:35:D1
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 01974A0CE1C61DD24695940ADA16311062D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 035F
Signing time: Sat 07 Jun 2025 11:00:47 +0000
Manifest this update: Sat 07 Jun 2025 11:00:47 +0000
Manifest next update: Sun 08 Jun 2025 11:00:47 +0000
Files and hashes: 1: OpWpWHElMT6Em0cb46EU4-eZHBM.roa (hash: UkmgnvSBtnTTqSpYqYCCjTjePdoSg2sK2f+rfkHw/HY=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: dxMNUIGYsmy5aUaT+dGpshx0embwlYf5/+Zxz1kseFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:e1:c6:1d:d2:46:95:94:0a:da:16:31:10:62:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Jun 7 11:00:47 2025 GMT
Not After : Jun 8 11:00:47 2025 GMT
Subject: CN=a44046ab4f511bab979f6bf4e25b2ec488f935d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e8:ab:4c:b2:96:26:80:f7:21:43:f3:b8:10:
92:ad:54:2b:39:94:c1:0c:b3:ce:21:28:a6:4d:e5:
62:f1:29:5a:98:c9:74:c1:55:fa:62:29:dc:9a:9f:
f0:1a:f4:99:f8:fe:1a:e7:46:c6:6f:9b:ad:d7:f0:
a3:2d:e9:e6:39:ee:58:8d:e4:39:f0:7f:8f:8c:2d:
92:0d:b1:0a:62:2d:7e:d8:a1:47:ef:86:04:79:03:
a1:a7:d6:40:c7:7e:98:86:c5:6a:5b:90:5f:d2:39:
11:10:1e:09:f7:84:d6:2e:ed:db:33:75:31:06:f0:
a4:a6:b6:d7:15:51:62:31:05:f7:a3:08:66:f9:d7:
05:df:d2:ad:a7:a3:f9:f0:86:dc:28:e1:e8:15:04:
f8:aa:79:b4:99:27:6d:72:0e:c8:58:d4:4a:f9:74:
d6:b2:41:a7:39:13:fc:63:9c:e9:7c:d3:ae:56:99:
19:ee:3f:6b:2a:3c:61:34:a3:11:34:90:08:54:bf:
9d:50:16:62:5a:26:60:8f:96:11:e0:04:06:a0:07:
87:a5:22:f5:6b:8c:af:21:93:f9:d0:c3:b1:6f:9f:
16:43:32:7c:42:8d:7b:cb:94:6d:48:67:97:87:f5:
f2:ab:d1:de:4d:f2:9d:c5:c1:7f:34:2a:33:22:b3:
31:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:40:46:AB:4F:51:1B:AB:97:9F:6B:F4:E2:5B:2E:C4:88:F9:35:D1
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:63:08:57:65:a2:5b:37:1b:25:db:ce:d5:a7:05:57:16:88:
25:0c:0f:b0:da:9b:32:40:f6:b6:65:12:f2:e0:e2:be:2c:62:
86:f9:af:cf:ae:50:83:26:3c:d9:aa:91:41:ef:94:c8:43:a6:
00:34:de:66:53:78:c7:db:b3:4b:1e:c1:c2:3d:24:f1:93:2a:
09:a4:a6:59:1b:61:7a:a2:77:01:54:af:f5:91:5c:27:dd:b0:
5c:0e:b0:0d:99:70:39:4a:f2:34:50:06:be:3a:bd:06:68:6f:
93:5c:bf:cf:c9:bd:1d:7f:fc:13:70:f8:c1:6c:a2:00:18:3e:
0d:de:d6:09:3e:3f:f2:70:a9:9a:77:40:24:d8:80:d7:51:0c:
7f:3c:65:56:68:8a:19:3c:9e:fc:25:1a:19:cb:ec:1e:ed:89:
42:e9:58:4d:6b:ab:32:8b:33:20:58:c3:49:97:13:be:ce:b4:
f2:75:7c:41:04:e8:31:a2:99:88:b5:67:9b:71:22:b0:0d:ba:
b9:8e:f3:39:93:02:be:a8:0e:ce:f7:97:17:6d:19:13:6b:bb:
fe:90:5c:93:73:55:81:c1:a8:73:b8:3f:dc:ae:06:08:1d:01:
75:89:5d:17:5f:a7:68:f8:2a:66:d1:53:cd:7e:0f:9f:5f:73:
41:59:9c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:16:42 2025 by rpki-client