Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
File: yDOgOJWSdW5BXN40irvCQxKwLfY.mft (raw, json)
Hash identifier: s65kEmzGRjnkmhSGvFldi1bi4zPoZWz7UVL8p6svP6g=
Subject key identifier: 9E:37:15:16:23:BA:19:C5:E9:13:D0:BE:A4:F1:8D:89:3B:63:95:82
Authority key identifier: C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
Certificate issuer: /CN=c833a0389592756e415cde348abbc24312b02df6
Certificate serial: 019747E75EB9442B5B3A8CEFF077EDC4796B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 01:00:34 +0000
Manifest this update: Sat 07 Jun 2025 01:00:34 +0000
Manifest next update: Sun 08 Jun 2025 01:00:34 +0000
Files and hashes: 1: erRTM1_91VtMTpdLg1tFc8DEnKQ.roa (hash: igv5stthjArSt6knKlRkVvpjhTI9/bVwYZs5FEOn1NI=)
2: yDOgOJWSdW5BXN40irvCQxKwLfY.crl (hash: YRaABP45L854W9ohtJfONVD7NO+f2l7iq8/0+o47R5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:5e:b9:44:2b:5b:3a:8c:ef:f0:77:ed:c4:79:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c833a0389592756e415cde348abbc24312b02df6
Validity
Not Before: Jun 7 01:00:34 2025 GMT
Not After : Jun 8 01:00:34 2025 GMT
Subject: CN=9e37151623ba19c5e913d0bea4f18d893b639582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:28:3b:ff:cf:30:05:7b:59:78:1e:92:24:18:
5f:bb:c1:2a:a7:35:b1:5e:d8:85:09:f4:af:c5:1a:
71:e5:de:24:08:aa:15:db:33:90:18:ae:9b:7d:95:
de:ff:c8:e1:09:92:41:80:99:d7:92:4f:f8:9b:2a:
f0:3e:12:8d:9d:61:ab:16:de:dc:60:d6:0b:d7:f3:
69:5d:96:b8:c0:b3:a2:b8:10:de:2d:99:ee:94:8d:
4a:c1:64:fc:39:52:6e:6d:a0:f9:c1:ef:4a:7a:6e:
be:29:71:fe:ec:11:6a:3c:2a:12:2f:c7:dc:2f:e9:
6f:89:4d:20:d7:59:10:9b:b3:df:9b:17:4a:c5:11:
d2:37:98:8a:01:56:cd:f6:f8:15:5e:05:0c:bd:26:
e1:b3:5b:cb:05:2a:49:20:1f:83:4a:53:bc:aa:f0:
5d:fe:1c:9d:f6:60:1f:3c:7e:43:cb:d9:7e:85:b9:
9e:4d:79:7f:52:a8:61:d7:71:77:9b:7a:95:19:52:
72:d4:c9:a2:4e:8a:e4:2c:0f:a0:ff:bb:91:c3:75:
0f:8c:4b:7e:61:8e:9d:fe:1b:df:89:80:80:20:ec:
93:98:eb:b4:a4:0d:c5:ce:20:fa:25:fd:7d:b7:e5:
be:e6:28:98:fa:29:9e:2c:f5:7f:f1:dc:4d:1e:63:
3d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:37:15:16:23:BA:19:C5:E9:13:D0:BE:A4:F1:8D:89:3B:63:95:82
X509v3 Authority Key Identifier:
keyid:C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:47:82:25:d0:ee:be:57:0d:32:5a:17:67:ae:dc:f8:9a:02:
9e:5a:75:e9:7e:d6:67:76:10:8d:d7:0e:24:c0:b6:7d:22:54:
bc:ea:ea:b1:aa:94:73:5d:1a:15:a4:1d:1a:fe:52:24:dd:1d:
6f:47:81:29:4e:34:d1:3f:2b:1c:5b:9f:e2:10:c1:9b:90:25:
a8:a4:62:13:7b:3b:a4:df:aa:78:52:6a:46:0d:ea:c4:40:32:
91:35:a4:fd:92:d1:39:44:30:3a:1a:85:7c:21:cb:02:40:15:
56:4a:44:82:cf:09:08:ed:00:bc:ea:cc:32:47:d0:84:c9:37:
ac:5a:2a:57:4a:f1:da:57:88:5e:02:de:31:0d:7b:06:bf:44:
5c:27:6e:2a:0f:4a:c5:7c:3b:78:13:78:40:7e:78:f7:99:30:
33:7a:6f:cd:37:8a:ae:9c:75:b2:94:96:11:05:fa:3d:12:ad:
45:59:f1:46:04:46:1f:ab:7c:d7:18:30:fd:6d:b5:49:a2:08:
35:60:c4:b6:6c:f6:b9:f9:0c:7f:0a:a1:23:b3:86:2f:81:88:
80:5c:62:9c:3e:50:56:fd:08:66:ec:e4:87:17:f0:77:5f:29:
29:26:e8:54:bd:74:08:2e:94:60:2c:c9:a2:69:4e:b0:2d:d6:
37:aa:83:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:38:42 2025 by rpki-client