Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: aMgHvPwbzkfAywdp5hOjVHRGa0swYW4Aic/kHk2V2aM=
Subject key identifier: B4:74:C5:99:A6:E9:24:AC:58:6D:4E:00:B2:EA:9D:27:62:F6:8D:19
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 019746D494C07F26A86853B2DBC286B01369
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0A9A
Signing time: Fri 06 Jun 2025 20:00:26 +0000
Manifest this update: Fri 06 Jun 2025 20:00:26 +0000
Manifest next update: Sat 07 Jun 2025 20:00:26 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: EAbHNxsacs6MNF+aqSy7lkEvx6N1Swqh3QyymgZ6Y9g=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:94:c0:7f:26:a8:68:53:b2:db:c2:86:b0:13:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Jun 6 20:00:26 2025 GMT
Not After : Jun 7 20:00:26 2025 GMT
Subject: CN=b474c599a6e924ac586d4e00b2ea9d2762f68d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:06:64:13:73:94:ab:fd:b6:b7:97:6d:c3:25:
cd:72:ca:91:fd:47:0b:55:95:82:65:a8:89:03:b0:
51:d5:0c:67:2a:20:3c:65:f5:65:3d:a2:65:c3:34:
8b:f5:22:c4:28:ef:eb:1c:d7:bf:6a:0b:f9:2d:cd:
00:c2:c5:65:5a:2c:7a:54:d0:fa:3e:06:5f:ca:80:
17:12:f6:dd:d2:26:1a:cd:c0:14:6f:2d:1c:4c:72:
22:16:33:65:7c:1e:c3:1e:7b:06:f4:09:99:9e:fd:
14:a7:9e:6e:01:18:1d:31:6b:00:29:23:d8:83:1a:
20:4d:1f:98:97:c5:20:7a:d2:4f:fe:04:8e:3a:90:
ef:8b:81:de:15:ef:ee:55:af:d1:08:a0:be:a9:e3:
51:21:7d:cd:a1:6f:a7:90:f9:eb:f0:9f:60:75:71:
3b:ce:76:74:fa:81:42:41:aa:f2:9e:ac:9c:e6:ad:
86:2a:f3:48:53:81:15:a7:19:88:43:69:89:a8:17:
b9:b1:1c:9e:98:10:9e:84:08:65:1d:9f:7c:8c:44:
69:76:95:27:e8:44:bb:98:8a:3e:99:6d:58:1a:42:
e9:4a:89:7d:1a:16:f3:d7:4c:21:52:73:c1:65:05:
c9:e7:dc:d5:c2:48:c5:37:10:ea:d3:97:d9:10:01:
64:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:74:C5:99:A6:E9:24:AC:58:6D:4E:00:B2:EA:9D:27:62:F6:8D:19
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:67:e6:ad:10:05:f3:46:36:1d:7d:70:61:d8:72:8f:6c:bf:
8b:6d:61:10:1d:4d:38:9c:e0:7e:71:94:c2:ee:99:5a:6e:78:
c4:a2:1d:49:4c:5c:9d:c7:88:e7:ea:dd:f7:80:43:04:8f:cf:
f1:12:17:d6:91:bd:28:2f:6e:d2:c4:92:25:63:57:a5:11:55:
b4:44:52:47:24:ee:91:61:c4:27:85:d1:f5:40:a7:38:07:b8:
01:ca:84:23:a3:6e:a3:f7:8f:05:30:e6:4e:4f:e7:19:ae:a8:
97:47:e7:47:70:7b:b5:f2:e0:54:e1:35:ad:5e:5c:7f:d1:aa:
b2:94:93:30:06:b8:ae:4a:71:1c:9e:87:9a:fa:d8:bb:b9:d7:
da:bc:46:4d:4b:5d:60:a7:92:02:c3:b4:73:43:ea:fa:c4:93:
61:66:a6:ba:48:58:30:68:73:c1:64:53:aa:13:6a:9f:89:0d:
26:d6:5b:06:b8:30:8e:71:0b:a4:ea:84:20:d2:fa:44:e9:14:
7e:3e:cb:58:91:e5:cd:d4:ba:d2:b3:18:42:b5:17:b2:62:83:
44:ff:69:ef:38:ed:e3:72:37:cb:33:0c:55:84:68:60:4f:41:
56:24:43:3e:74:8e:00:af:de:dd:eb:2c:05:1a:58:e7:60:ae:
9c:47:b4:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:57:11 2025 by rpki-client