Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json)
Hash identifier: BsneZg68A6X3ugNQZWZfrKO71hEXGU3xvlTufDXf0hw=
Subject key identifier: C4:A7:AD:20:00:0B:06:B0:87:24:26:73:CD:0A:3E:96:7A:8D:89:DD
Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c
Certificate serial: 019752342564E765D11609410A50B8C2D4E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
Manifest number: 100F
Signing time: Mon 09 Jun 2025 01:00:38 +0000
Manifest this update: Mon 09 Jun 2025 01:00:38 +0000
Manifest next update: Tue 10 Jun 2025 01:00:38 +0000
Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: buRWZzrOy1hqCWu6lvqkFiQ6oSrLfqPuf9w2yRnhzAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 01:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:25:64:e7:65:d1:16:09:41:0a:50:b8:c2:d4:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6117d6158043150b0ad224a0648df0185706019c
Validity
Not Before: Jun 9 01:00:38 2025 GMT
Not After : Jun 10 01:00:38 2025 GMT
Subject: CN=c4a7ad20000b06b087242673cd0a3e967a8d89dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b9:ef:46:6b:db:87:53:88:9d:84:51:d7:88:
01:a0:48:51:3b:fb:2e:c7:60:8b:02:c7:e4:6d:92:
de:46:b7:5e:8c:3e:9d:85:93:d0:c2:17:52:29:77:
95:57:3b:24:60:13:aa:eb:a7:9a:37:b4:a1:e3:c6:
69:03:7d:e6:21:4b:44:70:33:56:4a:23:f6:48:7c:
ca:70:12:a7:4a:ca:6a:fd:89:ac:8f:7d:40:e3:4b:
31:31:4b:46:40:64:6b:6e:9e:59:83:ed:1b:d6:de:
f8:23:1f:75:db:f5:03:73:5a:23:0d:72:01:00:8a:
02:0a:f7:2a:9d:dc:ac:f5:e1:ea:c7:cb:b4:42:37:
9e:1e:2c:92:9e:84:39:60:e5:63:5e:55:7c:36:59:
4d:41:a3:36:88:b9:54:92:71:8a:1c:9d:94:be:40:
ad:f1:2b:c6:19:42:d9:0b:05:47:e7:96:4c:74:70:
7c:17:32:22:60:93:9f:8f:68:74:e0:46:b8:19:ce:
3d:54:a2:9b:76:d8:e5:99:06:97:bf:43:32:8b:72:
ff:a8:3e:ed:14:0f:b6:b6:07:c0:da:10:c5:c6:b7:
f3:17:3e:a6:35:29:4f:02:29:06:7f:c0:d3:db:0a:
20:00:22:48:22:4c:0b:d0:b0:a1:41:3f:94:09:87:
7b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:A7:AD:20:00:0B:06:B0:87:24:26:73:CD:0A:3E:96:7A:8D:89:DD
X509v3 Authority Key Identifier:
keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:9e:fe:6f:fd:61:49:17:0a:22:6b:2e:cf:d9:30:5f:77:0b:
80:37:93:88:56:7a:44:fb:23:2f:51:35:28:02:1d:47:bb:b6:
8e:ff:d3:3f:3f:c6:2d:6b:b0:a5:41:b0:c1:82:84:5b:7e:28:
c1:71:31:86:03:8f:bf:2c:48:24:59:a0:04:f6:48:5c:06:75:
2e:e2:87:6e:f2:7d:f8:86:2e:15:e7:53:4f:2b:a3:7d:3d:54:
f9:b6:03:e6:a8:95:fa:85:6c:7a:da:d3:d5:6e:18:91:2d:cd:
b7:4f:f1:36:eb:3f:56:6a:f3:2f:d6:f4:ae:c5:2c:82:31:89:
9d:a1:ab:74:26:f4:e1:c8:48:cb:68:68:0e:cd:2d:fe:d4:9d:
6b:79:c1:a5:21:f2:2c:38:40:6c:10:e5:d5:f6:0e:1c:81:00:
2f:75:b1:10:d6:29:5a:bd:66:8e:6a:fb:36:24:f2:41:34:3a:
ac:f4:fa:47:2f:d5:10:02:6d:f1:de:10:ad:49:1f:0b:f3:ea:
58:d9:15:c4:20:4b:2a:7a:5e:bc:29:ae:11:63:55:ed:44:86:
e2:fc:54:6f:eb:26:d4:11:e0:ed:c5:df:21:44:8a:a3:de:80:
fa:2f:7d:29:b7:70:59:3b:eb:e2:97:af:f2:b1:c7:80:30:8b:
b6:81:8f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 08:46:46 2025 by rpki-client