Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: U3tVtczNsOHVsCLChcAUQ/2WNERzLSzK5X3IOoebRuM=
Subject key identifier: 56:5A:1B:94:C7:C6:C1:C3:5F:CD:B7:45:64:77:D3:49:48:DE:51:0F
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 0197518F65E05DE4E926671E5FAAA05533FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 05CF
Signing time: Sun 08 Jun 2025 22:00:41 +0000
Manifest this update: Sun 08 Jun 2025 22:00:41 +0000
Manifest next update: Mon 09 Jun 2025 22:00:41 +0000
Files and hashes: 1: GP-mcsPVfkxFR6BakAdLWMHzvnk.roa (hash: 46Gy5AnSQQR4RzlnLScg9/HmedHrQU8V47NDaOoaI7E=)
2: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: 9rOhC0kCr93s5M/O2cN7RuwWMRP2aRFw9Lr2UV1QE9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:8f:65:e0:5d:e4:e9:26:67:1e:5f:aa:a0:55:33:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Jun 8 22:00:41 2025 GMT
Not After : Jun 9 22:00:41 2025 GMT
Subject: CN=565a1b94c7c6c1c35fcdb7456477d34948de510f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:81:02:c9:f3:83:14:7f:5b:db:69:a8:ea:3b:
0b:a3:d3:03:12:0a:89:60:77:f9:f3:2b:d9:21:7d:
83:3c:3d:fc:1b:28:38:1b:d7:2e:a2:41:24:d6:a0:
5e:b8:05:1c:f7:38:08:00:88:33:40:bc:a3:99:21:
5a:57:71:4a:a3:72:d7:2e:e0:9a:74:dc:f7:77:f6:
36:3c:13:d4:2e:ed:8c:77:18:50:c5:a6:64:6c:04:
6e:09:ec:69:b6:00:4b:97:47:11:af:6d:56:cd:38:
d1:a9:72:bf:e9:de:fe:d6:27:de:d9:66:5a:ce:01:
a8:dd:21:cc:9a:bf:97:f1:4c:c9:95:28:3f:5a:ec:
af:16:19:cb:ca:d2:08:8a:20:5a:73:ee:c3:43:5c:
59:db:2d:f5:d1:d1:02:3c:a1:68:5d:69:b3:26:45:
99:40:44:47:00:21:c1:e1:4e:82:23:77:cf:03:77:
ac:8a:85:8d:84:c5:0e:c4:f7:0c:fd:87:27:93:ee:
a7:35:9c:60:0c:7a:b8:54:e4:8d:5b:12:f8:b9:e5:
84:e2:e4:ef:11:83:27:1d:73:0d:bf:3a:17:a6:f9:
e2:10:61:2b:05:f7:8a:55:86:ec:a4:4f:60:87:cf:
ed:00:75:c2:39:9d:fb:70:bb:9d:74:71:30:bb:5b:
b2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5A:1B:94:C7:C6:C1:C3:5F:CD:B7:45:64:77:D3:49:48:DE:51:0F
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:be:c3:ef:05:c4:94:4e:9d:89:e6:e9:d9:64:b2:7c:54:02:
91:9a:13:72:3b:b3:39:bd:25:cf:7d:d6:0a:d4:f5:09:83:53:
95:fe:11:9c:81:de:38:6f:bc:ab:4c:a6:e0:67:23:fd:f1:6a:
74:6a:5b:cb:f9:a5:01:b8:38:60:8d:bc:a0:7e:e6:66:c5:51:
0b:60:cd:13:80:c7:f6:c2:68:6c:09:ea:51:bd:e3:45:64:49:
65:dc:ad:8a:73:ac:2b:6e:36:2d:a7:2d:22:4a:af:f1:dc:de:
b8:92:ae:d9:34:ab:1f:01:e3:4d:5d:df:3c:98:39:49:a9:66:
c9:aa:c4:48:97:51:26:58:7b:b7:98:24:da:08:a6:83:d5:7a:
b2:8f:45:55:e2:2f:0e:fc:90:46:b7:bf:8a:18:35:2b:38:9a:
bf:b2:da:c9:9c:be:14:d1:fa:5f:e2:fe:b4:a1:0e:ac:a4:1c:
15:93:d9:8a:7d:40:31:ef:51:7f:30:c9:ed:c1:a7:e5:d7:e7:
bd:7a:69:28:ac:42:df:11:25:0c:0f:b4:ca:7e:5e:b7:fb:f6:
d9:1c:3f:75:09:8a:19:0b:f0:1d:34:2e:24:18:c7:99:71:cf:
9a:a7:c0:9b:51:18:2d:27:8a:04:ee:4c:ad:17:5a:71:80:5c:
84:6d:1a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 03:04:56 2025 by rpki-client