Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
File: YIYxT4djXnk7wuPbvtZkBbisZ3E.mft (raw, json)
Hash identifier: 5mW3L6grnbnEWmeACLn5kLg6sOHgLjY+9Z+Mmzme5uA=
Subject key identifier: 20:AA:46:A9:47:79:E4:17:57:3F:1F:1C:A0:4D:EA:73:99:54:74:27
Authority key identifier: 60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
Certificate issuer: /CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Certificate serial: 0197470B7A6E649F08195E3A5C324996A2F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
Manifest number: 157A
Signing time: Fri 06 Jun 2025 21:00:23 +0000
Manifest this update: Fri 06 Jun 2025 21:00:23 +0000
Manifest next update: Sat 07 Jun 2025 21:00:23 +0000
Files and hashes: 1: YIYxT4djXnk7wuPbvtZkBbisZ3E.crl (hash: maAxvR+QIYD27dPfGeVWAuFij97JLSo6rwC75yP5Y2k=)
2: ul5EPC9Jg-xhzDe3-EnpTxgh7Dw.roa (hash: pDodgoORM1hTtwe+JSl0g3mWRdcfDqaXlT1wiKFyqck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:7a:6e:64:9f:08:19:5e:3a:5c:32:49:96:a2:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Validity
Not Before: Jun 6 21:00:23 2025 GMT
Not After : Jun 7 21:00:23 2025 GMT
Subject: CN=20aa46a94779e417573f1f1ca04dea7399547427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:09:26:d9:8d:7f:45:2a:32:f4:6e:f5:db:59:
45:01:7d:3e:b9:94:15:86:6d:d1:38:8f:18:01:18:
7f:f9:07:c4:6d:cb:3a:1b:10:53:dd:48:7e:cb:d7:
68:5c:aa:8c:30:f3:eb:03:03:79:1c:ff:94:2a:39:
f8:c9:78:18:f5:8b:91:f8:b3:f8:16:c2:0a:af:5b:
a1:27:39:46:a4:e4:30:d9:28:51:d4:68:01:f2:2e:
56:2f:9d:72:f7:9b:9c:32:5e:66:e2:c7:7d:e0:a4:
e8:7e:e9:e2:48:a6:c4:96:d9:89:7a:0a:51:0c:7f:
69:8e:3e:42:cc:3f:13:e2:3e:ce:e8:bb:fa:1c:35:
e7:a6:df:38:cd:92:4a:68:c4:30:5c:b1:08:bb:92:
56:1d:96:ac:2a:18:41:4e:8e:37:00:00:3b:22:e9:
0c:6a:73:3a:67:d9:09:7c:3b:8c:0d:ed:84:70:68:
05:f4:2c:45:e5:ab:05:de:e3:bd:42:30:2d:a0:57:
bd:f5:4b:c3:28:39:11:fc:a9:4f:d8:dd:e0:52:95:
2a:ca:f2:c5:3d:c9:06:83:54:8c:7c:07:9c:48:e3:
42:3a:58:50:fd:32:c8:e7:d1:08:1f:90:d3:cd:99:
5b:0c:0a:97:b0:09:38:6a:cc:34:d3:f1:09:9a:45:
8f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:AA:46:A9:47:79:E4:17:57:3F:1F:1C:A0:4D:EA:73:99:54:74:27
X509v3 Authority Key Identifier:
keyid:60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:1e:da:0a:ea:f3:97:f3:c2:8f:88:22:49:84:f9:e9:43:9f:
2a:90:8a:09:be:86:46:6e:39:a3:4f:4b:48:c3:a9:a1:86:0d:
3b:89:41:7a:47:80:67:2c:49:7c:f1:04:77:e3:20:f1:f8:12:
10:3b:47:69:71:2d:3e:e4:fe:ff:bf:2c:e5:33:2b:fa:62:27:
ba:e6:dc:59:f2:ea:74:ec:f4:19:7a:b7:56:35:74:9a:51:ec:
8a:c9:49:93:50:bc:8d:08:86:cb:59:11:3d:8d:02:5d:26:39:
8a:e6:69:06:e5:70:eb:31:64:fe:6d:5b:e1:3d:ad:3e:df:7d:
48:4a:f4:de:11:0d:e8:dc:f8:f5:63:23:6d:2e:ae:61:ed:05:
92:00:f2:6e:e1:05:cc:bd:fc:94:b1:49:05:1c:2e:79:95:b7:
eb:de:98:b8:43:a1:ad:a1:25:38:51:f5:39:86:c8:49:93:f0:
33:09:90:64:95:97:41:d8:9a:9d:ed:1a:54:79:2e:aa:6c:a8:
85:cc:b4:a9:24:6b:0e:56:77:1d:53:1c:46:48:a6:20:cf:76:
61:94:05:e5:76:41:24:8b:41:67:7c:76:37:d0:65:eb:3c:66:
33:f2:33:15:e5:cb:72:70:31:64:30:6d:43:95:de:4c:24:3f:
82:d6:4a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:11:44 2025 by rpki-client