Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
File: YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft (raw, json)
Hash identifier: /24rmPJbznLpoQ5uEp43FGcnZQiOoIQ/Ic7JdrTYhHI=
Subject key identifier: 4D:FB:88:27:2F:9F:23:DB:E2:6A:CB:B4:5D:0C:57:47:00:9B:AF:7E
Authority key identifier: 61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
Certificate issuer: /CN=6149cbba3e6629beaebfb69668678ada51744898
Certificate serial: 01974A7AC3C3F86451C5F8EEFC0A9D430F3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
Manifest number: 12A5
Signing time: Sat 07 Jun 2025 13:00:48 +0000
Manifest this update: Sat 07 Jun 2025 13:00:48 +0000
Manifest next update: Sun 08 Jun 2025 13:00:48 +0000
Files and hashes: 1: 0IG70QW2hCrm52M5Cqyqdv7Bcb0.roa (hash: usdtXTbOrc0vwd46ZO8C/l/xue6j9QcbuHgY1Bupvvo=)
2: YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl (hash: uQMOdvJY+mkgqZwXK3S3faXBj9awr7hT1RuK7++iHY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:c3:c3:f8:64:51:c5:f8:ee:fc:0a:9d:43:0f:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6149cbba3e6629beaebfb69668678ada51744898
Validity
Not Before: Jun 7 13:00:48 2025 GMT
Not After : Jun 8 13:00:48 2025 GMT
Subject: CN=4dfb88272f9f23dbe26acbb45d0c5747009baf7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4e:0a:47:31:41:0a:26:4a:fa:f7:64:9c:9f:
16:86:9d:80:e8:73:80:41:6a:8f:40:f2:f8:8e:f1:
76:04:95:69:3a:c3:e1:3f:1f:22:f5:9d:3f:ce:1b:
93:10:41:c2:a7:8b:f5:d9:4b:5c:39:8a:d2:db:41:
3c:a2:92:94:1d:03:8d:fd:c7:0a:fd:f4:84:05:6d:
6e:b9:69:9e:5b:75:1c:ff:92:d2:c9:ed:9e:14:fb:
ea:1f:7a:68:21:da:30:23:68:d7:f6:1e:3b:95:5c:
0a:a6:cd:9b:fc:20:f7:8d:5f:44:ef:39:d1:3a:88:
c3:a3:77:0d:9c:f9:26:60:ab:6f:7b:cc:1e:40:b7:
01:70:1b:85:2c:b4:c2:1b:04:40:bf:e3:ef:31:0b:
d3:c8:fd:49:31:4b:d6:7b:bb:0a:0c:0d:83:c7:21:
2a:b6:51:58:f9:74:5a:9f:dd:24:e4:87:0c:e0:81:
72:a9:da:2f:db:5d:6b:fe:3e:0f:97:3f:81:30:06:
f8:56:cc:4e:c6:28:59:ed:29:f8:d1:ea:80:4c:10:
59:57:e2:72:7d:00:9e:f9:40:6b:78:9d:6c:43:4e:
57:30:63:0a:a2:09:2f:e9:d0:a3:0d:e1:52:88:81:
9a:b8:ba:cf:4b:24:93:32:f0:82:8f:4f:e8:5a:3e:
d4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:FB:88:27:2F:9F:23:DB:E2:6A:CB:B4:5D:0C:57:47:00:9B:AF:7E
X509v3 Authority Key Identifier:
keyid:61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:4d:3c:2d:d5:c7:1e:23:4f:7f:36:99:c2:3d:a5:ab:c9:cf:
60:1a:2f:e7:a5:e8:68:3f:a4:69:c9:23:1c:2b:d4:81:24:df:
e2:7c:f0:ee:6f:fa:0e:62:63:12:f4:c9:95:b3:d1:8f:c1:ad:
e8:8f:23:0f:56:66:4a:ec:ee:db:5e:59:78:00:00:c4:5a:e7:
0e:6b:a1:c2:d6:61:9d:87:9a:30:32:52:f0:63:e4:3b:05:e0:
d5:89:e7:b4:7c:76:b1:1d:94:ba:bd:42:b1:cd:ea:e4:35:2f:
84:df:f8:45:80:f8:75:c9:fa:15:ea:5c:d5:16:9c:30:63:3a:
9b:53:43:61:e2:cc:da:f6:1b:f8:33:00:ea:e4:98:b2:93:30:
83:a4:f8:27:3a:0d:75:20:2d:88:a3:68:ca:f3:47:90:4d:a0:
db:ad:d9:0b:2b:08:2d:aa:ef:ff:d1:6b:1a:09:ee:ab:ca:99:
a5:6c:27:31:2f:38:31:8e:d4:cd:3e:7b:93:96:3f:d7:96:cd:
38:81:9f:dc:70:22:89:72:8a:c0:bb:8b:e2:ba:d0:49:dd:2b:
9f:b7:28:1a:92:68:d8:df:02:b8:d2:09:4d:4e:6d:e1:d7:7c:
e8:29:4a:cc:e0:aa:fd:69:d2:03:6d:09:30:92:9e:d4:bb:c4:
9a:60:1a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:23:31 2025 by rpki-client