Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
File: yjNIUNrzcSIFIBmSKevekO8osBg.mft (raw, json)
Hash identifier: gGn+RIhXOReS0DJYtLYrlc+SRb5Lq6seZreyB/ho6tU=
Subject key identifier: E3:AF:04:CE:86:3C:64:E8:32:14:E4:2B:78:2F:18:BC:79:3D:C0:F9
Authority key identifier: CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
Certificate issuer: /CN=ca334850daf371220520199229ebde90ef28b018
Certificate serial: 01974D7C22FEB64824A68E3DE429F1CC13BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
Manifest number: 05FB
Signing time: Sun 08 Jun 2025 03:01:10 +0000
Manifest this update: Sun 08 Jun 2025 03:01:10 +0000
Manifest next update: Mon 09 Jun 2025 03:01:10 +0000
Files and hashes: 1: 6eOqvZGDKFDuA6yXPPPze8WOsrA.roa (hash: ERZvSVqw/o5/S8YL0KRBFbpGBsSfCd4T3Hhjomrg6eY=)
2: yjNIUNrzcSIFIBmSKevekO8osBg.crl (hash: dEdpIz1UyNHZqHjpG8d8vlxShBSwAV7QeVYlPOyzbVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7c:22:fe:b6:48:24:a6:8e:3d:e4:29:f1:cc:13:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca334850daf371220520199229ebde90ef28b018
Validity
Not Before: Jun 8 03:01:10 2025 GMT
Not After : Jun 9 03:01:10 2025 GMT
Subject: CN=e3af04ce863c64e83214e42b782f18bc793dc0f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5b:03:f9:4d:44:6b:54:7d:8a:4e:c0:44:fd:
6f:95:9b:3b:a8:b6:42:7e:12:87:cb:fd:0d:de:69:
ad:4b:d6:62:34:2f:6b:7c:cc:01:e4:d8:50:ff:59:
93:1b:0c:81:2d:63:3f:d0:d7:2e:1c:07:b9:d9:cf:
e1:9c:3d:bb:6b:a2:6d:54:1b:19:5f:26:53:dc:cb:
a5:62:a9:5a:8b:56:30:f0:ed:6e:e0:d6:1d:ae:3c:
b5:6e:ec:e7:4e:c4:50:7f:98:a8:c5:c8:26:14:20:
7d:4b:45:aa:43:97:b8:56:61:e3:2f:1f:d5:e4:c0:
ee:44:06:d8:b4:81:12:0a:ca:52:be:e2:a0:13:6e:
86:b3:ac:15:cb:68:a6:c7:f4:0f:9d:7e:2c:08:ff:
a6:e5:30:bc:de:cd:9f:a8:95:5b:67:4c:e1:40:32:
e3:00:cb:52:31:86:ac:69:11:9d:f7:5c:e5:dd:6a:
84:d0:82:a8:42:84:ae:18:0d:05:91:93:78:c2:87:
2b:86:59:a9:46:0f:e7:e4:8b:fe:27:14:a4:f8:da:
e5:84:08:e9:a5:59:5d:46:e7:51:c7:dc:6f:f1:38:
03:e1:bd:51:3f:4d:f8:07:0b:f4:a7:ae:72:0d:fb:
3e:e8:bd:99:19:9e:48:de:76:d5:fa:1d:ff:0a:1b:
f8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:AF:04:CE:86:3C:64:E8:32:14:E4:2B:78:2F:18:BC:79:3D:C0:F9
X509v3 Authority Key Identifier:
keyid:CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:75:fa:a9:42:cd:15:f6:df:f5:76:fb:1f:69:bf:6c:0d:8d:
68:e2:21:ac:60:15:bc:d9:84:62:cd:5f:28:4c:2d:34:01:33:
fa:31:ef:cc:ed:aa:39:cd:e1:58:18:04:bf:0b:1a:f1:8a:c0:
a8:11:7a:1b:03:77:0b:5d:2c:21:a6:13:f7:b1:b6:83:f4:f5:
56:d0:8c:c9:9c:10:42:31:07:d7:da:dc:7e:3a:c1:71:e3:fd:
d9:0d:1b:31:67:1b:24:15:69:f4:b6:13:b7:6c:e4:b7:7a:04:
18:aa:e6:bb:30:b8:43:f9:0d:4e:b5:f1:b1:32:a6:08:5f:f4:
05:7d:7d:ad:45:18:59:07:6a:ed:8c:02:98:fa:32:65:10:4f:
59:db:36:63:ff:00:a6:42:7b:da:90:5b:f3:f4:d5:f0:ae:a2:
16:ec:4f:f6:74:d7:89:d9:fe:a4:70:ed:df:f5:f8:2d:6c:71:
37:68:c9:53:4e:77:55:71:9c:00:77:3a:78:5a:ae:31:b8:10:
64:bb:97:f9:45:42:e5:60:56:7d:d1:3f:2c:2a:62:cc:7a:84:
21:ce:be:08:67:dc:e0:37:c5:04:e3:ad:2a:c7:69:ba:92:ca:
42:de:2f:2a:e7:9b:0b:90:cd:24:e6:11:48:69:4a:b5:4c:e3:
09:b0:cb:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:19:58 2025 by rpki-client