Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
File: YRuftFY550kvKzYx9kD2q5r7YpA.mft (raw, json)
Hash identifier: QJZSyFsUA9Srh1rE52KsH+9A7mAAdJcT+k74lIxTkDs=
Subject key identifier: 10:49:21:79:E2:25:62:53:BE:85:0F:85:F6:E0:43:67:75:38:30:5C
Authority key identifier: 61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90
Certificate issuer: /CN=611b9fb45639e7492f2b3631f640f6ab9afb6290
Certificate serial: 01974BFB6B62BC9ADA2F9D3D2EBEEC62D7C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
Manifest number: 20
Signing time: Sat 07 Jun 2025 20:00:57 +0000
Manifest this update: Sat 07 Jun 2025 20:00:57 +0000
Manifest next update: Sun 08 Jun 2025 20:00:57 +0000
Files and hashes: 1: 78p7eZsSQ8zonV0TNMaLaLjK96I.roa (hash: +QO+TKXARPaWdOJ8baQ83Q+fqGFHJ3lndWpB+9vwuT8=)
2: Aqz_ehMSCGzxFOJ8FvGbcOAmgSU.roa (hash: s3KelrVfC9+y7bPujzwFv1EKOWZnruzzVkasMV5xnU4=)
3: Dz7fUAyA3Q6aEL4NtI6fDewBO-Q.roa (hash: xVI7un3YDJ74QBZKCGBUFc9S59Re+F08cwvGlwnT43k=)
4: LuLOUOJIGHxq7ykgB21inUS-57w.roa (hash: ab5+eNLQ6Vj2WxgXbW4Ku3+IuOco/UzZZHvYaaD6UKw=)
5: YRuftFY550kvKzYx9kD2q5r7YpA.crl (hash: +qIrN5DUt6WU3xyXtgbAFrTJRoMfoCueWac+w6XbfF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:6b:62:bc:9a:da:2f:9d:3d:2e:be:ec:62:d7:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=611b9fb45639e7492f2b3631f640f6ab9afb6290
Validity
Not Before: Jun 7 20:00:57 2025 GMT
Not After : Jun 8 20:00:57 2025 GMT
Subject: CN=10492179e2256253be850f85f6e043677538305c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:76:c0:a3:2c:49:af:5a:e4:d8:c6:65:05:1f:
a3:f8:39:10:8d:b4:63:17:84:f2:5d:8b:93:fa:15:
f5:69:60:24:2d:8a:ad:15:90:39:9d:97:3d:85:94:
d7:9a:2e:5a:74:23:c6:b8:d2:8c:72:07:bb:c7:e0:
60:95:81:70:a0:9e:9f:28:9a:7c:55:33:73:7b:f3:
d5:31:ab:15:41:e5:b1:28:bb:5b:87:80:b0:1a:b3:
fa:59:06:25:88:3d:7d:91:40:c9:9a:df:2a:bb:1f:
1d:c1:dc:6e:dd:c6:1d:ee:6f:cb:30:9d:ce:d1:26:
1f:bb:d4:3d:ac:64:1f:2d:4e:c8:93:b9:be:b9:6d:
30:fb:e7:a3:a5:54:b4:db:33:9e:a1:67:cf:87:03:
4a:ea:2b:d0:8e:d7:bc:53:00:1c:90:49:f2:fe:24:
3c:f8:24:c9:06:de:6f:ef:fd:ec:c8:e4:14:28:1f:
8f:6a:54:1a:a0:53:35:3a:a8:b5:2b:4d:36:c0:11:
13:f3:39:69:67:ee:d0:fa:cc:74:15:1a:01:9b:6c:
f3:3a:7a:c9:95:2a:fa:64:22:25:a4:1e:59:d5:61:
b7:fe:08:0e:4c:ad:4c:1d:b6:63:21:14:ca:60:6a:
25:3f:02:d1:1e:a4:2d:4c:2e:56:77:5a:49:2e:59:
dd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:49:21:79:E2:25:62:53:BE:85:0F:85:F6:E0:43:67:75:38:30:5C
X509v3 Authority Key Identifier:
keyid:61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:c9:af:2a:3c:9c:08:ab:e8:1f:cf:ea:86:75:2b:0f:d0:54:
1d:2c:ce:5c:88:2c:ad:da:22:b8:27:81:cf:62:74:83:1a:c0:
9a:d7:f6:23:63:8a:9b:39:d3:70:9d:56:f6:85:dd:cf:c5:86:
34:1e:7d:6e:4b:b7:8a:3a:d3:f6:e5:33:a6:9d:68:3c:7c:67:
79:ce:47:3c:93:84:7d:6c:55:1c:7b:25:62:85:9f:55:b6:d6:
3c:2a:f6:89:11:61:2e:32:76:87:80:d0:38:da:29:21:10:99:
32:6f:b1:09:70:75:39:d1:24:4b:37:fd:a3:c0:a9:e5:eb:3b:
ac:5c:06:02:f1:8d:a6:fd:36:ac:34:62:2c:43:16:10:cd:ee:
31:52:42:89:47:e1:3f:53:73:6c:0f:2a:73:56:87:66:9a:4b:
32:7e:1f:aa:e9:d9:d9:de:67:3c:9d:38:6e:6a:30:95:ba:f1:
cf:2b:94:d3:ee:55:1c:f3:7c:39:59:1e:f8:b0:cf:b0:e7:89:
8c:f1:4f:fa:ed:7d:ac:4c:df:13:46:46:1e:eb:7a:2a:07:b3:
91:d6:8f:6f:47:55:09:ba:37:75:60:1a:ca:b4:9f:54:3e:be:
d4:93:60:59:2f:c4:4a:57:0c:ce:59:51:6c:01:78:58:da:ba:
2c:ca:44:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:20:38 2025 by rpki-client