Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
File: y34FPHGZWsyb8TM_55w9W_1ulk4.mft (raw, json)
Hash identifier: fY8YoYexTL/HeOyShAVWujBhTjKnNcQW4mjMUynnl4A=
Subject key identifier: E2:12:94:87:00:9D:6E:3A:FB:44:39:AD:38:C3:02:1A:77:AE:E2:30
Authority key identifier: CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
Certificate issuer: /CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Certificate serial: 01974BC40E9E6DC147CCD29FEDDF8CDB718A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
Manifest number: 0BEC
Signing time: Sat 07 Jun 2025 19:00:29 +0000
Manifest this update: Sat 07 Jun 2025 19:00:29 +0000
Manifest next update: Sun 08 Jun 2025 19:00:29 +0000
Files and hashes: 1: OY3T_xG0jFJ_6yc5NmhmVJsNZOM.roa (hash: af8mlEBnTxkbr73XYFoiiYy6suBahBU1dHobCDHfy/U=)
2: y34FPHGZWsyb8TM_55w9W_1ulk4.crl (hash: vfcL7XqwH6ece62jqkso9Sb9NwHfk2T1RYzrbWTz+gw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 19:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:0e:9e:6d:c1:47:cc:d2:9f:ed:df:8c:db:71:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Validity
Not Before: Jun 7 19:00:29 2025 GMT
Not After : Jun 8 19:00:29 2025 GMT
Subject: CN=e2129487009d6e3afb4439ad38c3021a77aee230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7f:a3:ba:3c:b4:c0:80:68:76:a3:a8:43:ec:
55:f3:ea:c0:4a:4d:ab:54:ff:ae:1b:92:17:73:6b:
59:d9:01:a6:1a:21:68:36:6b:a3:2f:b2:a6:01:f0:
44:eb:74:27:cf:b9:7a:ef:f8:68:d8:9e:d0:55:8b:
b2:32:d8:c9:eb:d5:3b:e8:95:6c:ce:77:94:66:dd:
01:48:97:f6:cb:b0:be:d7:4c:2b:35:89:a3:9e:ca:
3d:5c:fa:3f:ef:0f:a3:5e:5c:fa:23:9b:8d:6d:0e:
e6:ff:eb:8b:4e:99:4d:be:e9:be:f5:4a:7d:c4:fc:
5d:74:f2:a9:33:d3:97:82:ec:bd:a9:1f:16:da:5a:
b6:10:e7:7e:dc:d3:f4:60:10:f4:55:10:cf:c5:d3:
ac:01:87:d8:61:21:f7:d0:2f:97:55:42:b4:b5:12:
48:65:bd:13:f5:8a:b5:7b:db:0e:87:3a:dc:08:7d:
b7:6b:b2:42:42:e4:50:4b:6d:bf:15:f4:f2:96:19:
43:ba:97:b0:3e:3f:14:2b:76:f1:b0:98:be:d8:c0:
27:bf:b5:15:f6:9b:bd:69:37:3f:f3:32:8a:1e:b6:
a0:c9:40:67:ec:be:bc:3f:9f:c9:29:71:d4:00:de:
af:17:78:3c:c0:8d:a5:6c:fb:00:52:e7:0a:db:68:
57:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:12:94:87:00:9D:6E:3A:FB:44:39:AD:38:C3:02:1A:77:AE:E2:30
X509v3 Authority Key Identifier:
keyid:CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:5f:89:c3:9b:07:d8:e8:37:d6:c9:40:47:b6:6f:1d:88:1d:
ed:a8:46:54:46:98:13:d3:73:9d:c8:dc:d2:0a:d3:bf:b0:6a:
64:1b:92:15:3f:1f:72:72:18:20:ef:7f:71:25:cf:4f:a4:d3:
63:7d:c9:92:b4:7a:27:0c:63:9a:7b:d8:ad:b9:58:43:60:c0:
ba:b9:85:88:5a:90:04:a8:2e:b2:0a:74:65:72:73:d1:75:9e:
73:f1:86:68:49:77:94:25:12:a6:f3:1a:c3:07:87:b2:59:eb:
df:eb:ba:32:2e:ee:d7:15:df:13:ab:21:b0:b0:b4:47:8d:00:
43:e2:3f:0c:02:cd:6b:33:51:ad:ee:a7:b1:5f:65:d3:6b:b3:
af:5d:a1:4f:06:f8:20:f2:25:8a:8a:3a:11:a9:e6:6c:b0:02:
e3:28:48:c4:db:07:a4:8a:ae:84:74:d9:0e:2b:28:ea:41:85:
3f:9d:22:a8:a2:4f:af:54:36:6c:d4:af:32:db:60:14:d1:aa:
68:99:79:a4:d9:e5:07:19:75:be:c2:59:99:e3:07:ab:cf:6a:
bf:b3:b7:eb:1c:83:fa:f1:91:bc:ea:d7:89:36:a1:26:37:1f:
be:85:df:20:71:53:32:31:f5:6d:78:45:77:3a:79:4a:e0:73:
d7:42:37:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:37:37 2025 by rpki-client