Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
File: YFvAEwOQWABiCsJsFGixQfgHRRQ.mft (raw, json)
Hash identifier: nuRP55z857k1CtwP8UTCDlc/Egvff9bXjlEgNmKVwfA=
Subject key identifier: 51:02:CF:A6:6D:10:CA:4E:9F:02:55:F6:EE:7B:F2:46:5A:DA:28:B6
Authority key identifier: 60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
Certificate issuer: /CN=605bc01303905800620ac26c1468b141f8074514
Certificate serial: 01974B1F270ED348ED0122C091F7850F3E94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
Manifest number: 0C53
Signing time: Sat 07 Jun 2025 16:00:22 +0000
Manifest this update: Sat 07 Jun 2025 16:00:22 +0000
Manifest next update: Sun 08 Jun 2025 16:00:22 +0000
Files and hashes: 1: 9c99e7OOCoSsqv05bamuZvrBRAg.roa (hash: gcQqAYS/2mIfyTda9lezITlbdeVA2P8mDvlHBkdo3p0=)
2: YFvAEwOQWABiCsJsFGixQfgHRRQ.crl (hash: c+xP1WzZjZXooT4xsEsbK4DuFgcQYqRyepaDaeTjG1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:27:0e:d3:48:ed:01:22:c0:91:f7:85:0f:3e:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605bc01303905800620ac26c1468b141f8074514
Validity
Not Before: Jun 7 16:00:22 2025 GMT
Not After : Jun 8 16:00:22 2025 GMT
Subject: CN=5102cfa66d10ca4e9f0255f6ee7bf2465ada28b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6e:2d:3e:c1:4a:82:80:f5:3d:76:2f:0a:9a:
e3:8f:0b:97:96:7a:3a:92:e6:52:bf:e5:b8:be:55:
ae:0f:c3:56:c0:fe:b9:bc:1a:86:38:66:85:da:05:
47:e3:6b:4e:57:fe:26:c0:cc:ef:bf:b2:75:40:ab:
3b:aa:f9:95:eb:a5:a2:16:cc:11:2e:cf:2a:b8:10:
b1:2e:36:c1:f9:fa:29:3f:ff:2d:fd:00:94:47:25:
ce:59:96:5d:6d:4e:4b:2c:5d:b4:65:eb:60:d7:1a:
8b:b6:b7:18:fc:34:4b:cd:ab:a8:d7:28:ab:4f:e6:
ee:56:fc:16:ba:18:51:07:e0:9c:1f:50:b8:a3:78:
67:b0:9c:25:c7:3f:ad:dc:7d:14:df:87:40:fe:2b:
37:fe:8c:70:33:e7:fb:e2:76:78:00:c4:a0:fa:42:
7a:3e:3d:7d:37:81:b7:57:3c:1f:83:bf:14:5c:0e:
b7:16:04:ae:2d:76:aa:65:9d:60:c0:31:b0:4f:81:
1a:c7:e3:3a:3e:ae:1a:d2:e9:79:0a:30:4d:9c:54:
2e:fa:1b:97:67:e8:32:ba:23:09:d6:4f:c3:6b:da:
90:3d:e9:53:4e:c6:ff:f6:87:b6:53:2a:4a:40:d0:
bb:da:9f:13:34:b0:9c:2f:2b:8d:7c:01:a1:84:b7:
97:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:02:CF:A6:6D:10:CA:4E:9F:02:55:F6:EE:7B:F2:46:5A:DA:28:B6
X509v3 Authority Key Identifier:
keyid:60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f8:a5:02:71:5c:9d:4f:83:c2:17:51:f6:b2:a3:02:02:08:76:
c2:48:7d:94:67:7a:6a:b7:7d:7e:d8:68:1e:2b:59:50:8a:56:
42:50:1b:e7:92:c5:63:6a:8c:b9:04:78:d3:9c:c8:d9:5b:65:
33:09:af:0b:ad:74:61:a5:ab:f0:5d:11:d3:7d:1f:43:4e:ec:
a1:6a:5b:76:1d:a2:72:98:ce:3e:80:62:f5:65:0a:f4:19:67:
3b:4a:6c:db:c5:4b:a1:f6:23:26:49:37:f9:2d:ac:49:af:c4:
b3:79:87:b4:a5:26:b4:75:79:41:84:42:41:02:59:b7:cf:61:
a3:a5:7f:ec:80:36:34:2d:e6:9f:2a:69:61:1f:f0:66:3a:90:
15:a5:14:a0:06:79:6b:ea:4a:34:23:64:d6:c6:37:f8:0f:9d:
b4:bd:b8:a3:35:af:5b:e0:1f:50:03:2a:c1:cc:e0:91:df:65:
68:ac:b9:3f:e8:6e:35:44:81:22:de:76:ff:89:7a:95:da:6e:
92:b3:0c:d1:cf:cb:5f:b2:4e:d6:41:ec:33:c8:09:96:39:0a:
b7:01:0a:cf:50:aa:8b:e1:66:56:01:4c:86:08:c7:f9:1f:05:
ea:7e:28:ee:23:d2:06:ed:f2:c4:b9:af:e3:78:82:cd:23:37:
0b:ca:89:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:14:37 2025 by rpki-client