Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json)
Hash identifier: e7ZEKC7X4m+JvAIHRc4C9YSNEWL19SZ2YkXe3E3df84=
Subject key identifier: C9:DA:34:49:7C:8F:7E:6A:31:65:0F:41:89:B8:87:CF:D0:A8:D0:F0
Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848
Certificate serial: 0197665FB1A276C5E4E0B9AC293E91CC67A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
Manifest number: 158C
Signing time: Thu 12 Jun 2025 23:00:36 +0000
Manifest this update: Thu 12 Jun 2025 23:00:36 +0000
Manifest next update: Fri 13 Jun 2025 23:00:36 +0000
Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=)
2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: 0D5WFa2v5g4Pl5bDk7uhgW6wkTX99letx3B77yo0UNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:5f:b1:a2:76:c5:e4:e0:b9:ac:29:3e:91:cc:67:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848
Validity
Not Before: Jun 12 23:00:36 2025 GMT
Not After : Jun 13 23:00:36 2025 GMT
Subject: CN=c9da34497c8f7e6a31650f4189b887cfd0a8d0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:55:ff:7c:37:d6:68:52:f1:bc:ef:4d:7f:26:
dd:71:1e:f4:5b:05:db:03:d8:16:1e:b8:15:50:f4:
73:1c:d3:c9:6a:29:75:c9:b6:9e:e5:85:ab:32:97:
e7:0c:f3:29:a8:77:0c:1d:04:97:90:23:9d:cf:10:
e5:f8:cd:49:3b:7b:42:50:8e:71:64:7b:04:b5:22:
04:5e:5c:19:8b:d1:b8:23:b9:d9:77:a4:33:d1:6f:
5e:2a:eb:41:a4:ee:78:97:33:7d:f1:87:0f:9f:7d:
ab:74:fb:be:65:da:d7:86:b8:ec:d6:d7:73:2c:10:
13:0f:69:1d:39:ee:d0:d4:80:17:87:5b:52:e5:df:
97:4b:63:f3:ab:a6:4c:5e:59:f7:f2:0e:68:28:f1:
ac:c5:ff:b5:87:33:61:2d:d9:7a:52:3e:72:89:88:
00:28:b4:e0:4a:8b:94:2d:f4:89:f7:e4:6d:ba:4e:
e6:4b:a6:4c:32:0b:04:99:7e:24:3a:d5:e9:fc:93:
89:f6:76:a3:e6:6c:d7:f4:ff:da:f8:cb:c5:35:be:
a2:6c:1f:f3:41:12:29:e0:55:d4:c1:7d:59:b3:77:
be:40:1d:17:de:09:90:0d:68:4e:d5:6e:7e:57:96:
ae:3f:aa:18:56:c8:21:25:5b:9c:e7:28:a7:67:2e:
e2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DA:34:49:7C:8F:7E:6A:31:65:0F:41:89:B8:87:CF:D0:A8:D0:F0
X509v3 Authority Key Identifier:
keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:8d:67:00:cc:25:7a:fb:f5:47:a8:0b:ce:30:cf:e5:70:e3:
04:1f:9b:03:5c:db:1a:e7:cf:c2:fc:b6:36:12:be:0e:dd:bc:
f1:ff:e9:3e:03:ff:c4:fe:28:4b:7d:34:07:b2:13:a1:31:7b:
4a:0e:62:89:07:eb:7b:ab:ff:66:0b:37:0d:eb:f0:85:fd:f7:
43:cc:77:8e:d6:d4:53:a2:6e:85:8e:08:16:0c:75:47:1c:d4:
d2:1a:7a:e8:0e:81:42:45:85:6e:db:90:43:cc:94:a9:4d:24:
18:22:b0:3c:23:59:01:9e:f2:db:dc:3c:a2:0f:82:77:c2:d4:
63:79:e1:a8:4a:75:d3:55:86:45:90:c2:a2:52:81:0a:2d:8e:
42:ba:f6:c4:c8:b8:14:6e:63:80:ac:a2:ed:37:d9:8d:c0:e1:
50:0e:0a:25:83:4c:ea:67:97:09:6c:2a:a7:c3:1d:61:8c:8b:
f9:7b:48:82:ca:d8:0a:45:2b:18:5e:82:97:75:45:75:fe:b8:
c7:11:61:04:43:4e:cf:91:c3:8c:26:cf:22:9a:b4:2e:ad:23:
1d:98:7e:79:d5:02:4d:62:5c:10:89:92:04:ea:fc:67:cc:18:
75:dd:4b:2e:1f:fa:a4:b6:38:65:74:28:77:53:33:60:c7:7e:
bb:80:0b:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:46:38 2025 by rpki-client