Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json)
Hash identifier: ilTXdlmV3qL3EsYiByi+kdeJ25JGAdl+apGUakmciPw=
Subject key identifier: DB:24:6D:79:83:AA:41:A1:D6:5F:C9:5E:F7:EC:67:3C:80:E5:FE:23
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 01974A7B775A0E5DCFDF56E172ADFF73A434
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
Manifest number: 0353
Signing time: Sat 07 Jun 2025 13:01:34 +0000
Manifest this update: Sat 07 Jun 2025 13:01:34 +0000
Manifest next update: Sun 08 Jun 2025 13:01:34 +0000
Files and hashes: 1: UVQQxsyFxE5G_GAZUd3A6ZXjkCE.roa (hash: zpm9oScjJUHtNk/CwO+EVZyjIHRYFCB8FAgH34Qnsvo=)
2: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: Lx8Ka8uRJF/qYXPbd5VWSaM13jbYxxtNuU2uj+xrKoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:77:5a:0e:5d:cf:df:56:e1:72:ad:ff:73:a4:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: Jun 7 13:01:34 2025 GMT
Not After : Jun 8 13:01:34 2025 GMT
Subject: CN=db246d7983aa41a1d65fc95ef7ec673c80e5fe23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c1:b1:a2:88:aa:7c:b0:cd:45:41:37:b2:6c:
10:88:83:2d:6a:e2:77:ab:b6:47:fe:39:69:01:6f:
9d:4d:06:b4:f3:1e:ef:ff:f2:66:22:09:01:81:74:
ed:8d:8b:3d:47:1e:94:2b:bf:14:35:ca:7c:a1:2f:
5b:4d:c1:45:f3:60:59:47:65:0d:a9:fe:c8:e5:34:
1a:9d:5a:af:b3:d4:5a:2e:66:d6:5e:cb:6c:24:44:
af:ee:7e:cc:13:1a:68:64:ea:3a:04:f0:57:19:79:
8f:ef:d8:99:ab:0f:7f:c0:85:a6:61:42:d1:62:62:
90:f9:a4:45:62:5c:1d:e4:c9:5b:48:9e:82:33:8f:
3c:29:72:40:ce:20:48:8f:b3:68:04:07:4d:6c:9a:
90:d5:6f:b3:9c:d0:ee:a5:08:3d:51:c7:8a:47:76:
e9:97:00:db:ea:cd:c8:f2:bc:2c:6a:eb:0a:23:8b:
ba:a2:88:46:ca:51:9f:d9:b0:a2:bc:7b:80:21:fe:
bc:5a:ec:42:8f:1d:99:6e:13:2a:2b:04:0d:d0:4e:
01:60:1e:11:fa:24:2b:8e:10:b6:2d:56:e3:71:61:
ee:a0:aa:9b:60:a7:96:bb:53:fa:e4:b8:e1:d0:5b:
d1:ac:8c:16:9b:1b:33:7b:6b:86:fe:db:3c:f5:93:
1c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:24:6D:79:83:AA:41:A1:D6:5F:C9:5E:F7:EC:67:3C:80:E5:FE:23
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:68:41:df:f8:35:4f:6b:3b:c9:7c:40:7f:e2:f3:9c:22:fd:
f3:30:39:a1:93:73:d9:f0:69:e2:8f:5d:75:1f:ec:06:be:67:
c7:83:e9:1a:13:91:2c:cd:b1:fe:9c:20:71:64:75:ad:61:d8:
49:8b:ec:61:79:76:9b:ca:8c:8b:26:e0:73:3f:fc:6c:a9:1e:
65:c3:40:7c:b3:24:e2:9c:ae:45:0a:6d:0d:7a:01:26:4c:9e:
d2:c5:ca:49:ae:37:ae:a7:52:9f:69:ea:69:e6:e9:61:36:d1:
ed:46:f2:5b:f1:6c:43:56:ed:7f:da:61:0b:36:e1:ac:4a:0f:
2c:61:e1:8e:62:13:d5:69:cd:40:c5:c7:c5:73:66:71:b9:62:
db:84:fd:a0:ac:16:1f:9a:00:65:0b:8e:3f:e5:63:e2:20:af:
4b:f6:7a:4c:a0:05:17:b6:d2:e8:ed:20:77:19:26:25:12:5a:
bd:1b:7d:1e:f1:57:e9:b5:d2:be:74:0a:3b:02:25:85:68:6e:
9e:bd:e6:4e:c0:d5:21:b9:98:52:c7:c5:67:fd:c5:8d:aa:21:
52:44:87:7d:b9:9d:f8:3e:77:45:2a:a8:c9:ad:48:20:15:ef:
79:ec:87:33:21:0d:c7:a8:94:0f:04:67:f5:56:ac:7e:b7:f9:
31:1d:62:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:30:35 2025 by rpki-client