Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft
File: yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft (raw, json)
Hash identifier: Mv1Q8XS+TVdOq2M4D/ZPZkKshnOGgXVvE3GUd6MyNS0=
Subject key identifier: 3C:86:D5:78:C9:F3:B4:83:95:BE:AD:CE:56:75:E6:5C:52:75:92:BF
Authority key identifier: C8:AB:3C:5B:69:AF:5C:21:8D:D4:AF:76:4C:94:36:6C:64:6F:83:A5
Certificate issuer: /CN=c8ab3c5b69af5c218dd4af764c94366c646f83a5
Certificate serial: 01974DE9D30229583FE5AE45A5A8153445E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKs8W2mvXCGN1K92TJQ2bGRvg6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft
Manifest number: 1213
Signing time: Sun 08 Jun 2025 05:00:58 +0000
Manifest this update: Sun 08 Jun 2025 05:00:58 +0000
Manifest next update: Mon 09 Jun 2025 05:00:58 +0000
Files and hashes: 1: SNGV0mPG4-vHp6-PAm-3E8l_tQ4.roa (hash: FllvrAA0IFuRu04U/PVVcunONsM/J0wPDkjc5E97TCo=)
2: yKs8W2mvXCGN1K92TJQ2bGRvg6U.crl (hash: fbdnsXAurRwgd1Ju7hnD+mYYWHmxM7whws4x4fX2z7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKs8W2mvXCGN1K92TJQ2bGRvg6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:d3:02:29:58:3f:e5:ae:45:a5:a8:15:34:45:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8ab3c5b69af5c218dd4af764c94366c646f83a5
Validity
Not Before: Jun 8 05:00:58 2025 GMT
Not After : Jun 9 05:00:58 2025 GMT
Subject: CN=3c86d578c9f3b48395beadce5675e65c527592bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:98:4b:e2:f9:02:1d:a8:77:f9:5c:97:fd:1c:
63:00:7d:4d:80:50:0c:eb:62:db:75:eb:13:ff:0c:
17:d5:ac:66:8f:30:f9:09:84:50:ca:aa:35:9c:c7:
67:31:f3:75:d8:ae:0e:12:c3:65:e3:1b:b4:2d:7a:
07:86:f2:c0:17:04:ad:86:b7:12:a9:d1:b2:3e:8d:
d7:e9:05:d1:63:1d:5d:6f:37:37:78:1d:f7:2f:13:
15:6a:c0:eb:d7:25:d4:8d:5b:a9:be:a1:fa:0b:07:
9b:da:47:47:f1:03:d8:8f:ce:f9:91:46:92:e2:7e:
a7:c6:ce:09:8e:6f:1e:fa:39:c7:4e:0d:7d:54:8d:
42:de:4f:27:f2:f0:7a:cc:02:b1:89:0e:0b:3a:02:
5e:20:44:66:2d:0e:03:2a:68:cd:01:02:aa:75:98:
3e:4d:86:7a:55:39:f8:17:11:35:26:ad:b7:51:7e:
d3:35:e1:9c:c7:0c:94:f0:01:08:d1:fe:60:c8:75:
92:39:a7:a8:08:4c:78:45:a9:99:20:37:e6:08:d5:
99:be:df:44:44:a0:85:f0:b1:de:5a:54:93:f2:b4:
6b:4e:ca:9f:c3:21:36:5d:ef:55:79:3c:f9:0e:a6:
44:60:6b:6b:03:74:f1:51:74:5d:4d:be:47:e9:ec:
b2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:86:D5:78:C9:F3:B4:83:95:BE:AD:CE:56:75:E6:5C:52:75:92:BF
X509v3 Authority Key Identifier:
keyid:C8:AB:3C:5B:69:AF:5C:21:8D:D4:AF:76:4C:94:36:6C:64:6F:83:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKs8W2mvXCGN1K92TJQ2bGRvg6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:17:1c:df:ff:bb:1f:df:80:b7:37:8c:ea:5c:64:44:0b:3a:
be:f6:95:65:14:3c:4d:9c:e1:30:60:07:47:ce:e5:ab:1b:e3:
a1:38:af:d9:f5:92:12:27:41:a7:58:21:ff:fd:d5:90:65:cd:
17:02:7e:b2:64:47:9d:23:e6:9b:97:3b:2d:55:d2:47:b4:74:
d6:af:46:3d:fc:8c:4e:c0:df:46:d5:e9:fc:0c:18:18:f3:d6:
a0:ea:06:af:14:1d:ae:6c:0e:1f:e4:19:66:81:76:7b:42:bf:
77:64:eb:a3:b1:7e:f1:5e:3d:9c:a7:d5:c0:07:7b:a5:ec:ff:
5d:2c:3c:9f:be:ed:3b:c4:d4:dc:ff:75:f8:a8:90:30:df:a4:
09:25:8b:2f:59:ff:7b:19:9d:c8:ca:a5:c6:49:1e:6f:28:fe:
f2:05:92:c9:1a:06:d1:a7:2a:09:43:2c:d5:63:a8:b8:ef:90:
b2:01:50:af:83:27:71:73:2d:ee:c3:4d:fe:00:34:d2:1a:b7:
f9:c2:c9:60:94:25:15:5b:5d:8e:49:c4:fe:de:ed:56:ec:82:
a6:96:a7:3f:ae:1d:86:1c:fe:b7:8a:a7:ea:9e:93:b1:a6:af:
da:ad:e0:7c:3b:ec:e9:b3:bd:b1:f8:61:b4:94:7b:78:b8:2a:
e8:35:37:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:48:49 2025 by rpki-client