Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
File: YbGV0TBQ_zxGihSXeHELU1giUdk.mft (raw, json)
Hash identifier: PAnvQiu/ZyYwP4kyFNY5AI3c7k0a5DG3w+AiiUKE0VY=
Subject key identifier: 84:5D:5A:A1:24:DE:0D:EB:59:0E:C6:AA:5F:DC:D9:B8:1D:70:93:51
Authority key identifier: 61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
Certificate issuer: /CN=61b195d13050ff3c468a149778710b53582251d9
Certificate serial: 0197470BC994F9A9F91818CF49F1784429AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
Manifest number: 157F
Signing time: Fri 06 Jun 2025 21:00:44 +0000
Manifest this update: Fri 06 Jun 2025 21:00:44 +0000
Manifest next update: Sat 07 Jun 2025 21:00:44 +0000
Files and hashes: 1: Wt3X3B6NcZ-mxrNPh2fG99PqrRE.roa (hash: q1LYdMsfXSEFkYw+v/2PtBLKm0CXtMVR1H0DEe1ErnY=)
2: YbGV0TBQ_zxGihSXeHELU1giUdk.crl (hash: S8Q92ZN2AR3OrERc6B3UJgb8mNJmFjwlgIFeT8/M56k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:c9:94:f9:a9:f9:18:18:cf:49:f1:78:44:29:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b195d13050ff3c468a149778710b53582251d9
Validity
Not Before: Jun 6 21:00:44 2025 GMT
Not After : Jun 7 21:00:44 2025 GMT
Subject: CN=845d5aa124de0deb590ec6aa5fdcd9b81d709351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:87:8f:04:03:27:c2:07:27:ea:5a:da:10:cd:
cb:8d:28:37:79:bc:a5:21:e9:a6:68:1b:9a:82:7d:
4b:35:aa:a9:0a:09:a6:7e:7c:a8:6d:0c:b8:bb:a9:
bd:ed:42:f9:31:64:72:0a:5a:b8:57:e7:35:71:7a:
65:08:88:af:1a:84:ec:56:81:07:9a:2e:c7:14:e4:
f1:ed:b9:30:42:58:42:4b:ef:2f:92:e3:a2:94:20:
b6:2f:9f:c3:c5:c7:23:3e:c1:b5:cc:55:72:26:ac:
a8:32:ab:20:ba:77:03:c5:ab:17:86:83:ca:ac:20:
39:4c:ff:45:5d:76:72:40:3e:6b:40:5e:0d:b5:45:
d0:69:f8:88:1f:ce:e6:51:1c:97:08:65:a0:8f:aa:
fa:72:73:78:b0:41:e8:e5:1b:99:bd:9a:8f:1a:65:
b3:3e:56:9a:b3:a7:c8:4a:8f:c8:6d:e6:f0:cb:34:
5e:65:d1:76:82:3e:ef:5b:90:af:29:15:3a:a3:98:
95:7f:10:f8:b5:49:72:f9:fb:69:50:45:0b:15:7e:
83:2e:ad:1b:17:a4:07:92:dd:c1:85:78:00:6d:89:
b2:e3:cc:45:12:d8:86:2f:e5:d7:f6:32:c1:95:55:
69:dd:7c:9f:42:42:cb:b2:b9:7e:86:83:3a:5a:24:
30:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:5D:5A:A1:24:DE:0D:EB:59:0E:C6:AA:5F:DC:D9:B8:1D:70:93:51
X509v3 Authority Key Identifier:
keyid:61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:2f:08:12:44:6b:6e:a3:25:96:ea:45:8a:95:77:bc:d6:88:
45:ac:3c:f3:75:a9:06:17:9a:45:fd:1f:bf:16:51:b0:4d:f4:
82:59:8c:a8:de:de:e3:c0:19:83:06:61:7d:31:02:df:4a:46:
d1:ba:fc:5f:69:72:85:e4:79:33:59:8d:32:77:81:f4:15:32:
8d:5a:9b:5e:6c:8e:69:7b:10:63:14:b2:f5:83:cb:1c:92:e9:
66:c6:62:b0:f6:9e:78:55:31:bf:2d:75:29:dd:f8:2e:60:9e:
37:06:5e:31:54:c0:7d:73:fa:c9:0f:e2:93:d7:24:1c:df:f3:
fb:71:cd:92:b9:6d:a9:be:e0:ed:15:d0:1a:0b:a6:34:39:55:
b5:03:c2:06:98:ff:02:69:1d:24:ca:32:78:18:d3:c5:21:c9:
e5:76:10:04:d8:b3:c5:bd:8f:c6:6a:31:82:7c:61:c1:94:09:
ed:b6:e4:9a:e5:f3:43:75:ed:3a:17:f9:c5:17:d8:76:3d:7f:
16:2a:68:ef:65:af:d8:d9:83:38:c1:d8:86:13:8a:56:38:fb:
00:65:b8:e4:55:f8:c9:c5:f0:3a:f0:98:85:33:70:a0:ea:eb:
a7:55:03:dd:c0:e4:01:22:8e:7b:1f:f3:38:25:97:db:2e:d9:
c5:06:3c:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:23:57 2025 by rpki-client