Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: I2gjGWUyP8iR8CLYONCT1Jx7CPrngrF0Ol7vy9Pb0YM=
Subject key identifier: 2A:6A:AB:65:BF:82:CE:91:C7:89:63:2B:57:F8:8B:A7:02:1A:8C:DD
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 01974EFC0A49F4D9CCD5050F21BC1C2F4E34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 10E7
Signing time: Sun 08 Jun 2025 10:00:29 +0000
Manifest this update: Sun 08 Jun 2025 10:00:29 +0000
Manifest next update: Mon 09 Jun 2025 10:00:29 +0000
Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: TL225NOPCJmU9D9v/k+95xKMS0/UOYSehcIRTCYJjOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 10:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:0a:49:f4:d9:cc:d5:05:0f:21:bc:1c:2f:4e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Jun 8 10:00:29 2025 GMT
Not After : Jun 9 10:00:29 2025 GMT
Subject: CN=2a6aab65bf82ce91c789632b57f88ba7021a8cdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:17:21:d3:36:ee:40:5c:c8:f1:b5:e7:2f:82:
6f:27:e9:0b:82:bb:c7:b8:ec:7e:f6:dc:3a:c5:8d:
8b:9a:d3:8d:aa:43:4a:de:14:2c:c8:9f:bd:a2:ad:
cd:96:0d:54:25:ad:e9:d0:f3:68:f7:48:5d:83:f5:
37:76:de:d0:d1:ae:9b:46:32:95:d8:75:b9:fb:1e:
52:1a:3a:b5:de:c6:a5:60:22:dd:c9:37:25:7e:ea:
4d:16:90:f7:3a:b0:15:e7:6d:56:81:c8:d2:5d:74:
ab:7f:1f:ef:77:17:c0:71:7f:6c:27:f0:31:83:f9:
83:de:91:a6:b5:a6:1a:87:13:1a:4c:f0:0b:6e:e5:
20:23:6f:e4:52:4a:3b:e8:22:28:10:ac:a4:8c:9d:
ae:3e:bd:b6:29:48:85:ad:b5:23:9a:1f:02:6a:d3:
50:22:45:fa:65:70:d2:92:5a:d2:5c:bf:d0:d0:ce:
53:c4:9e:49:e7:af:48:6b:75:7a:7e:8f:fc:0e:9a:
6e:a5:74:8e:cf:71:cf:69:4d:fe:06:34:81:14:e4:
46:bb:65:a8:a6:d4:97:d4:5a:d7:90:ee:75:8b:89:
b0:7f:3d:bc:19:83:2a:20:f1:71:c7:b0:dd:e3:63:
45:20:04:a7:2c:20:6f:16:f7:20:cb:26:6e:23:7a:
98:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:6A:AB:65:BF:82:CE:91:C7:89:63:2B:57:F8:8B:A7:02:1A:8C:DD
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:c6:f7:10:0a:13:d2:49:b0:90:5c:58:6d:6e:17:88:cc:21:
e2:e0:7e:25:85:68:9e:f8:bf:ff:2e:65:78:b3:c8:cb:3f:2d:
75:17:2c:71:f9:c1:5d:c3:e2:67:1c:5e:09:a8:6c:5d:3e:2d:
96:b2:2d:22:d0:31:f3:98:30:ce:bd:e6:ae:3d:4e:d2:4d:1f:
da:10:de:f9:19:b6:ab:73:21:42:13:f2:66:28:a3:c6:e2:9d:
30:da:63:e8:8d:a7:9d:9c:d0:d7:ed:32:b2:60:86:5e:1a:29:
06:df:5a:c8:28:f5:76:d3:86:89:f7:3c:f0:0c:d6:7e:a3:36:
9f:4c:bf:0b:4c:1b:52:a7:28:87:13:17:cb:62:e3:27:bb:70:
3a:d9:f9:c8:86:14:b7:99:92:45:d9:65:2b:fd:f4:e7:1d:6c:
fb:ee:e4:b6:7f:e3:cc:25:66:6e:48:af:4a:8e:58:55:23:18:
ee:7e:b1:8a:8d:fc:cd:b0:15:c2:9c:59:5c:09:b0:06:af:8b:
42:6f:84:07:3c:7c:1f:3b:ce:00:45:88:f5:4b:b4:3c:e8:2a:
dd:ae:60:5e:fe:48:3c:87:97:d4:ce:3c:56:e5:f2:fe:e0:66:
79:dc:b6:89:ed:ca:92:7c:28:48:1f:d8:98:dc:f4:8c:20:44:
28:8c:1f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 16:42:26 2025 by rpki-client