
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
File: You5JTbCD0KwW-UywNuquYt1XzU.mft (raw, json)
Hash identifier: 1fR7q6+0U93wp/ErJQoTvYZSUYuubcG8DT1tPKKJ6Fw=
Subject key identifier: FB:A7:B2:D9:5B:6E:F6:32:B2:81:70:76:D7:FA:48:2D:A6:C2:34:C2
Authority key identifier: 62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35
Certificate issuer: /CN=628bb92536c20f42b05be532c0dbaab98b755f35
Certificate serial: 0197729ADFFD323BD36D7FF4EBF29949AE2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
Manifest number: 47
Signing time: Sun 15 Jun 2025 08:00:41 +0000
Manifest this update: Sun 15 Jun 2025 08:00:41 +0000
Manifest next update: Mon 16 Jun 2025 08:00:41 +0000
Files and hashes: 1: You5JTbCD0KwW-UywNuquYt1XzU.crl (hash: j4qEl8+H1Z/hhVc/hAsdpE8BIxMmZfKrG/YoR1o2bXc=)
2: lUZIxGhzOYxZGWoE_bPIsAcvBns.roa (hash: 181xs0vbEO2Q9NjKNLp5nMH7XagJ9a8i0PdC3k4WAwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:9a:df:fd:32:3b:d3:6d:7f:f4:eb:f2:99:49:ae:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=628bb92536c20f42b05be532c0dbaab98b755f35
Validity
Not Before: Jun 15 08:00:41 2025 GMT
Not After : Jun 16 08:00:41 2025 GMT
Subject: CN=fba7b2d95b6ef632b2817076d7fa482da6c234c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:32:d4:4d:c9:4e:24:ce:0b:e0:f4:85:c0:39:
02:8a:9a:3c:e9:71:19:1b:31:6e:6f:2e:d3:19:83:
2d:d8:a9:97:12:72:5a:6e:23:53:bd:db:fa:96:d1:
11:26:d0:87:83:5f:9e:a0:66:0a:41:2e:83:1e:ae:
8b:7e:3c:5c:d5:c2:06:51:e3:b1:dc:2e:36:d3:15:
71:0a:f1:0a:d7:87:62:83:91:bd:bc:72:75:81:b1:
f0:f9:26:94:ad:c9:a1:7b:2b:1b:b3:69:33:5d:00:
3b:99:79:a1:df:69:c9:47:7f:4f:44:bd:db:cd:ab:
0a:ea:bd:ad:06:34:67:d7:7e:de:6e:8c:9a:ab:bc:
6a:e3:30:23:77:ed:1f:bf:ac:d2:d4:39:e0:d1:ee:
eb:0c:21:71:28:9a:bd:75:cd:31:b9:8c:b0:17:28:
a8:55:0c:65:5c:dc:2a:d5:15:f2:3a:67:a0:b9:12:
75:07:0b:16:e5:f7:6e:84:a2:19:1d:cc:04:1f:8a:
06:dd:3c:3c:b6:ac:39:1d:44:6f:c4:35:be:ed:19:
42:a2:7c:1f:61:94:1b:e4:ca:e8:1f:27:65:20:b0:
66:96:3b:38:1f:48:ec:16:42:e3:e9:7e:0c:dd:44:
c3:5a:30:0d:50:23:6d:ac:11:80:6d:f1:85:e2:b6:
36:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A7:B2:D9:5B:6E:F6:32:B2:81:70:76:D7:FA:48:2D:A6:C2:34:C2
X509v3 Authority Key Identifier:
keyid:62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:b0:86:bf:3e:93:c1:e4:48:4d:c9:a2:2f:9f:bd:43:d4:3a:
2e:82:0a:ed:96:c5:21:e2:d6:04:ee:e4:f9:16:76:1d:e3:cb:
79:e7:b6:53:88:76:6e:5d:67:05:ae:18:bc:fe:bd:69:5c:ae:
13:12:7e:0e:25:ab:17:cd:3c:f9:b0:b0:a9:ce:98:64:6f:64:
5e:8e:a1:02:64:50:88:c1:c4:e0:78:dd:25:da:4c:ed:26:b2:
53:77:33:5b:90:4e:18:6a:e2:b5:ca:c9:42:2c:a8:55:35:f1:
d7:fc:44:d0:cb:77:cb:2d:28:db:88:aa:0d:4f:23:76:b2:41:
de:d9:e9:0a:a7:0c:3f:14:ef:cb:40:93:28:ce:5b:c3:74:98:
c6:48:f8:77:7e:76:30:f5:b8:1b:b7:94:93:70:75:e3:ce:a5:
17:77:47:3d:64:11:b9:49:29:4d:09:42:a8:a7:d3:99:f9:52:
02:6d:01:06:5d:e3:05:82:ae:08:d5:6f:32:36:c2:31:42:db:
f8:cf:02:91:69:6b:5a:8d:22:62:b0:69:66:81:ac:7c:7f:5d:
64:3f:27:6d:01:db:65:6c:57:cf:14:e3:c4:d7:76:88:d4:21:
24:b0:73:18:67:a7:13:18:fb:8b:ad:06:bc:46:7a:e1:94:99:
bc:c8:f0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 12:21:23 2025 by rpki-client