Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
File: yYuCXzbpzDMDFclA3oAMurzjOXs.mft (raw, json)
Hash identifier: xWdLE5POatCwz24QNOrOnqvmJOrNobstQq89vemSGK4=
Subject key identifier: 72:EB:C3:C5:C0:B8:4D:42:08:29:4A:F5:C0:C0:03:BE:39:8D:D1:1E
Authority key identifier: C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B
Certificate issuer: /CN=c98b825f36e9cc330315c940de800cbabce3397b
Certificate serial: 019744783B331025FD08BA17AACB7A5E8616
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
Manifest number: 1188
Signing time: Fri 06 Jun 2025 09:00:19 +0000
Manifest this update: Fri 06 Jun 2025 09:00:19 +0000
Manifest next update: Sat 07 Jun 2025 09:00:19 +0000
Files and hashes: 1: 9fWXkacnWfLXH44Xb8HrXGzmknY.roa (hash: ueIT5017I7hv93aOprGzdVNSjT4YNhBA1fdwv5/AgdI=)
2: HRQ3zVG8fQhstKqXqVzvaQOYW-8.roa (hash: J4bA2yn+4d47gpldTm1th3QAEiyAys+UIYmTMp8Fvck=)
3: KW27n6S1v0MgxCxbh7E0buBfif8.roa (hash: toMOgZfSEbU3csqRPx4QZ9cAdliSmxp8YH9UOfmQEwM=)
4: M6e0Db6rIRrut7Sf9jFsbIVLDaM.roa (hash: JXcstu8zslncBB42v+GEY3znOZDM894FUsNgQKDisvc=)
5: f9hfmHvrY5AwY36q7MIQ4falWVM.roa (hash: poIPC46neVOYvv7bF8o92LK9XXWLEMpfpDFVMKy16AU=)
6: yYuCXzbpzDMDFclA3oAMurzjOXs.crl (hash: Rc20mKD/SeQQ+BGTEHSRwt2ikIH68lIo1pOhk33pn50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:44:78:3b:33:10:25:fd:08:ba:17:aa:cb:7a:5e:86:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c98b825f36e9cc330315c940de800cbabce3397b
Validity
Not Before: Jun 6 09:00:19 2025 GMT
Not After : Jun 7 09:00:19 2025 GMT
Subject: CN=72ebc3c5c0b84d4208294af5c0c003be398dd11e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dc:34:6c:07:38:57:53:01:01:9a:07:65:47:
14:ff:53:4a:86:f3:11:a0:c6:57:ed:ab:ca:66:f6:
ca:d0:59:3f:06:65:8e:18:51:52:3b:e8:f6:50:20:
16:44:d9:f7:7e:55:81:b1:45:12:e0:94:48:e0:1c:
d6:bf:dd:7d:11:69:93:ea:de:c5:e4:a9:81:94:31:
99:de:cb:91:86:95:ce:2f:5f:04:cc:df:e1:83:50:
06:b4:e9:47:cb:8c:9c:48:11:c2:4a:24:83:54:86:
76:fe:25:03:6b:fb:68:d9:c5:3e:19:7f:6b:7f:af:
6a:4a:d1:3e:26:94:87:92:53:93:5b:e6:2b:e9:07:
8e:96:32:8e:39:13:65:eb:32:66:d0:1f:61:09:1f:
44:eb:11:4a:c3:b3:06:2e:f0:32:dd:9d:48:07:7f:
2a:00:2d:15:39:b3:9f:a4:fd:4a:58:87:25:1f:94:
ff:d2:e5:56:2f:be:b4:cc:bc:a9:1a:39:e8:2b:be:
84:e6:69:6a:26:99:a6:ed:72:2b:82:c4:f1:c2:e8:
17:43:c7:f4:7c:73:e8:e4:1f:f1:bf:dc:5a:1a:b1:
52:2e:c6:1c:be:d3:3c:f9:73:eb:8b:8d:38:32:2c:
19:bb:fe:5f:12:48:aa:e3:22:0d:05:0b:d8:f5:47:
7d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EB:C3:C5:C0:B8:4D:42:08:29:4A:F5:C0:C0:03:BE:39:8D:D1:1E
X509v3 Authority Key Identifier:
keyid:C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:5e:ff:5a:2a:fa:57:68:b2:61:3f:d9:6b:ea:5e:f0:c8:70:
f0:aa:80:ab:87:4d:44:f3:41:43:6e:a6:bc:a4:74:e7:e1:23:
f8:a2:b7:c7:17:ad:75:b4:cf:f6:e5:21:43:e0:99:e5:e0:b7:
b5:d8:d0:c5:72:27:cc:5f:b6:57:5c:7d:bf:7d:b1:d5:75:6f:
1d:07:99:4e:5f:a2:2f:85:4d:a2:55:4d:d9:75:31:d6:0a:37:
81:e6:9f:fe:26:1e:5b:08:59:fe:a1:f3:24:a0:fe:14:ad:5f:
76:f3:f7:70:f4:9c:83:96:70:5f:25:16:05:b2:e3:e7:40:5c:
e0:1f:89:52:6e:91:c9:f8:6b:93:c6:46:71:74:10:bb:da:7f:
de:e8:40:26:6e:a2:9d:7b:1d:d7:48:35:17:91:d0:50:66:f5:
68:14:8f:b9:5d:0f:c8:63:31:4d:ba:1f:13:85:97:2f:fb:16:
64:89:94:d1:4f:94:7b:4f:64:11:56:fb:e1:20:6e:51:23:8f:
1f:9b:51:25:25:06:fd:36:58:25:ef:bb:eb:a0:bc:d8:97:25:
fb:f6:46:94:60:12:43:30:7d:d3:f2:b2:eb:fd:5c:17:2c:7c:
77:ed:a0:10:15:dc:ee:b5:9a:27:50:70:ed:21:3f:30:3c:48:
8d:7e:56:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 11:03:11 2025 by rpki-client