Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
File: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft (raw, json)
Hash identifier: GwWJXBoyp2zLhnW60H+FVP8AZOKXSnbnjsG8JhR4WPI=
Subject key identifier: 57:B5:19:2D:7C:80:42:C8:5A:BD:CD:D4:CE:A6:9C:24:62:F8:04:CE
Authority key identifier: 62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9
Certificate issuer: /CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
Certificate serial: 0197488CE5B0CA70209053DF587497F2D3C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
Manifest number: 0664
Signing time: Sat 07 Jun 2025 04:01:22 +0000
Manifest this update: Sat 07 Jun 2025 04:01:22 +0000
Manifest next update: Sun 08 Jun 2025 04:01:22 +0000
Files and hashes: 1: RwKWDh9I_VhT28gEF3k9tJ9hdSk.roa (hash: CWqw/aMDA6ZuqW+g16a2LFyjcXoDj/1ZGqdzZueDSNs=)
2: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl (hash: 5UR0yvAcnotBZ2GZsjRIW5rDAgUY+cVexLndL7hQDTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:e5:b0:ca:70:20:90:53:df:58:74:97:f2:d3:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
Validity
Not Before: Jun 7 04:01:22 2025 GMT
Not After : Jun 8 04:01:22 2025 GMT
Subject: CN=57b5192d7c8042c85abdcdd4cea69c2462f804ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:82:c6:42:89:08:0c:52:3c:4e:e8:76:83:c0:
63:46:1a:56:3a:3b:68:74:72:4a:8a:a5:bd:a1:cd:
0d:e3:d2:af:5f:65:b1:39:26:3a:19:e0:15:9a:c7:
a3:ca:53:d6:05:eb:16:3c:6e:54:bf:69:53:01:00:
f5:28:ea:c6:96:cf:75:b5:da:59:93:bb:c9:61:fd:
5e:c1:56:26:d2:2c:c9:7f:56:46:a4:3d:6c:ab:95:
fb:07:ec:77:6b:a0:d5:58:18:19:9b:bb:18:69:35:
e6:48:ef:6a:5c:85:e6:2c:2d:78:77:c4:87:4a:05:
06:db:33:44:01:96:ab:ae:7f:c8:de:95:ea:8d:18:
d6:a5:4e:93:9b:7c:24:a5:21:d2:67:ef:91:03:09:
b0:35:47:66:42:6b:4f:51:39:32:2b:36:54:ef:45:
ac:17:9e:f2:05:6a:16:1b:bd:ed:87:a0:58:2c:23:
e1:4f:57:f7:19:d8:48:e0:3a:8a:0b:b6:bb:c4:25:
25:11:81:73:cb:12:b7:95:de:52:ec:af:e7:b4:95:
d5:ea:a9:ab:ab:0c:72:90:c6:65:cc:50:83:58:42:
66:0c:e6:cf:6d:76:f4:82:e3:d5:50:19:21:89:f4:
f8:f2:d0:f7:4c:46:c7:3b:c7:fd:3c:86:eb:e9:a4:
92:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B5:19:2D:7C:80:42:C8:5A:BD:CD:D4:CE:A6:9C:24:62:F8:04:CE
X509v3 Authority Key Identifier:
keyid:62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:b3:10:55:2d:7d:93:e8:4c:04:fc:db:6b:83:1e:d8:c7:fc:
d2:46:f7:46:c9:f5:f7:51:b1:5e:02:fe:50:38:61:fb:99:64:
91:bb:ce:cf:51:0a:bd:40:3b:1e:c6:7a:a1:03:73:ab:4d:3c:
d2:86:c5:c1:cc:2a:ab:52:e6:ef:91:07:50:44:d3:63:ab:77:
21:54:db:db:ac:36:b8:46:15:84:14:91:b2:f2:b7:8e:84:51:
52:8a:9d:80:1f:21:c7:79:1a:c2:80:71:0a:f9:10:8f:57:be:
fe:c3:55:25:d9:44:60:33:f6:86:d8:0d:45:76:dc:eb:a0:36:
62:b6:0d:7d:2d:20:0e:a8:d1:b3:c9:8d:a8:7c:f6:1a:3f:29:
35:55:da:48:f7:30:d2:09:54:7a:a8:fd:bd:2a:45:2f:db:4b:
5b:6a:a3:91:71:ce:f5:fa:36:90:f6:f6:55:b2:da:44:4a:7f:
8c:e5:d7:0e:32:5a:61:40:aa:ba:9a:17:ae:38:72:c6:23:1c:
f8:48:2e:df:90:67:38:d2:45:0f:f7:29:41:66:ef:90:2b:c5:
ab:a6:1c:51:b5:6a:c9:bd:4d:da:1b:49:31:bf:3a:f4:ba:ba:
31:e2:aa:a8:f3:c4:30:e5:ff:40:25:0b:2a:70:1d:fb:9e:30:
7e:ee:ff:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:14:34 2025 by rpki-client