Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
File: kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json)
Hash identifier: fB+Bx/LTbqHRjU/syp/bTOOxlnqVd15K56OMiaOuSPY=
Subject key identifier: 98:4B:D9:AE:DA:42:E2:54:2F:FC:CB:DB:02:8D:EA:21:B9:A3:B3:01
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial: 0197665F716919C225C566164774DAA9DFF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
Manifest number: 158B
Signing time: Thu 12 Jun 2025 23:00:20 +0000
Manifest this update: Thu 12 Jun 2025 23:00:20 +0000
Manifest next update: Fri 13 Jun 2025 23:00:20 +0000
Files and hashes: 1: A9fnzzZSIyyk78DkykeGYg11L2Q.roa (hash: jan8f+is44AYa9jG93HTE50pBitsknBS00si8XIMwqI=)
2: DHmLK6qv7LDp9GSFF3bVVqiSSSs.roa (hash: 4c04LYJlSQnDFsWUTe3RinfcXPa5HIaLB5gKn1wNfQ8=)
3: X2DKxHgU0pJJ7l0RSAZexJQ4yk4.roa (hash: c4ZqtHFp+NEImgqSyGp/s8/x5ohWKo9ZUlSrkI+FleE=)
4: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: rno2SF2OR7YRMpRZKM3S3myt9UJGyW5sZ3j/gcUztTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 15:17:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:5f:71:69:19:c2:25:c5:66:16:47:74:da:a9:df:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Validity
Not Before: Jun 12 23:00:20 2025 GMT
Not After : Jun 13 23:00:20 2025 GMT
Subject: CN=984bd9aeda42e2542ffccbdb028dea21b9a3b301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f6:55:19:bd:2a:e5:67:1c:1c:6a:a7:36:55:
fc:3d:bb:41:54:b2:30:58:65:3a:9e:e3:1e:45:84:
f0:f4:27:eb:66:3e:85:89:7d:6b:0c:0d:90:5d:01:
a6:49:58:64:b9:b7:9f:0f:da:c7:0b:72:36:04:26:
9f:1f:29:c1:45:8e:c8:2d:86:2b:69:c1:54:00:a7:
f8:94:3a:46:86:2a:a5:bd:a6:c0:e9:a3:9f:fd:49:
5d:7d:75:18:58:43:7f:c5:f5:d4:c2:66:f0:a9:ee:
16:6e:12:9a:74:5e:1b:b2:7c:d3:c1:a0:48:3a:14:
3a:06:f9:2e:41:e8:08:7f:97:bd:ad:a7:c8:82:01:
38:e6:60:af:1f:d5:fb:a1:ec:25:ed:61:4d:d5:bd:
ef:e3:b7:27:90:7d:bb:09:55:b9:0c:af:e9:9b:ea:
83:e1:52:9e:7e:38:47:48:2c:5e:df:91:f2:57:10:
7b:a9:6a:bc:73:2e:21:33:e7:39:8a:21:f9:ac:36:
a9:86:1d:2a:99:91:f4:80:38:bc:00:74:18:cd:19:
e3:7a:22:d6:78:76:cb:38:51:df:fa:fb:be:35:73:
ea:95:ab:6a:8a:62:2c:2a:1b:98:56:b6:a4:5a:d7:
b6:50:ab:47:3f:46:8b:4c:4e:e2:09:fc:f2:2d:50:
a0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:4B:D9:AE:DA:42:E2:54:2F:FC:CB:DB:02:8D:EA:21:B9:A3:B3:01
X509v3 Authority Key Identifier:
keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:e8:7c:c7:cc:60:b6:b6:03:5c:82:b6:b8:5a:6e:b6:c3:d6:
3e:32:0b:50:78:95:1e:72:18:12:b3:c5:c2:b3:f4:9d:10:e2:
27:1e:18:dc:ce:89:52:20:1d:51:26:1e:61:65:a0:cc:6a:ed:
aa:70:af:bc:1a:a0:aa:3f:4e:c1:31:a0:77:e2:1c:e1:ff:de:
d3:84:17:71:bb:a6:e0:86:f7:a0:a2:6e:32:2a:ad:2d:43:86:
79:3f:d6:da:0b:10:20:c4:36:f2:f5:61:34:4e:92:71:76:bf:
3f:70:d9:c4:13:f2:c1:f1:0b:23:f3:3d:7f:81:b2:5d:33:c1:
0a:5a:0b:79:81:99:5c:21:d6:ef:80:71:53:78:e3:1b:15:45:
ba:fb:8b:c8:7c:83:b3:19:59:d4:20:9e:54:ea:d7:8d:1e:85:
42:cb:02:71:2e:a5:d0:90:3f:8c:a0:e6:98:a4:bb:4f:17:cd:
8a:90:b0:fd:82:63:e0:6f:d9:92:08:27:9a:f4:98:47:b5:4c:
cb:b1:64:db:91:60:5c:17:87:e1:a9:1f:1b:e1:db:db:07:c9:
ce:c0:37:75:44:d7:44:a1:92:fc:4c:18:e3:81:77:35:62:e6:
c7:2a:b0:b1:55:d2:ac:ff:19:58:00:78:6f:4a:e5:0d:5b:0f:
8a:78:a4:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 00:49:08 2025 by rpki-client