Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
File: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft (raw, json)
Hash identifier: HEvrHLkL4Vl1cLVH7u3hFGSKx04x6D9wGo0jjc7ZRkc=
Subject key identifier: 92:E6:26:F9:F5:99:93:FB:4F:AD:47:48:33:06:45:E0:10:62:A5:69
Authority key identifier: 63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
Certificate issuer: /CN=63e30980305345fd5365b3515e3568f9cee58541
Certificate serial: 0197469D9D613C8909F68BE7C284CFA23C94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 19:00:23 +0000
Manifest this update: Fri 06 Jun 2025 19:00:23 +0000
Manifest next update: Sat 07 Jun 2025 19:00:23 +0000
Files and hashes: 1: Hs2TvjBAbChswFTm05pNrXJsCJA.roa (hash: xtJBUOZoNvBaKTOo18EAAqIaZQ4IjdLX9G/viT94FJA=)
2: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl (hash: hHXZ/xk2toCE1PXGbmT54ektvTBEARz4zMoRziRZNJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:9d:61:3c:89:09:f6:8b:e7:c2:84:cf:a2:3c:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e30980305345fd5365b3515e3568f9cee58541
Validity
Not Before: Jun 6 19:00:23 2025 GMT
Not After : Jun 7 19:00:23 2025 GMT
Subject: CN=92e626f9f59993fb4fad4748330645e01062a569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a4:71:3e:a8:77:61:69:11:a7:66:15:d6:1d:
de:e6:5f:4c:54:50:ee:59:a3:ca:3a:3e:40:8e:e0:
3c:46:af:bb:b8:f9:bf:dd:ff:e0:41:b4:fe:1c:d1:
fe:d2:78:d2:36:bc:69:1f:54:9b:45:55:68:03:8b:
ac:65:dd:8a:d6:13:b6:c9:8c:f1:5e:c5:ce:2d:75:
c0:d8:0a:92:89:cb:be:56:f8:51:78:5a:14:ef:d5:
c7:fb:bb:e8:85:0b:0a:89:43:30:44:4f:52:ad:ac:
a0:2c:0f:73:0f:4e:ba:f8:fc:e3:ea:3e:f9:be:a2:
59:d3:df:d4:b1:d4:c4:10:94:ed:3f:29:8d:0c:9c:
e9:62:a8:a1:75:0f:ed:09:1c:0e:09:e7:c2:26:73:
da:1d:24:bd:13:81:3e:3f:ff:8c:b6:63:f8:fb:0d:
fc:66:b0:d5:52:2e:10:d1:51:72:06:aa:eb:03:47:
21:09:58:7e:0c:4a:02:cd:8f:3c:af:7d:33:69:bc:
2a:74:77:83:a7:2f:f0:c8:81:cc:62:fa:f7:92:c0:
91:bb:d4:72:dd:7a:e9:70:ab:e7:ca:b2:47:a0:02:
46:0e:48:a4:91:59:b9:53:08:e2:30:fd:71:22:2a:
52:fc:79:7d:33:58:58:cb:9f:ef:a3:2c:84:32:8c:
c2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:E6:26:F9:F5:99:93:FB:4F:AD:47:48:33:06:45:E0:10:62:A5:69
X509v3 Authority Key Identifier:
keyid:63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:35:19:73:80:25:4f:f6:1f:6d:84:99:0f:88:53:cb:4f:fe:
1f:4f:f9:1b:87:3b:9f:c0:9c:a6:79:e8:23:2c:1b:4a:77:03:
7c:34:46:8c:9a:ac:83:e8:c2:f2:de:15:46:7c:03:b4:77:dc:
d5:bb:51:e6:a4:32:1f:2f:87:74:e0:02:98:3b:48:a9:b8:d0:
6e:5c:1b:84:9c:c4:c6:85:1e:8c:e7:35:b2:09:c9:0a:5b:d6:
b5:ff:1a:67:5c:cf:bc:32:6d:c2:58:f1:b1:82:fb:1d:fe:bd:
f6:19:51:25:b1:be:06:63:f9:3e:5d:2c:e2:06:af:1d:ec:c1:
0c:37:2d:9f:d5:de:36:c9:32:7c:a1:85:67:05:6d:e4:1c:71:
13:ad:32:b8:cb:01:a4:5d:11:a1:ba:d6:f4:07:1d:4f:04:34:
45:a2:e0:54:94:ea:90:8a:4e:9a:d9:b1:a5:c2:a6:c2:69:53:
59:02:0f:8f:03:b9:d6:20:c5:b4:7e:b0:15:12:4d:a5:9d:f1:
d2:0d:43:a0:64:32:fa:88:8e:43:77:0f:d1:7e:ae:a6:02:b8:
43:50:f4:b7:05:c4:b7:5f:8b:ae:a2:e1:dc:18:57:0d:1c:ce:
da:d9:54:86:0e:c7:be:88:d8:5b:b4:31:4a:88:6c:03:6e:4f:
c6:99:72:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:17:37 2025 by rpki-client