Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/a95f77-591b-411e-bfb0-7e14d3598f09/1/Y3HS--zy-Q3H9JUXpEDaUzn0psc.mft
File: Y3HS--zy-Q3H9JUXpEDaUzn0psc.mft (raw, json)
Hash identifier: Hfzl/xLSZW8Qh6u/gtfWCYTHbT/vLrRw/QAgQjMq8/M=
Subject key identifier: 0E:C0:8B:53:9B:49:54:BC:5B:ED:9B:1F:46:4B:DB:5D:A5:1D:ED:A7
Authority key identifier: 63:71:D2:FB:EC:F2:F9:0D:C7:F4:95:17:A4:40:DA:53:39:F4:A6:C7
Certificate issuer: /CN=6371d2fbecf2f90dc7f49517a440da5339f4a6c7
Certificate serial: 0197469ED605FEE2A724586CDE30BAFE301D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3HS--zy-Q3H9JUXpEDaUzn0psc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/a95f77-591b-411e-bfb0-7e14d3598f09/1/Y3HS--zy-Q3H9JUXpEDaUzn0psc.mft
Manifest number: 0A5B
Signing time: Fri 06 Jun 2025 19:01:43 +0000
Manifest this update: Fri 06 Jun 2025 19:01:43 +0000
Manifest next update: Sat 07 Jun 2025 19:01:43 +0000
Files and hashes: 1: Y3HS--zy-Q3H9JUXpEDaUzn0psc.crl (hash: 7cklitSQAyT1TI5hVWU86fe+AzH3bwPtkReRH96Nn+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/a95f77-591b-411e-bfb0-7e14d3598f09/1/Y3HS--zy-Q3H9JUXpEDaUzn0psc.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/a95f77-591b-411e-bfb0-7e14d3598f09/1/Y3HS--zy-Q3H9JUXpEDaUzn0psc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y3HS--zy-Q3H9JUXpEDaUzn0psc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:d6:05:fe:e2:a7:24:58:6c:de:30:ba:fe:30:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6371d2fbecf2f90dc7f49517a440da5339f4a6c7
Validity
Not Before: Jun 6 19:01:43 2025 GMT
Not After : Jun 7 19:01:43 2025 GMT
Subject: CN=0ec08b539b4954bc5bed9b1f464bdb5da51deda7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f6:4c:ed:cb:ce:4c:0d:a0:f2:2f:b1:d3:cb:
ec:63:4e:cf:2a:5e:d9:89:e9:f2:71:d1:83:a8:2a:
78:47:73:eb:6f:24:c5:5a:46:35:1c:6c:83:40:c3:
8d:93:76:0c:8c:18:50:e3:96:66:12:73:c9:d7:fc:
3b:1a:96:72:04:3f:04:44:56:82:8d:ee:57:13:5e:
78:af:33:96:c8:a8:b6:fc:11:03:35:31:c7:17:6c:
46:99:13:15:79:b4:9e:05:f3:09:bd:66:b7:8f:a2:
dc:d3:36:e6:b0:13:e7:83:a8:ca:b1:01:1b:f2:a4:
ce:b7:b6:15:9b:3c:8e:bb:8f:5e:49:53:68:22:a4:
7a:38:e0:e2:7b:0f:1f:b0:78:05:98:e2:03:15:05:
30:fd:80:ce:f6:3b:bc:54:97:85:b2:a4:d1:09:19:
f5:44:6c:fd:9a:e6:76:bd:a6:a5:3f:f1:ab:80:7f:
a5:97:3d:9e:a9:d6:c0:55:8c:19:8b:f9:89:72:ef:
c9:d9:c4:cb:16:d4:14:ff:a5:ac:53:8a:a8:56:1b:
84:fb:ae:b8:71:29:6e:db:c6:7c:47:4d:bf:3c:e9:
9b:08:c2:32:e5:94:af:e0:4c:0d:f8:d8:3a:c4:2f:
18:2e:66:80:4b:60:35:db:40:0c:e7:28:27:35:22:
e0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C0:8B:53:9B:49:54:BC:5B:ED:9B:1F:46:4B:DB:5D:A5:1D:ED:A7
X509v3 Authority Key Identifier:
keyid:63:71:D2:FB:EC:F2:F9:0D:C7:F4:95:17:A4:40:DA:53:39:F4:A6:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3HS--zy-Q3H9JUXpEDaUzn0psc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/a95f77-591b-411e-bfb0-7e14d3598f09/1/Y3HS--zy-Q3H9JUXpEDaUzn0psc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/a95f77-591b-411e-bfb0-7e14d3598f09/1/Y3HS--zy-Q3H9JUXpEDaUzn0psc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:d3:b9:65:ac:a4:c8:46:51:7c:18:4b:cd:77:f5:27:bf:ff:
4e:57:ee:a8:1e:c2:70:bf:1e:52:27:94:2a:ed:17:10:2a:61:
4f:2c:1b:01:94:a8:d9:16:7a:69:e3:19:e2:a2:e7:d0:d0:ea:
4c:73:82:06:5e:f6:3d:20:14:50:89:5f:b3:c5:45:74:b9:fc:
c1:7a:13:cc:2e:a5:53:65:a3:e8:dc:29:87:e8:90:29:d5:34:
ed:92:2e:cf:74:47:c9:99:a3:24:90:67:b8:9f:4b:48:23:9a:
e8:5f:7d:ae:82:af:2b:c9:d2:33:69:9b:48:b2:f8:de:a6:2b:
13:13:75:cf:32:f7:ac:fa:c0:91:ae:ca:8f:51:78:57:37:13:
b9:27:e1:3c:0f:ce:b0:52:9d:34:9f:2a:f0:3f:7c:2e:06:7a:
02:20:35:7d:61:d6:83:3a:9a:d5:fd:7c:5d:12:4b:6e:1f:33:
03:a5:16:02:2a:f1:d6:cf:89:e5:78:2f:e0:63:cb:a0:37:53:
cb:19:5c:21:44:84:e6:ae:97:80:d6:cc:65:cb:31:4f:74:ff:
94:d0:cd:66:40:1f:9d:3a:14:8a:1d:f7:00:50:06:64:d9:18:
80:8b:40:b5:f1:e4:4d:5e:73:f8:b2:89:6b:39:50:aa:14:a2:
4d:2f:59:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:10:26 2025 by rpki-client