Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
File: yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft (raw, json)
Hash identifier: 9Z2v6+CCjllo0vqHFG9qFvb70vTpdvrLVs8In5Wu51I=
Subject key identifier: 5E:8D:5C:B2:A6:73:06:FE:AC:09:08:94:EB:2E:46:65:4D:4E:F5:B3
Authority key identifier: CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
Certificate issuer: /CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Certificate serial: 0197488C8FCB6AB6A940E067778114D63EC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
Manifest number: 0301
Signing time: Sat 07 Jun 2025 04:01:00 +0000
Manifest this update: Sat 07 Jun 2025 04:01:00 +0000
Manifest next update: Sun 08 Jun 2025 04:01:00 +0000
Files and hashes: 1: eVWj75QB5-NY5cip7EaAMqsD3_Q.roa (hash: R8SYABsszbTf/c1Z91aXqCMR7hgNS09va3LcQa+6Zyg=)
2: yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl (hash: +2ftfjf71aRDEsjofkWhEdepXPBy2UnEom+lYIHTMno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:8f:cb:6a:b6:a9:40:e0:67:77:81:14:d6:3e:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Validity
Not Before: Jun 7 04:01:00 2025 GMT
Not After : Jun 8 04:01:00 2025 GMT
Subject: CN=5e8d5cb2a67306feac090894eb2e46654d4ef5b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:85:b6:e3:20:d0:03:ca:cc:ed:a3:47:e0:98:
7f:e5:4f:f8:6c:1a:31:95:e1:c8:ba:e9:48:b4:96:
c6:d7:66:f2:22:e8:9d:2c:ca:0f:1b:e8:04:10:3c:
5c:73:98:4f:17:79:d8:80:94:6c:0f:d6:04:d8:85:
73:4a:df:a1:03:3c:f2:84:e6:5d:12:fc:de:d8:c9:
3d:3a:9b:45:82:9a:1f:c8:73:16:ca:cc:12:9b:78:
05:91:37:4b:e6:02:6a:6b:b2:4c:42:6c:3a:4b:dd:
54:af:51:32:d3:9d:f1:f5:cf:8d:9b:bf:b8:f5:a7:
fb:d9:e1:f1:79:61:df:fd:2c:a2:0d:31:54:5e:c1:
08:e9:03:df:57:ed:5e:06:ed:dc:08:14:e2:2d:a5:
2c:dc:7e:c1:fc:4e:ce:23:2e:6d:df:69:8f:4f:3e:
9d:07:1e:ff:3b:cf:63:98:32:6e:e8:dc:f3:59:ad:
fb:f4:71:3c:82:c2:d3:ef:e9:ee:fe:8c:4a:0f:6d:
b6:07:fe:4d:69:82:dd:df:61:bc:bb:2e:50:dc:0d:
d7:29:3a:85:36:e5:e9:8f:48:22:66:25:b4:c3:a2:
d9:ac:1c:0b:33:0f:bd:80:f4:b8:75:22:48:1a:a2:
4e:e1:da:ab:ae:63:9a:db:50:8e:95:35:ce:7f:79:
62:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8D:5C:B2:A6:73:06:FE:AC:09:08:94:EB:2E:46:65:4D:4E:F5:B3
X509v3 Authority Key Identifier:
keyid:CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:27:4d:b5:a6:5e:fe:0f:f2:b8:b3:f4:de:f5:4f:77:3c:f9:
98:c0:16:ed:54:2a:e7:67:28:6a:1d:db:fd:1d:6a:04:d0:62:
8a:a9:90:e2:98:0c:25:5c:c7:b5:8f:9a:80:71:ec:46:ef:2b:
0f:ca:ec:ce:25:54:b6:c9:03:a6:48:a3:8c:0d:27:b6:84:cf:
4a:d1:c9:15:c2:c9:23:18:2d:de:cc:4f:f7:e3:c6:d5:c5:20:
f5:64:87:4d:81:37:de:b3:34:e6:32:b8:ff:bb:c3:61:f2:ba:
1b:00:e1:e9:47:ec:65:02:cb:0e:52:97:13:23:3b:de:f9:b5:
a8:1c:b7:07:a4:5a:ba:40:9f:cc:d0:96:ef:85:50:10:4d:c7:
20:4b:ac:a7:22:a0:b5:90:2e:22:61:6c:03:6c:8e:fd:b0:73:
6c:80:08:ef:23:ae:de:4e:86:76:00:4f:e2:43:8e:81:5e:fb:
3d:05:bc:77:89:fd:fe:bf:47:e9:7e:c0:74:46:b6:be:ff:39:
43:f1:9a:79:2d:0a:f3:7f:26:07:6d:a9:b9:01:df:11:e4:ad:
8e:71:12:d3:42:73:ea:a9:71:38:4a:89:1d:59:e6:a4:7e:57:
d1:92:c0:b5:7a:d9:ec:91:fe:4b:42:89:ed:58:44:27:aa:bd:
25:d3:48:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:46:16 2025 by rpki-client