Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
File: YKVAzkUEVjReyOCY709TY010vx8.mft (raw, json)
Hash identifier: r8/+UkWOaY5X2hiFV04ANJurBdEWiNX7kOn+J1om8Is=
Subject key identifier: A1:49:D1:BE:B3:16:10:F0:4A:24:B6:12:C4:1B:2C:ED:11:62:59:62
Authority key identifier: 60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
Certificate issuer: /CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Certificate serial: 01974BFB9B3EE924AD78B551351B5CEB06D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
Manifest number: 03DE
Signing time: Sat 07 Jun 2025 20:01:09 +0000
Manifest this update: Sat 07 Jun 2025 20:01:09 +0000
Manifest next update: Sun 08 Jun 2025 20:01:09 +0000
Files and hashes: 1: Bq43MW6bqq2vM6N_DNsfJJero4c.roa (hash: VW9B+4fqw3vwWS3Hrgaa9ekIoZlwSTvJqX1tdku3w4Q=)
2: FFuyCzey-ipHJjO6uFxO4LXEWh8.roa (hash: BnXInNtTIRPQzVjQvIt2UJghwBPIV2UTW4dKQw8S/yc=)
3: GNYCBA73RNfPwbA7eeRR2Ynb_MU.roa (hash: StZ632pNqDa4wkp/dODQDXg1mtBzKfLiR3mQsyHI7KM=)
4: MxYpdz7QLHrqszrw0ICVs_l_uwI.roa (hash: uY4nKFGGyfh/6l3FSdHL/FklopbqDKoZs2zw3yHpkBY=)
5: YKVAzkUEVjReyOCY709TY010vx8.crl (hash: c7v0rWtk3/46Kt133XdB2uVkdjePUMJJFz5h/lskn3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:9b:3e:e9:24:ad:78:b5:51:35:1b:5c:eb:06:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Validity
Not Before: Jun 7 20:01:09 2025 GMT
Not After : Jun 8 20:01:09 2025 GMT
Subject: CN=a149d1beb31610f04a24b612c41b2ced11625962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:33:46:a8:d7:8d:99:56:e3:f7:77:8e:1d:4d:
33:22:b8:2c:52:f4:42:e3:08:70:74:82:a5:b5:f7:
04:11:c5:1c:f2:f2:14:d7:3e:bd:5d:fd:7f:0d:89:
63:16:91:5f:e5:bc:ee:a4:a5:72:d2:8f:25:d2:ab:
46:3a:e5:68:26:ed:55:93:b4:e3:43:8a:e4:fa:71:
ed:80:86:26:4c:03:6f:bc:19:8e:5d:76:fe:89:8a:
00:3a:0a:92:a0:b6:52:5f:4b:c0:bd:32:31:a1:06:
6f:21:79:54:a0:c1:49:2a:71:14:5d:32:c1:08:f9:
6d:34:87:9c:c0:8c:1a:8b:ac:91:31:c7:c8:34:6e:
55:f9:fe:2e:4e:36:fb:6e:e4:8b:f8:06:86:ba:23:
7a:02:c3:d7:bf:2d:46:a1:c5:3d:2e:2b:4f:b7:49:
d6:6b:92:92:80:62:b0:5e:a2:90:6c:53:34:b4:0b:
89:3d:4e:eb:9f:e8:9a:25:9a:7a:0b:8b:d6:1b:5d:
2b:c3:8f:44:cb:1a:d6:e5:08:47:2f:29:29:a0:b5:
fb:d8:53:e9:03:a2:7c:3b:fd:82:27:d9:37:fb:3a:
6e:0f:cd:10:84:4f:20:c7:34:45:01:59:1f:65:73:
d8:1b:71:1d:a1:09:f3:1e:4b:63:f2:2d:8b:db:54:
65:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:49:D1:BE:B3:16:10:F0:4A:24:B6:12:C4:1B:2C:ED:11:62:59:62
X509v3 Authority Key Identifier:
keyid:60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:00:d9:6b:da:c3:c3:b3:bd:35:66:9c:4b:ca:84:7c:f0:df:
74:d0:67:a7:c2:5c:c5:e6:5d:9d:d5:c6:71:cc:01:ec:78:0a:
35:63:5f:2c:71:13:18:e0:22:65:15:84:91:93:85:98:f4:2a:
ed:0c:6f:38:a6:7c:aa:d0:f5:ba:22:61:a1:0e:9e:15:f3:da:
e4:85:a4:58:b3:55:de:a1:06:a4:8c:8d:d5:b8:ce:ae:68:71:
4d:ac:a8:df:16:fd:fb:19:0f:46:fa:76:19:d6:cd:ca:06:57:
f2:e9:c7:7e:39:e5:4a:72:20:43:d7:99:10:ad:1b:cb:d1:aa:
06:22:b4:fa:56:a5:eb:b0:f0:c2:ed:98:cb:c9:8c:ee:b1:7f:
ab:d1:a9:74:fd:c2:27:e9:d8:16:c1:e7:b0:e8:49:89:ed:4c:
9b:bc:d1:ef:3d:20:95:29:18:81:cb:0d:88:98:ef:33:68:e9:
25:4e:f6:39:84:f6:58:ba:6c:63:10:dd:97:d7:42:07:3b:b3:
cb:4f:82:0e:3a:f6:52:9b:d8:b4:90:85:bf:4f:0e:c0:43:d5:
23:d8:c3:38:37:67:0b:fe:ec:4b:bf:87:9b:d9:11:c7:3b:92:
a3:17:c3:02:39:df:6f:cf:06:f5:30:66:bd:d5:45:ce:ef:d5:
23:03:58:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:30:25 2025 by rpki-client