Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: 3N9NwCSas0slZ0WR7l+qLsNfn/feA+Eg530UfxeKTTk=
Subject key identifier: 49:96:A5:83:3E:C1:59:DE:99:96:86:DB:EE:F9:60:9F:53:6C:13:2C
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 01974A0CDFB6EE700E9E342D377AB59D16DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 042D
Signing time: Sat 07 Jun 2025 11:00:46 +0000
Manifest this update: Sat 07 Jun 2025 11:00:46 +0000
Manifest next update: Sun 08 Jun 2025 11:00:46 +0000
Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: hcmHNA/2BJId6x7rGe1xGWcPgm7GcnYOfBVhhSxhrYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:df:b6:ee:70:0e:9e:34:2d:37:7a:b5:9d:16:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Jun 7 11:00:46 2025 GMT
Not After : Jun 8 11:00:46 2025 GMT
Subject: CN=4996a5833ec159de999686dbeef9609f536c132c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:80:a2:6c:d6:a2:16:dd:ce:fa:7d:8e:7a:b5:
ef:94:6b:67:4f:88:01:b9:0b:35:2d:43:da:dd:c7:
dc:82:59:56:2a:cd:fd:e7:96:a3:15:71:fd:48:eb:
f8:95:7e:e9:29:7d:9f:3a:29:8f:d0:39:62:1a:a2:
55:29:98:83:81:46:d2:0c:ed:3a:cc:08:6e:9f:f1:
66:87:c5:63:26:28:01:9b:3d:de:b9:ba:31:d7:d9:
66:67:d6:3e:b8:8c:7c:97:cd:cb:a9:74:57:24:10:
00:62:0b:fd:4f:8f:a9:1a:85:25:10:cd:16:2f:56:
fa:16:26:67:00:62:c9:29:0c:68:8b:ab:e8:e0:e5:
d4:b9:21:b3:be:71:e5:19:5d:79:7d:55:09:ad:e4:
c1:52:51:ca:03:08:4d:96:92:61:c5:1f:a5:71:6d:
07:da:aa:50:96:4a:ad:2e:11:40:2b:78:65:c4:d7:
36:67:3d:07:e4:78:cc:21:18:ed:ae:d6:79:75:90:
46:78:af:be:b6:48:ad:13:08:82:b0:5c:b2:1b:f9:
40:17:35:fc:82:22:bf:35:34:b6:cd:72:79:27:8e:
7c:47:be:a5:f9:cc:09:b3:f8:8e:20:c7:50:b8:15:
18:0e:a0:ae:d9:37:7e:05:ba:d8:43:c1:84:7f:ac:
5e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:96:A5:83:3E:C1:59:DE:99:96:86:DB:EE:F9:60:9F:53:6C:13:2C
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:09:10:bf:c7:bb:1e:02:b0:0e:7a:01:5f:f4:1a:ce:e6:fa:
cd:86:67:10:8d:57:cf:e7:59:3b:ed:ba:5e:3b:e8:0f:a4:e1:
11:f7:70:fb:c4:e5:5b:c2:c9:5a:11:42:95:1a:cc:02:fc:9b:
76:f5:3d:0c:b4:72:a0:9b:de:0c:91:0d:a6:9f:c1:89:df:64:
b0:c9:d2:89:44:08:bf:28:68:c1:e8:55:64:d5:fd:5b:e2:fc:
fd:10:a1:19:90:b4:dc:d5:42:09:75:d2:6b:14:c1:f1:01:55:
dd:23:7c:72:cf:08:f8:47:a2:55:a8:87:67:4f:9a:12:85:7c:
d3:c3:fd:9a:9d:cd:e7:8f:3f:cb:73:7f:f5:9a:05:0a:a6:91:
c8:d0:72:06:22:f9:70:bb:0a:b7:2b:cc:8b:ee:63:3b:30:65:
a5:71:24:d6:31:8c:7c:ab:74:e3:9d:a0:be:f5:54:16:7f:90:
4f:49:2f:cf:df:7d:02:dc:41:46:aa:76:8d:77:6f:3a:fd:3b:
aa:4d:d6:09:a5:07:36:30:a2:94:75:26:70:5c:59:b6:3d:ca:
32:3e:41:f7:cb:47:0f:7b:c3:ff:d5:77:90:1c:2d:9f:ec:0b:
02:eb:f5:55:75:7f:86:2a:e3:7e:e1:aa:ba:80:12:31:86:16:
97:9c:b8:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:45:46 2025 by rpki-client