Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
File: y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft (raw, json)
Hash identifier: uR0jd1q5AHCNN9nBpp/f5oFubx4UFlPrPuqDWfX1HBM=
Subject key identifier: 72:8C:6D:63:FB:0F:3A:29:4D:A8:60:DA:7B:E8:0C:29:E1:0F:1C:8D
Authority key identifier: CB:FF:7F:D7:EE:11:EF:F8:91:4A:31:50:FC:D1:6A:64:8A:3C:7F:30
Certificate issuer: /CN=cbff7fd7ee11eff8914a3150fcd16a648a3c7f30
Certificate serial: 01974B56EB7030527EE11305CB30ED9C3F9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
Manifest number: 04D9
Signing time: Sat 07 Jun 2025 17:01:16 +0000
Manifest this update: Sat 07 Jun 2025 17:01:16 +0000
Manifest next update: Sun 08 Jun 2025 17:01:16 +0000
Files and hashes: 1: meIfpWGWvt-OCR5hELolYg558lc.roa (hash: b6ypOtwfgJ3TZwPfNgJCJZ3JwL1dV4492jTSEMjG2cE=)
2: y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl (hash: s8BnRiXJetPM7vYhQlQcA2ysIDU5IPU9yiDXQn0IrWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:eb:70:30:52:7e:e1:13:05:cb:30:ed:9c:3f:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbff7fd7ee11eff8914a3150fcd16a648a3c7f30
Validity
Not Before: Jun 7 17:01:16 2025 GMT
Not After : Jun 8 17:01:16 2025 GMT
Subject: CN=728c6d63fb0f3a294da860da7be80c29e10f1c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1e:f7:54:fe:47:1e:4a:03:a1:57:ed:24:49:
d4:71:98:39:19:28:11:84:7b:23:ef:24:64:c8:8a:
45:12:6a:7c:04:66:9c:1a:10:a6:e8:e3:48:6a:0c:
bd:43:dd:98:3e:5f:74:c6:a5:4b:f7:70:fe:18:6f:
43:fa:64:6f:4a:82:b6:eb:ca:93:6b:a4:4b:c4:62:
a6:62:c7:5d:50:03:20:ba:3e:df:7a:fe:59:48:f3:
2f:7b:69:f1:e1:bf:ed:e8:f5:ab:5a:fb:5f:94:1b:
7c:e7:9e:48:76:e7:50:e6:58:86:95:e4:db:5e:c5:
fe:db:a8:9d:88:fd:7e:37:aa:64:1f:20:7a:98:9a:
3a:e8:31:95:e1:61:0b:d0:c2:85:60:4a:15:c5:63:
81:cf:1a:e8:55:81:79:7e:98:00:56:7e:78:99:c9:
9d:22:56:d6:cf:f3:71:15:8b:29:7f:91:74:8e:75:
30:bc:52:1f:ce:84:ee:79:5b:61:a5:73:72:f0:86:
6b:fe:19:ae:dd:f4:70:c0:a5:58:00:15:7e:06:03:
1b:01:15:51:d3:00:94:ce:4c:18:ad:1f:4d:61:4a:
3c:bc:88:df:38:8e:46:1a:86:52:01:a5:80:b3:ba:
07:89:ce:e1:36:5f:40:f2:47:0e:4e:1a:3f:27:21:
c6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8C:6D:63:FB:0F:3A:29:4D:A8:60:DA:7B:E8:0C:29:E1:0F:1C:8D
X509v3 Authority Key Identifier:
keyid:CB:FF:7F:D7:EE:11:EF:F8:91:4A:31:50:FC:D1:6A:64:8A:3C:7F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:24:51:ae:bb:61:6d:26:a7:77:c0:08:95:43:3e:d3:00:cd:
7c:01:9a:93:cc:d7:08:e3:ba:3b:bc:59:88:38:48:cf:fe:72:
18:00:a0:ea:c3:4a:29:21:d1:d7:37:53:e5:9e:14:46:d8:cc:
69:b4:8e:7a:96:ab:c6:2a:34:e1:33:51:b4:4e:1a:80:21:9b:
03:e1:67:39:f0:1b:74:f0:62:56:e7:a3:5b:7e:5a:73:f0:93:
a4:d0:be:db:d9:91:fb:29:01:a5:a6:5a:cb:46:a6:79:06:ab:
7c:8c:84:4a:5f:88:b3:ba:ef:fc:9d:d8:e0:c1:6b:e8:01:ff:
ec:1b:4b:7d:6f:eb:4f:d4:a7:c4:90:73:18:40:ea:a8:b9:c7:
d1:a9:22:1e:cc:2a:49:48:93:71:a5:fb:d8:47:77:a7:a1:3d:
23:38:f9:96:6d:83:c7:83:79:ad:7a:6c:15:6d:54:e4:83:8a:
42:14:23:db:16:fd:e7:35:ca:9b:27:be:ef:15:4f:9e:8c:14:
0b:1e:44:f7:c3:56:42:9b:1e:61:5f:8c:bb:83:30:ca:3a:00:
63:f3:c2:a0:6e:2d:7e:67:66:30:d1:b6:05:d2:44:93:ad:9f:
5b:8e:94:5d:9b:b6:db:4c:18:3b:14:f1:ff:fa:66:19:35:4d:
19:38:02:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:57:02 2025 by rpki-client