Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: IzrPRN/tbEgeJiwRsdAksaWWpiAqThm22N3MIWBywsE=
Subject key identifier: 44:34:3A:08:C1:60:FF:D0:83:D7:02:E4:9C:02:7C:B1:D9:9D:DF:9A
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 01974742E7C0E703D640ED9F81FF95C81B9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 12F8
Signing time: Fri 06 Jun 2025 22:00:56 +0000
Manifest this update: Fri 06 Jun 2025 22:00:56 +0000
Manifest next update: Sat 07 Jun 2025 22:00:56 +0000
Files and hashes: 1: cpaYv-AQ-t9zhgKKXsvKBzFcSaQ.roa (hash: QH8X2hDISDdQVFPt9W1N705nATkeCHCrQhlKJMRWx8A=)
2: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: 8tRq8pp6GHyItOkxntNjTb6aHnqY3D3d/6gS/7h0dXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:e7:c0:e7:03:d6:40:ed:9f:81:ff:95:c8:1b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Jun 6 22:00:56 2025 GMT
Not After : Jun 7 22:00:56 2025 GMT
Subject: CN=44343a08c160ffd083d702e49c027cb1d99ddf9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0f:76:3d:67:24:d2:9c:99:b4:57:7b:9b:b9:
44:f6:5f:87:98:e1:4f:bd:71:ac:a5:4c:be:e2:76:
fa:b7:f3:43:62:e4:53:d8:7b:56:53:da:69:80:ff:
6a:7f:30:59:83:2c:b8:d4:3b:7c:b3:a9:c8:b0:9a:
bc:61:78:0f:e8:01:6d:11:11:75:72:f1:5c:6c:3a:
7a:79:b9:5b:96:f6:f7:9e:fb:29:24:a9:10:59:05:
40:34:93:67:e9:6a:5b:fa:e4:8f:6e:26:ae:fb:be:
c3:bb:a6:94:c4:87:f7:1d:05:9d:6f:2f:1d:c6:c7:
87:d0:9d:ea:f9:b0:2f:26:c5:31:ea:4e:16:5c:7c:
4f:bd:14:da:17:62:0a:fc:69:ae:73:5f:6e:52:cf:
13:05:d9:5b:b2:92:35:e5:a8:1c:ed:b9:e0:b5:1c:
d7:58:f7:40:6f:3e:e0:43:52:a1:d0:99:cf:0d:79:
e3:d7:dc:3e:d6:0c:53:e5:a0:39:cb:c9:04:31:62:
23:27:42:b1:83:6f:a3:96:7c:cd:6f:aa:16:f4:96:
ab:16:6b:eb:c3:76:97:dc:03:ed:d7:5d:fc:89:3e:
58:f6:82:e2:b1:e3:9e:69:5d:7f:7c:e0:0d:19:79:
d2:7b:a6:52:ad:9c:e9:ec:48:cb:77:da:36:e9:b8:
28:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:34:3A:08:C1:60:FF:D0:83:D7:02:E4:9C:02:7C:B1:D9:9D:DF:9A
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:7d:cc:eb:e3:42:36:ee:16:08:28:d6:01:33:9f:bc:aa:91:
85:f3:86:0d:6c:42:8e:25:f7:34:e1:12:f8:ab:78:c8:e4:f4:
fc:66:65:f2:5f:d1:24:2f:a3:1b:06:61:62:f0:1f:40:f3:e4:
ac:c9:c5:36:10:18:f7:3f:ee:9a:34:44:cd:d9:3a:d2:fe:4c:
39:36:a0:3f:9d:6b:4a:5f:5f:65:64:81:58:ec:f9:2d:67:7d:
30:76:22:4a:02:bc:ac:89:b4:8a:1e:bb:d1:55:33:51:16:69:
96:89:92:47:0d:39:48:09:a4:f4:e8:6f:6e:e9:0b:59:b8:f6:
79:3a:ea:19:ca:34:3e:d9:24:08:35:f0:95:32:fd:7a:f8:a8:
5e:c2:c2:68:fc:a8:a1:9e:91:36:61:65:6c:f0:3b:a1:45:90:
0a:0e:86:1e:53:28:3a:98:17:6c:ca:2b:4b:17:dc:b1:46:f6:
5b:c2:bf:c7:40:0d:d1:10:cd:95:58:e5:9f:76:78:12:2f:a7:
dd:2b:78:6b:5e:5e:64:bc:f6:f1:75:77:26:74:43:02:d1:2e:
90:c9:20:63:68:14:07:6e:57:d7:4a:35:dc:61:ae:29:f6:7a:
ff:d3:25:e6:f1:a5:21:92:d0:cf:3f:de:db:f9:a8:8f:bf:5e:
57:43:76:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:00:43 2025 by rpki-client