Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
File: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft (raw, json)
Hash identifier: uc1GWUhJU6X24pdcJXvUILxqSz/L9JWjpUSCz5c5ryQ=
Subject key identifier: 18:62:3D:61:28:1D:04:FC:31:A6:F2:B6:71:0C:2C:2C:C8:E0:32:41
Authority key identifier: 61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
Certificate issuer: /CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Certificate serial: 01974BC4889DF88ED15049B98FF0690FCB42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
Manifest number: 0CA3
Signing time: Sat 07 Jun 2025 19:01:00 +0000
Manifest this update: Sat 07 Jun 2025 19:01:00 +0000
Manifest next update: Sun 08 Jun 2025 19:01:00 +0000
Files and hashes: 1: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl (hash: VfMW2nR58DP7m6A+xmJ0pRtjI6uJNq1iPlTC+YSeDzo=)
2: cmQy3O27JTVMgc0scAWzRQz1k34.roa (hash: JrHBwEb+drqrBDZnlCxDUthDJ1gAVyMOlFCkBCL2cqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:88:9d:f8:8e:d1:50:49:b9:8f:f0:69:0f:cb:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Validity
Not Before: Jun 7 19:01:00 2025 GMT
Not After : Jun 8 19:01:00 2025 GMT
Subject: CN=18623d61281d04fc31a6f2b6710c2c2cc8e03241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2f:d9:73:fa:16:e5:13:88:44:d5:e2:67:ee:
9e:87:46:2f:9f:c0:1f:cc:92:36:90:8d:34:05:80:
fe:62:b1:d3:65:ca:04:19:e8:64:d8:9f:d8:66:13:
3e:d6:ad:b9:d5:1c:06:97:e7:c0:10:7f:1c:4b:cb:
7e:07:a2:74:4c:13:26:b3:77:f2:0c:4f:c0:7b:69:
93:a0:bc:3a:27:28:3a:c2:5e:ed:c4:25:3b:db:70:
d9:be:56:33:8a:fa:80:d9:f6:7e:df:51:bb:28:0b:
97:fd:b1:e9:7a:4a:56:4c:b4:c9:90:ec:c0:e1:53:
31:44:ef:1c:11:d6:ad:cf:12:db:ed:74:61:38:e7:
71:8c:8b:fd:3b:94:3e:85:43:ae:63:e8:14:ca:3a:
19:e7:84:15:88:fa:ee:7e:49:25:c6:83:46:d9:25:
f9:f9:58:e8:71:95:95:0f:f9:e5:d8:da:a1:b6:2b:
51:04:87:0b:d1:c7:a7:bc:a9:38:11:b9:39:a6:7f:
d0:3f:ef:fd:1c:6c:95:33:9f:44:90:3b:b3:4e:f9:
e8:04:72:4d:6a:a3:1e:66:21:cd:9a:f6:24:cf:b5:
63:85:76:7d:60:29:61:0d:68:67:47:ce:e9:0c:f3:
49:03:eb:78:6c:ed:8b:ac:bd:5a:d1:88:0f:90:f2:
cf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:62:3D:61:28:1D:04:FC:31:A6:F2:B6:71:0C:2C:2C:C8:E0:32:41
X509v3 Authority Key Identifier:
keyid:61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:70:7a:2a:64:52:00:50:2a:ff:35:32:78:86:39:64:74:59:
fb:9b:a4:b5:f7:89:a6:7e:29:80:3b:69:75:6f:d6:08:2b:fd:
de:90:9f:29:74:15:87:5b:13:02:4f:96:b5:0b:99:05:aa:61:
2c:9b:27:8d:b6:27:17:4a:71:07:94:e1:13:30:bb:ea:c6:38:
a5:24:05:03:4c:3d:7e:2f:94:4e:a0:9a:19:02:a3:da:f9:9d:
85:60:9d:fe:93:71:96:05:56:10:67:e6:47:8c:73:69:44:bb:
b5:bd:1d:85:01:77:a6:ac:de:7e:17:82:c6:bf:73:dc:fe:71:
27:00:df:c7:02:bc:2f:59:8d:09:7d:fd:6b:89:f8:6e:a2:d9:
e7:17:f6:c9:66:8b:b7:e7:6a:22:a0:90:31:b6:c0:69:80:dc:
61:51:e3:c5:5d:4f:7c:6c:6b:5f:4e:c8:9f:86:ff:5b:6b:0f:
02:b4:42:6b:55:16:97:b4:39:c7:2e:6d:77:11:15:f4:c9:64:
1b:95:51:2a:f7:0a:5a:d5:0b:37:e2:a2:33:4f:f1:b3:be:1e:
11:7e:3e:9d:92:eb:4b:2f:8c:6f:ee:c9:a5:0b:19:64:ac:ce:
cf:90:93:76:73:93:a3:03:ba:87:5a:3d:2a:01:16:3f:1e:1a:
93:45:8e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:17:26 2025 by rpki-client