Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: Kq5rVGVB3NwrcroQxfFYZ2y/h+RTy+g5tHEsMsd6E18=
Subject key identifier: 2E:DA:1B:80:B5:BD:23:CC:62:3D:8C:BB:5E:85:A9:C5:47:D5:81:F1
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 01974E8E4C749E518F2B2F6128D691BD751B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 64
Signing time: Sun 08 Jun 2025 08:00:37 +0000
Manifest this update: Sun 08 Jun 2025 08:00:37 +0000
Manifest next update: Mon 09 Jun 2025 08:00:37 +0000
Files and hashes: 1: WJ8mDGp2R9SerzYw88vehn3HSik.roa (hash: h5SXKLsi4QXI6eIjbslnIuS0eoxKGY5pZRrkhG82mKM=)
2: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: pKuZNWavWYHSBC59H4nZlNB74ZgwNEEsy0GlxHGl1OY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 08:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:4c:74:9e:51:8f:2b:2f:61:28:d6:91:bd:75:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: Jun 8 08:00:37 2025 GMT
Not After : Jun 9 08:00:37 2025 GMT
Subject: CN=2eda1b80b5bd23cc623d8cbb5e85a9c547d581f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:91:8d:60:94:c6:6f:df:e0:0b:f4:71:e1:32:
ae:93:74:89:2c:91:f6:db:08:0e:12:a3:88:01:4d:
4e:79:48:94:ec:19:69:c2:bb:c2:e9:8a:76:e7:4c:
e1:af:c5:01:4f:73:a5:e5:e8:7f:f4:b7:bc:20:4e:
e7:2a:11:12:18:58:fc:66:38:ed:15:e6:34:c2:c9:
36:9c:71:d0:e3:33:0d:b1:84:fc:9a:d1:d1:70:15:
b6:1d:a9:df:75:ef:6c:e4:1e:9e:37:c5:20:8d:52:
83:7d:9d:93:eb:63:60:3f:bd:1f:d7:fd:6b:52:04:
b0:31:f2:18:55:eb:ff:98:f7:5e:2d:e9:a0:87:01:
8b:ab:5c:38:34:c7:4f:d9:12:bb:99:96:15:f1:db:
c4:31:a9:af:42:63:81:5e:3f:e7:36:1e:7d:5d:fa:
a1:e8:97:d3:83:d2:48:bf:87:a9:75:0e:f5:af:81:
d6:d4:5e:c1:41:ac:65:01:c5:c4:30:e8:d0:ad:0a:
0e:38:c7:49:71:46:71:ab:93:64:26:6a:2d:23:53:
0e:5e:71:1f:ea:4b:01:3c:4d:85:58:3a:f7:8b:48:
e2:77:27:6c:d1:0c:0e:f8:1a:c7:21:00:0e:9e:55:
09:94:85:d1:5b:28:cc:d4:2b:fc:de:83:82:a6:d0:
c7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:DA:1B:80:B5:BD:23:CC:62:3D:8C:BB:5E:85:A9:C5:47:D5:81:F1
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:9f:06:8e:72:c1:03:0f:8b:f3:80:35:9d:8a:2b:1b:fd:00:
1d:dd:ed:03:10:29:ca:59:5b:2a:d4:48:88:9d:f0:03:0e:82:
0f:68:58:59:b4:5f:bb:9b:b4:d9:b5:e3:9a:9c:0c:41:36:a7:
46:e3:62:24:4e:e6:9a:5a:e8:45:fe:41:30:88:6e:69:5b:ff:
e5:8f:ab:4f:a9:29:76:4a:c9:09:86:56:93:90:98:cf:2e:c0:
97:03:b3:0f:11:ea:b8:a1:69:d8:c8:d3:db:a4:82:d2:f8:7c:
d4:8f:4e:29:4d:79:41:f7:57:87:f6:e4:d1:cb:79:5a:bc:77:
26:4d:ed:75:b6:27:ca:c3:04:d0:bc:c4:6a:7b:ab:dc:87:c5:
ca:27:6c:62:81:65:a6:7a:98:c6:64:d5:7d:09:1b:58:0e:ff:
6d:80:c4:7c:1c:0f:75:72:9c:3f:a9:bb:2f:0f:bb:6f:61:43:
10:15:77:94:51:41:3a:49:3c:90:a0:e1:b5:b4:32:0b:a7:13:
9b:fa:e1:10:35:00:cc:01:36:a5:dd:df:09:ac:b6:73:4c:ee:
7d:10:fd:dd:0e:7e:00:b6:46:28:57:25:ae:da:e4:f9:53:9b:
0d:06:74:fd:31:af:c3:ed:fc:4d:50:50:f1:85:ba:ae:47:43:
ab:df:c0:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:15:19 2025 by rpki-client