Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft
File: yxAkP5hjb6oPtsWua62bCrrSNDg.mft (raw, json)
Hash identifier: ObvOpbGwJE9TAdFpwqZl+flhG4wj+T5YUXAMp68uatA=
Subject key identifier: BF:B8:CE:4F:59:3E:D0:BB:81:CB:DB:E0:47:29:1B:C2:58:76:84:36
Authority key identifier: CB:10:24:3F:98:63:6F:AA:0F:B6:C5:AE:6B:AD:9B:0A:BA:D2:34:38
Certificate issuer: /CN=cb10243f98636faa0fb6c5ae6bad9b0abad23438
Certificate serial: 01974A0CBB4243C589B32F387902E1BC7379
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxAkP5hjb6oPtsWua62bCrrSNDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft
Manifest number: 0E8E
Signing time: Sat 07 Jun 2025 11:00:37 +0000
Manifest this update: Sat 07 Jun 2025 11:00:37 +0000
Manifest next update: Sun 08 Jun 2025 11:00:37 +0000
Files and hashes: 1: mFdOLgpY75BCI6HwFdhbm64m2HU.roa (hash: dTVNpH8dt8wvAbtnwcqlrtySsedQZdW+bUyu+40b16A=)
2: yxAkP5hjb6oPtsWua62bCrrSNDg.crl (hash: OrbBRxuiI43ihJ6y5w4Ux1iWsm7uEg6ua99WitpvXoM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yxAkP5hjb6oPtsWua62bCrrSNDg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:bb:42:43:c5:89:b3:2f:38:79:02:e1:bc:73:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb10243f98636faa0fb6c5ae6bad9b0abad23438
Validity
Not Before: Jun 7 11:00:37 2025 GMT
Not After : Jun 8 11:00:37 2025 GMT
Subject: CN=bfb8ce4f593ed0bb81cbdbe047291bc258768436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:73:8a:13:65:a3:a1:1b:9e:58:a6:ed:31:3a:
72:c8:ca:65:7c:3d:93:4e:d2:80:f6:45:ac:9a:50:
8e:b5:6f:20:40:26:88:0c:aa:31:a8:af:5a:68:b8:
6f:d0:f7:85:83:08:9b:57:ff:2b:cc:20:59:a6:e9:
f4:ca:9f:8a:bc:5b:e5:78:22:3f:f1:bf:58:fe:0f:
e4:56:ef:92:43:95:3e:56:61:d8:53:8e:c5:76:9d:
33:f0:23:a9:7e:ef:cc:5c:79:ac:b7:be:be:df:ac:
a4:97:e8:53:70:34:eb:a3:07:99:6e:93:94:7d:f9:
f2:cd:51:40:48:32:27:c9:ff:d3:c2:65:53:e1:85:
ec:d8:8b:8e:37:91:17:74:12:21:9b:ee:fd:28:c6:
c7:57:22:6c:3d:88:b8:5a:4f:b2:1a:5a:8d:4b:a6:
47:85:2f:f8:ce:4a:08:cc:cf:2b:b4:fb:e8:d2:56:
69:93:15:ce:19:4c:da:bd:ab:46:00:62:f2:03:f9:
fb:3c:34:1d:84:42:f1:42:d2:2c:2e:bb:98:9b:96:
d2:8e:6a:2e:95:70:ed:c8:c6:7e:2b:11:e3:50:5b:
1f:d3:5c:4a:ea:7e:b9:a1:ba:37:b3:d1:04:8d:aa:
24:56:e0:7e:0d:4e:72:73:5c:5d:b2:81:af:c5:b8:
4b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B8:CE:4F:59:3E:D0:BB:81:CB:DB:E0:47:29:1B:C2:58:76:84:36
X509v3 Authority Key Identifier:
keyid:CB:10:24:3F:98:63:6F:AA:0F:B6:C5:AE:6B:AD:9B:0A:BA:D2:34:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxAkP5hjb6oPtsWua62bCrrSNDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:35:cc:e1:3e:b2:c3:60:5b:20:dc:10:80:fa:ef:24:ef:35:
e9:59:26:7e:bc:32:ad:f7:88:6e:49:af:53:92:bd:c5:7c:b4:
2f:24:4c:bf:c6:db:01:57:a6:a0:0b:29:3e:86:02:9d:d7:10:
88:52:77:ff:ea:28:22:19:17:ae:73:ad:b2:e8:0b:9d:22:ce:
ec:e1:81:44:d4:b2:8c:06:b4:67:08:21:81:da:83:d7:d6:38:
8b:05:fd:f9:5e:86:e2:18:4b:9c:4b:63:dd:f9:78:13:d2:ff:
01:d6:e2:29:dd:9e:ff:e5:4a:3f:95:9c:43:c2:ba:12:68:f2:
4f:dd:77:53:90:8f:b0:14:54:2e:ab:28:55:db:95:cc:e7:4a:
0c:7b:a3:2e:c0:81:e8:83:fc:73:73:77:94:28:8a:0a:46:b9:
51:3d:7b:82:fa:1b:1c:7e:e3:3f:10:0a:1c:18:85:af:78:fe:
5c:75:92:cf:a6:25:f1:f4:44:13:88:88:36:f3:21:cb:e6:9c:
ef:ed:0b:6d:d4:ab:f1:00:07:25:b4:a9:b1:a4:3d:20:3a:37:
d6:d6:b3:0e:9f:f2:44:69:ba:a7:cf:f7:21:5c:07:09:5e:d9:
cd:16:a0:50:6c:84:ee:8f:e6:0c:13:a2:ce:96:3f:15:af:bf:
36:cc:12:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:38:05 2025 by rpki-client