Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
File: yABBYZAh42MorViY6Jl4cEa48Pk.mft (raw, json)
Hash identifier: p4Dh6I5RLVyOP+QUA1pebELAYvLMNkED76L7qWzLWEg=
Subject key identifier: 65:07:03:C3:0A:2A:C4:95:14:BA:8D:43:28:D4:B0:AE:CE:54:3D:8B
Authority key identifier: C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
Certificate issuer: /CN=c80041619021e36328ad5898e899787046b8f0f9
Certificate serial: 01974C698860BEA0766D49E35AD2C668092D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
Manifest number: 060D
Signing time: Sat 07 Jun 2025 22:01:13 +0000
Manifest this update: Sat 07 Jun 2025 22:01:13 +0000
Manifest next update: Sun 08 Jun 2025 22:01:13 +0000
Files and hashes: 1: Mok6_FqiiR5wYGEWZBTs8xeaVoQ.roa (hash: FbjTDRIPu8bBy/5KLYHNgVHrWy/v2L+xeWuUUm4Xmek=)
2: yABBYZAh42MorViY6Jl4cEa48Pk.crl (hash: bWjFQlB8QfJLB9TUoqfsApmtySAMeEYd/0Ubz2cfGGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:88:60:be:a0:76:6d:49:e3:5a:d2:c6:68:09:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80041619021e36328ad5898e899787046b8f0f9
Validity
Not Before: Jun 7 22:01:13 2025 GMT
Not After : Jun 8 22:01:13 2025 GMT
Subject: CN=650703c30a2ac49514ba8d4328d4b0aece543d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:49:db:57:7b:4d:8c:c0:ce:fe:e8:e2:52:5d:
53:a3:0d:ad:93:0f:30:c7:fa:bc:a8:f8:aa:5b:32:
f5:02:59:8b:6a:f1:6f:48:66:26:c8:22:f2:d8:16:
92:dd:8d:08:53:46:51:4d:ad:9d:05:56:21:f2:56:
35:2c:84:c5:9f:ab:dd:2b:29:a7:2a:71:fc:c3:2d:
3c:ed:6e:dc:73:a7:e1:4d:07:e3:04:41:42:c5:9d:
93:d3:7f:63:3c:d6:cb:a7:b3:24:51:aa:72:0c:74:
4e:fb:ed:75:7d:c2:02:97:72:90:82:38:25:91:ca:
61:c7:eb:87:f1:c9:c4:e2:df:80:5e:9c:09:11:b7:
69:62:d7:31:59:a3:66:e0:78:7f:81:3b:63:9f:84:
3f:04:c3:5a:30:36:7b:ec:89:f2:a6:fb:ce:7f:a2:
a2:47:30:07:fe:82:74:cf:98:1a:bf:40:b7:00:15:
01:b4:14:e3:78:50:c9:57:f1:c2:10:c6:cb:43:54:
e0:60:12:29:b9:60:f5:d9:dd:1f:e5:88:d5:75:e8:
df:80:57:8b:e2:a9:10:02:4a:25:27:a6:36:3e:24:
a5:50:9d:7e:f7:51:54:d3:66:79:5f:5a:7c:5d:19:
22:2b:f0:7e:0e:6a:59:28:b3:ef:60:41:fd:e5:a0:
e4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:07:03:C3:0A:2A:C4:95:14:BA:8D:43:28:D4:B0:AE:CE:54:3D:8B
X509v3 Authority Key Identifier:
keyid:C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:72:67:42:bf:fd:76:1e:fc:0c:db:c4:c5:db:ba:7a:5c:12:
a9:20:1b:5d:45:b4:09:83:41:12:dd:40:59:05:34:5d:f6:68:
aa:e7:13:4f:40:ad:d4:6d:3a:67:c7:f6:d8:4b:81:6f:da:8b:
0e:28:eb:49:d9:cb:b3:d6:08:a8:b4:23:f8:db:a9:9e:c0:cf:
14:d5:c5:c7:fc:ce:ae:1a:ba:e5:8b:c8:2b:24:21:c2:1e:9c:
91:4f:ca:e0:a1:be:11:30:20:f1:d5:ac:11:a0:9c:39:2a:41:
89:49:5b:f4:44:6d:df:75:a4:df:a2:21:42:56:12:e4:93:db:
c5:b4:9e:75:14:ea:20:93:f8:b5:c8:d0:ca:b2:42:3a:c9:1a:
04:cb:c1:5c:cb:12:c1:ed:61:f2:65:75:e7:33:64:c1:26:c5:
66:5c:d2:86:69:d1:57:9f:b3:41:8b:54:54:77:20:4d:29:d2:
85:f8:dc:8a:4c:48:5f:a9:dd:86:94:66:c3:16:c6:65:0a:1b:
50:ab:43:b3:37:4b:79:68:65:94:e0:01:cf:8d:d5:b7:92:57:
59:18:90:34:19:cf:30:d3:7a:a6:dd:cc:23:d9:66:19:ca:98:
99:10:f4:02:af:fc:f5:fe:3a:58:bb:93:5e:86:92:86:b6:03:
3a:61:cb:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:25:56 2025 by rpki-client