Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
File: Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft (raw, json)
Hash identifier: Cs4433WyWUx/Z7G5hF+28sIvUWxptcwIiLWfz2HP7SQ=
Subject key identifier: 17:E6:9E:FB:12:7C:36:8B:33:60:FF:06:6C:23:E3:F9:A6:14:FE:3F
Authority key identifier: 63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
Certificate issuer: /CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Certificate serial: 019746672E20538B0025F78C887767CDA427
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
Manifest number: 0F96
Signing time: Fri 06 Jun 2025 18:00:56 +0000
Manifest this update: Fri 06 Jun 2025 18:00:56 +0000
Manifest next update: Sat 07 Jun 2025 18:00:56 +0000
Files and hashes: 1: YFIa0scc_xVUT5FKi7LKvASoEWc.roa (hash: V1CwEQLm9iXZGzptcaHc4LFmcOryBT2Kfmx1HSv4RTc=)
2: Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl (hash: bBO8i5ASDgX9ptGrKiIWeF4RH8oXjCvzwTVcbgpURRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:2e:20:53:8b:00:25:f7:8c:88:77:67:cd:a4:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Validity
Not Before: Jun 6 18:00:56 2025 GMT
Not After : Jun 7 18:00:56 2025 GMT
Subject: CN=17e69efb127c368b3360ff066c23e3f9a614fe3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c1:58:6a:96:d8:b2:ba:7e:aa:0e:8c:40:d8:
ac:86:d7:56:c6:d4:5e:e8:f6:b1:e9:df:c7:1c:79:
45:b0:9b:32:35:55:1c:2a:27:8e:29:f4:94:3c:a1:
a3:78:31:93:a4:d1:a0:c2:e5:54:a7:53:c5:e9:8b:
03:cd:1d:7d:73:de:38:75:bd:96:b9:58:59:5d:3b:
9f:8b:88:16:21:de:a1:67:a3:5d:cf:0a:0b:ed:e4:
20:ea:46:5e:07:40:56:0a:f8:3d:b4:13:fa:d4:65:
d3:2e:cb:26:77:5d:da:dc:ad:e4:54:ff:43:ba:83:
d4:3e:51:ad:b5:f5:a3:02:aa:2f:df:b3:1a:cd:e0:
bb:3f:28:31:0b:79:5c:3d:da:30:19:64:83:39:b0:
48:6a:68:8c:6a:42:23:a2:85:81:75:37:a0:27:ac:
95:ce:a5:38:37:63:25:6d:34:ca:08:83:53:0c:15:
7e:60:f5:4f:ff:3f:8f:0c:40:30:c6:28:21:60:2d:
95:39:6a:f5:22:6e:23:b2:2a:b5:52:ca:24:54:c6:
ac:d4:8c:d6:f8:0d:86:cf:d3:33:72:55:5f:18:09:
dd:e7:7e:45:0b:6c:37:ec:78:a0:58:f1:04:d7:ea:
42:f3:f6:9f:58:cd:92:f9:e6:66:ff:51:66:39:a2:
bc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E6:9E:FB:12:7C:36:8B:33:60:FF:06:6C:23:E3:F9:A6:14:FE:3F
X509v3 Authority Key Identifier:
keyid:63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:2a:8f:c9:0f:36:cb:5a:e1:06:0e:75:b1:94:be:d8:8e:fe:
ca:8f:04:20:c5:8f:f4:91:92:b2:fa:03:5c:7b:66:96:5a:c8:
af:1e:60:47:7d:d3:a5:25:32:12:25:14:a1:c1:6c:4e:d1:f4:
cd:f7:95:5c:30:bf:1f:f1:85:6e:79:7f:9b:08:ec:c1:80:1d:
94:dc:33:ee:cc:68:b2:21:27:da:93:4d:e5:d2:f3:85:05:cc:
f3:f9:e5:69:5f:c4:01:cb:e7:0c:f3:39:22:ff:94:34:52:f9:
0b:cb:db:19:11:5c:a7:f9:86:31:88:89:c3:20:d0:ed:84:35:
5c:73:cd:48:13:a9:5e:62:1c:68:cc:41:86:e8:f5:e7:95:68:
84:fd:87:8d:6f:c7:34:c2:88:dc:f1:d2:e5:1a:c1:72:f4:a5:
89:96:02:9c:ab:2d:f2:b2:b5:e4:5b:78:75:fe:41:34:40:a7:
75:8a:54:55:71:64:2f:20:de:17:66:d3:d4:cf:c6:96:41:ee:
f3:05:c3:ae:9d:ce:60:2f:ec:b5:40:b5:9f:6b:85:47:6a:17:
af:62:fc:e3:b0:46:50:99:af:b7:a1:b2:43:df:36:84:73:a2:
02:f0:13:3a:4f:14:1c:d1:27:90:72:2d:09:2d:6b:b0:08:b7:
6f:05:ca:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:33:07 2025 by rpki-client