Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json)
Hash identifier: +CmtPFZqWTMMsGFZ5PkAgar22eKr+ooPEHBT1uUV5fo=
Subject key identifier: 1C:82:C0:A4:7A:1C:07:71:C5:A9:7A:BE:20:03:79:96:36:E5:8D:88
Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Certificate serial: 0197493153A6E68AC56C60770D8C5A902681
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 07:00:58 +0000
Manifest this update: Sat 07 Jun 2025 07:00:58 +0000
Manifest next update: Sun 08 Jun 2025 07:00:58 +0000
Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: nzdMDHACZjPdt//wTsMsyZkXXSsO5lHfGgU/z/FVjXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:53:a6:e6:8a:c5:6c:60:77:0d:8c:5a:90:26:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Validity
Not Before: Jun 7 07:00:58 2025 GMT
Not After : Jun 8 07:00:58 2025 GMT
Subject: CN=1c82c0a47a1c0771c5a97abe2003799636e58d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2e:e2:fa:b5:4b:4b:d9:b0:11:d4:91:11:d9:
62:43:b0:e8:35:8e:18:7d:79:a5:75:60:09:6b:64:
8e:a6:ce:b6:c9:62:68:4f:0a:fc:a0:c3:9a:aa:72:
72:6b:65:d9:3c:f0:d7:c4:e7:56:99:2c:ab:d9:03:
83:47:0d:ed:6c:a7:e6:ba:5b:a7:45:15:dd:b0:29:
2b:bf:a3:22:53:51:59:0c:49:0a:da:9a:15:09:a3:
d8:36:be:92:37:03:66:5a:e1:02:b1:84:75:0b:45:
b9:69:15:ad:87:e1:52:9d:31:7d:39:5b:c2:2b:c2:
d8:20:13:5f:c3:b5:0c:c1:9f:d7:cc:a9:cb:a6:b9:
c6:d6:75:64:0e:ec:45:68:53:0b:04:3b:ef:83:f0:
4b:f1:17:27:8f:9c:cb:0b:78:fc:4f:69:08:30:17:
de:85:85:f2:b0:53:7f:f2:fc:65:d9:e6:cb:70:6e:
fc:3d:71:15:35:56:22:6e:9b:f1:7a:73:ba:5c:2b:
66:90:7c:40:cf:72:35:54:47:c0:f8:b6:60:53:0b:
af:1c:1e:9c:48:3e:e3:61:0f:50:52:e5:32:22:ed:
bb:d9:3b:96:57:2d:07:3d:03:e0:37:c6:7f:c3:8d:
15:ef:f2:83:d7:aa:83:f8:ea:17:1d:16:c4:e2:54:
e5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:82:C0:A4:7A:1C:07:71:C5:A9:7A:BE:20:03:79:96:36:E5:8D:88
X509v3 Authority Key Identifier:
keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:9a:53:e6:20:dc:f8:78:5a:c0:c1:30:af:13:44:2b:5a:df:
2d:77:2a:76:5e:fb:2a:50:ae:12:9c:90:7a:92:c1:d1:59:45:
14:fc:f6:b9:f0:b6:47:75:14:a6:61:d3:4e:9e:62:d4:db:b9:
dd:f5:5b:81:da:19:02:26:43:ec:b1:87:06:65:62:27:e9:27:
3b:62:10:d0:b0:5f:2b:d1:ef:35:85:19:9d:fc:f7:cb:85:9e:
e8:65:3c:c4:bd:ad:d8:68:01:cd:7c:cc:0c:c5:75:45:e9:c1:
af:aa:b8:98:2f:4b:e9:ea:3d:bf:b8:04:51:b3:88:7a:22:53:
e9:ea:af:0d:20:20:70:f4:f8:3b:03:22:5e:b8:3e:fd:e7:b2:
0a:ce:5b:2b:0c:87:33:87:61:df:4b:26:68:90:cf:3e:6d:d0:
b9:2b:bb:9e:65:6e:89:c9:92:b1:51:1a:80:e3:fd:cc:cc:b2:
0d:0c:49:40:46:e3:20:27:bf:0d:30:df:be:2f:05:ee:db:83:
6b:bb:b8:f5:11:d7:a5:0a:b4:cb:ca:89:e8:ed:86:ba:75:8e:
0a:cc:66:87:2c:5f:b7:da:72:7b:38:1c:c2:d4:0b:f6:f5:eb:
58:78:f6:8c:37:cb:37:ed:dc:0c:ed:85:1a:da:47:54:bb:fa:
d8:b9:f7:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:04:56 2025 by rpki-client