Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
File: y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft (raw, json)
Hash identifier: jhe7ZMmZSNWtcfNrsNdLWArjgiYFiAnpVty7u/4jSmo=
Subject key identifier: 68:3C:B2:ED:89:DE:FD:71:63:1E:03:F5:90:A4:46:52:49:4A:30:11
Authority key identifier: CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1
Certificate issuer: /CN=cbb996ff055d6575e01f2e64d9a3b382834702d1
Certificate serial: 01974FA117B5A872CBA7D33CA06BAC513622
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
Manifest number: 0A5B
Signing time: Sun 08 Jun 2025 13:00:46 +0000
Manifest this update: Sun 08 Jun 2025 13:00:46 +0000
Manifest next update: Mon 09 Jun 2025 13:00:46 +0000
Files and hashes: 1: hUKLcWa9OHC5GxmVq6KR5PIsB6o.roa (hash: scGqiYOmrM2j/apqj1QvggRupECIf8XpZkFfLXcvrsc=)
2: y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl (hash: +jSFjJAcibhQOqkVBH1BTFJWTxuTyJWsAUj4phBeib0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 13:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:a1:17:b5:a8:72:cb:a7:d3:3c:a0:6b:ac:51:36:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb996ff055d6575e01f2e64d9a3b382834702d1
Validity
Not Before: Jun 8 13:00:46 2025 GMT
Not After : Jun 9 13:00:46 2025 GMT
Subject: CN=683cb2ed89defd71631e03f590a44652494a3011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8c:61:04:e8:c5:2d:38:f6:9b:57:4f:2b:8b:
54:62:cd:66:4f:6f:dd:e2:1a:d6:68:63:ba:5f:7e:
14:58:33:00:1d:75:02:ab:e4:d6:1c:5d:a6:17:c0:
2e:35:64:da:0c:16:c4:84:5c:4b:64:e2:ea:50:8a:
70:a3:ed:a8:7c:17:1d:1f:86:6f:54:e0:44:95:c9:
47:99:82:23:f4:b1:dc:ac:89:f5:27:c1:30:55:ed:
d7:7e:d9:95:8f:83:f2:0d:c0:c3:6c:75:5c:eb:8c:
88:bc:65:f4:d6:98:00:cb:c1:c3:a7:fa:33:e1:43:
02:17:36:24:d8:5b:5e:e2:91:f1:01:0f:99:cd:13:
26:0d:6d:11:0e:fd:cb:b2:00:ac:2a:5a:3a:ec:d6:
91:82:f1:c1:50:2a:92:6c:45:53:96:43:33:61:2c:
fd:03:5a:cc:4a:4f:9a:a8:8a:99:be:57:c6:73:ce:
c8:22:8d:0b:08:30:5e:f9:7e:cb:31:fe:89:04:9c:
5a:4d:d4:9c:85:23:7d:e1:ae:7c:f3:37:ad:38:f0:
10:c4:f2:6d:0f:af:9e:ef:35:66:7b:51:54:4e:05:
85:9e:dd:ce:de:12:11:9c:e8:d1:c5:97:bc:77:ef:
88:05:64:1f:58:d7:14:e6:4b:9b:52:56:67:f9:2e:
11:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3C:B2:ED:89:DE:FD:71:63:1E:03:F5:90:A4:46:52:49:4A:30:11
X509v3 Authority Key Identifier:
keyid:CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:97:43:88:2a:8f:e7:a8:39:a0:e8:6f:a8:de:97:1f:94:03:
bf:bd:58:a1:40:14:0c:7c:6f:3f:7b:00:20:97:2c:9c:ce:26:
8f:99:37:7c:4a:36:a7:e1:15:3c:9a:b2:32:a2:4f:38:68:6d:
77:5a:f4:9d:1d:a7:69:08:3b:5f:32:35:fb:75:0b:a4:cf:b5:
e4:3d:41:27:b8:82:66:b2:e3:d3:d4:16:a9:f8:92:60:5d:ad:
52:20:b6:14:54:e1:f9:a2:b8:81:68:43:6c:9d:bc:30:6a:5f:
5d:d3:50:86:29:ad:e4:66:f1:b3:d2:67:ed:0c:37:54:bd:d9:
50:2d:62:df:fa:38:e9:27:c0:90:53:31:23:90:08:48:5d:bf:
92:a1:96:1a:78:d7:73:b1:ac:54:b5:c7:b2:88:80:87:62:f2:
ef:9b:2b:e5:56:8a:9f:77:9a:2c:55:99:c0:91:a3:ab:01:72:
1a:f0:6f:6b:78:3a:f9:b0:8d:8a:dd:91:2c:e9:eb:3b:ef:4e:
12:da:89:90:55:8f:3a:71:2b:32:58:19:84:eb:ec:e6:d6:97:
1d:86:7d:e4:c4:61:99:05:39:1b:60:0f:ce:b5:3c:45:8c:1b:
fc:ab:39:9c:e9:1a:94:04:2b:b0:f8:dd:03:4b:dd:4b:03:21:
b9:2c:1c:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:29:55 2025 by rpki-client