Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json)
Hash identifier: hxCGnTIcBpVpYO0XwcvMx4e9+tqR6eGsADufzrO20LQ=
Subject key identifier: 04:49:13:3D:11:E4:84:12:0E:5B:59:0F:D1:08:45:0F:51:17:30:81
Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Certificate serial: 01974AE89FE8949268BA4C1591C877A3497B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
Manifest number: 0135
Signing time: Sat 07 Jun 2025 15:00:48 +0000
Manifest this update: Sat 07 Jun 2025 15:00:48 +0000
Manifest next update: Sun 08 Jun 2025 15:00:48 +0000
Files and hashes: 1: knggMszGXslbbJ2_Oh2Jaifz1gc.roa (hash: 1NY+pqUYlKwDvhTu3JTqY8SDs7jlakZ17fJjnTdwI9Y=)
2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: 2dtrenHsy7J3n/5ahGAsS/vjA2xlw5Rishs4EK2qXxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:9f:e8:94:92:68:ba:4c:15:91:c8:77:a3:49:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Validity
Not Before: Jun 7 15:00:48 2025 GMT
Not After : Jun 8 15:00:48 2025 GMT
Subject: CN=0449133d11e484120e5b590fd108450f51173081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:60:04:53:34:e7:da:3e:00:f8:50:67:2c:71:
d3:2b:5b:79:4f:b4:0a:a7:86:76:5f:0d:ca:f3:09:
f4:aa:76:7e:3d:50:23:42:5a:10:79:bb:f3:b8:c1:
be:6d:c0:d3:3c:69:61:9b:fb:fb:3b:46:87:7d:03:
ff:00:98:72:84:09:d0:7c:59:86:c9:7b:03:df:28:
31:e6:d1:b0:09:58:d0:9e:62:28:3b:37:5c:db:37:
8c:ea:18:78:59:ae:3d:ea:f5:64:a8:b8:35:36:82:
e1:22:ff:44:4a:36:50:b9:2c:b9:96:d7:50:6e:e1:
08:29:b4:ec:a6:e4:7e:99:87:f5:e1:34:4a:cf:e9:
40:7d:7a:09:b4:ea:48:b7:ef:20:41:74:34:9c:a1:
a4:2c:59:88:f7:cb:e9:a8:45:db:d9:db:82:30:c2:
98:33:74:54:e6:fe:04:c0:cb:3c:11:a8:f8:da:5d:
07:91:04:15:b3:83:49:71:a3:0e:95:da:d4:7f:e4:
8d:9f:94:e4:88:82:5d:73:1a:54:f4:e3:85:13:70:
0f:95:96:75:47:6a:95:74:78:e3:45:dd:75:49:10:
5c:9d:95:52:e9:fe:98:e3:21:b4:c4:08:fb:29:2e:
23:07:63:15:9c:c8:cc:c7:30:1f:54:f4:ad:70:89:
53:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:49:13:3D:11:E4:84:12:0E:5B:59:0F:D1:08:45:0F:51:17:30:81
X509v3 Authority Key Identifier:
keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:14:d4:83:9f:a7:60:e8:cc:18:bb:e6:c1:00:41:48:74:21:
c3:7f:55:0d:ed:d0:77:f7:70:18:a3:6a:5f:63:06:f3:d0:99:
82:ee:30:20:66:5d:8d:f3:0e:d9:4b:ee:e5:72:69:95:89:ca:
a6:15:51:e7:69:37:4a:cd:17:cc:4f:6f:37:1a:17:e7:b6:11:
f8:1f:14:64:bc:30:90:16:f7:e4:10:c2:67:71:e5:1c:01:e0:
b9:bf:2c:d1:c7:7a:2a:31:e2:44:34:2e:58:fb:22:b9:53:c4:
95:fa:de:b4:9f:db:de:61:94:a9:3d:a8:ab:32:d5:3a:97:b9:
d1:fc:1c:bf:6d:b5:26:02:fc:95:46:24:b4:3f:67:ec:8c:41:
07:63:86:e0:76:6e:a4:28:8e:2f:46:a5:86:63:d7:bc:6d:93:
4d:5e:23:06:d5:81:b2:83:72:61:11:3c:55:a1:d6:84:c0:7c:
7e:07:15:e4:8e:e9:8f:63:f2:7d:ae:fd:3c:b3:8d:b6:1c:f3:
90:91:9d:25:31:99:4b:0c:73:39:ab:52:5e:c6:36:81:f3:dd:
a5:26:ad:71:17:ee:68:65:86:64:c3:76:49:b2:49:49:a0:af:
a0:c4:d0:ed:20:73:a4:59:83:96:0f:c8:c1:44:ef:ec:20:06:
b8:15:c4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:32:49 2025 by rpki-client