Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
File: y9lerW0qHa8u9oestMKedgdrKAk.mft (raw, json)
Hash identifier: gs3HnUCBGF386j9Yp3njYVQL4tthRXzA4MOJ3qPLXmU=
Subject key identifier: 1A:D3:8D:4F:50:6A:9C:F2:A6:CD:98:6A:A9:3D:B8:51:CE:AC:C2:FD
Authority key identifier: CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
Certificate issuer: /CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Certificate serial: 01974B8D60849EB5E6E0E07F403C093E1A5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
Manifest number: 095F
Signing time: Sat 07 Jun 2025 18:00:45 +0000
Manifest this update: Sat 07 Jun 2025 18:00:45 +0000
Manifest next update: Sun 08 Jun 2025 18:00:45 +0000
Files and hashes: 1: dLJ0i3DKxKOgLSZU6DT_1_-wzDs.roa (hash: R+7BGQyfLFShlywgi4Re33H2XJ0XnH/YSJRVXJB4EDE=)
2: y9lerW0qHa8u9oestMKedgdrKAk.crl (hash: xz/LXIsVG3WTkdQkjYrcveCxuHEXjP3cgyun4eB01Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:60:84:9e:b5:e6:e0:e0:7f:40:3c:09:3e:1a:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Validity
Not Before: Jun 7 18:00:45 2025 GMT
Not After : Jun 8 18:00:45 2025 GMT
Subject: CN=1ad38d4f506a9cf2a6cd986aa93db851ceacc2fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:af:a9:0d:50:03:3d:90:a6:f1:51:b7:06:f2:
1e:44:a9:f9:ec:19:70:bd:73:f1:91:c5:74:a5:93:
6b:dd:b7:65:ff:c0:44:dd:b9:cc:26:b1:ee:50:96:
68:be:11:2a:6a:de:a2:73:03:00:77:9c:65:b2:62:
b9:22:24:25:fd:60:72:59:76:83:eb:64:99:c5:d5:
27:77:f5:d7:de:55:94:cd:f4:54:8f:30:8a:f8:d1:
54:25:04:94:59:1c:81:46:9d:2a:42:eb:ce:1e:3d:
7f:7b:21:73:78:d6:84:14:1b:59:c9:d3:11:f8:d1:
9e:3a:54:92:6a:98:3e:6f:4c:eb:76:25:59:2f:f8:
cc:3c:46:fd:25:fc:48:fc:f2:08:11:da:2e:2b:7d:
69:50:aa:b1:6b:44:cc:e6:3c:ab:dc:de:dc:ca:84:
94:69:76:a4:41:62:b7:fe:24:f5:07:c2:7a:cb:cb:
68:d8:c3:10:27:67:96:27:a0:75:0b:85:ea:d9:fe:
6f:88:54:eb:b1:3c:4b:b5:b5:10:d9:db:4f:9f:51:
18:26:64:9b:8e:8b:ba:40:1b:94:84:e4:95:48:bf:
b8:6d:64:3d:3c:3f:b8:5b:f5:ab:a6:a7:ea:53:19:
62:40:85:b9:0e:82:d7:56:dd:8c:a8:a6:62:49:50:
fc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D3:8D:4F:50:6A:9C:F2:A6:CD:98:6A:A9:3D:B8:51:CE:AC:C2:FD
X509v3 Authority Key Identifier:
keyid:CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:5f:6f:22:5c:80:96:38:da:25:0f:1b:ff:42:fd:ac:f1:d5:
eb:d1:30:33:75:b9:36:e2:9d:bf:c7:69:68:10:1b:4a:19:90:
85:21:a6:34:a5:29:63:ea:51:ba:f5:75:20:76:1a:45:2b:ec:
b4:55:23:55:a0:c5:30:fd:d6:b9:53:d0:ef:14:a6:d0:78:e6:
aa:39:3c:cc:ca:2f:0b:24:f7:0d:2f:d2:3b:33:27:64:c8:5f:
84:2a:b4:3a:be:1f:0f:0b:0e:d7:7f:1d:95:26:b0:9a:88:a4:
32:7c:e2:b1:9b:97:12:9b:5d:fd:0c:cd:2d:64:76:11:33:78:
ea:1b:0a:0e:aa:d0:20:72:b9:bb:88:17:4c:b3:c5:d9:98:cc:
f4:b3:57:58:f6:47:34:5d:85:3d:0c:ea:14:1c:18:e7:71:3c:
48:fa:cd:d0:a1:f3:9f:51:9e:20:7a:7f:80:b2:e1:26:6a:ef:
83:1f:4e:20:9f:27:57:b2:5b:f1:72:7f:98:f1:bf:9c:6a:a2:
b3:a3:c0:f6:54:ef:b7:28:36:01:88:28:21:43:38:e9:ad:79:
a3:c5:7e:17:06:42:75:06:19:1c:de:2b:00:95:6e:27:79:21:
36:1f:35:df:48:05:65:ed:d1:10:8b:18:32:0b:4d:68:8e:96:
d4:33:fb:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:16:54 2025 by rpki-client