Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
File: ygHfSTk2pi4uyamAWo-ja4M1vVA.mft (raw, json)
Hash identifier: SmVGWe55fVDnRaXLsp6ckBV2ALZbJPouv/mVL8rMJUw=
Subject key identifier: EB:8A:47:83:9B:4F:19:97:F4:BD:F1:9F:41:25:C9:94:86:96:10:74
Authority key identifier: CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
Certificate issuer: /CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Certificate serial: 01976C61B96E1CBDA55C54C613D8798ADDFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
Manifest number: 071C
Signing time: Sat 14 Jun 2025 03:00:33 +0000
Manifest this update: Sat 14 Jun 2025 03:00:33 +0000
Manifest next update: Sun 15 Jun 2025 03:00:33 +0000
Files and hashes: 1: VJejrkbQcGz8ZtoJmN8x1bw4bkc.roa (hash: fTHkpU+4ZrTAo/sH1aFITBDz8Ocuvc9wBymMbgUJLms=)
2: ygHfSTk2pi4uyamAWo-ja4M1vVA.crl (hash: Fee7rKxM61LP6n0C0Ogtr6yYBIld9ejHeiLTwaKhjaE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:b9:6e:1c:bd:a5:5c:54:c6:13:d8:79:8a:dd:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Validity
Not Before: Jun 14 03:00:33 2025 GMT
Not After : Jun 15 03:00:33 2025 GMT
Subject: CN=eb8a47839b4f1997f4bdf19f4125c99486961074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ce:d6:59:79:b9:f2:84:01:01:79:28:6b:f1:
d8:7e:f0:b4:15:4f:c8:c4:df:2f:5f:56:f9:4e:63:
18:9a:18:ef:d7:1c:27:a0:78:9e:29:95:53:eb:bb:
a2:a7:20:9f:ac:1c:1b:6b:4e:d0:dd:d7:a1:65:1b:
6a:9a:b6:10:d5:44:55:4e:6d:b5:fb:ed:51:88:b2:
c4:a5:e1:ad:1c:de:90:41:ff:fc:b3:b8:c3:02:ef:
fb:4c:76:50:91:14:52:ec:a1:2d:e2:f9:2c:4c:25:
a7:b9:40:1b:7f:91:f0:eb:c0:69:4a:1d:e7:ab:da:
35:31:67:a8:6d:e9:ef:06:94:e6:88:87:3b:2d:d0:
e4:f0:e5:0b:b4:f5:84:67:b0:42:56:8d:7c:f9:e8:
f9:db:4f:64:44:66:e2:f9:09:8d:ba:85:63:d7:ac:
65:2a:23:86:7e:2a:31:2d:58:7c:d4:3e:50:23:9d:
07:d5:f2:a6:9d:58:53:93:40:1c:04:30:ef:5b:25:
4a:1e:df:63:b5:1b:cc:d6:08:09:27:2e:f6:71:cf:
3c:31:b3:aa:61:01:b8:93:27:74:32:fc:15:0a:59:
94:9a:ca:d4:b4:16:df:b5:46:36:b3:da:ad:ab:c4:
be:7a:76:48:62:3c:29:c5:21:22:b0:cc:18:07:d5:
fa:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:8A:47:83:9B:4F:19:97:F4:BD:F1:9F:41:25:C9:94:86:96:10:74
X509v3 Authority Key Identifier:
keyid:CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:c5:ae:79:be:c8:a5:06:39:63:81:a0:63:e3:b1:b7:c2:5f:
ef:d6:5b:ae:37:e9:19:ea:85:d5:44:b7:21:97:e5:a3:94:18:
ba:6b:23:37:92:e1:e6:4e:f0:ec:f5:58:87:a3:bb:e4:ca:2c:
1b:ce:f5:92:03:cd:49:de:65:9c:90:e3:2f:85:c3:3e:cd:6f:
c2:42:4f:40:30:3b:61:39:e6:83:dd:f6:7a:12:64:84:54:16:
c8:4a:46:31:7c:67:21:be:1b:86:44:09:ec:e7:67:33:9c:1f:
80:0e:24:0c:b1:11:bb:2a:89:e7:cc:04:30:17:61:f6:0b:39:
53:ad:00:f9:be:a1:f6:fa:e8:0c:65:7d:07:a8:56:74:c5:df:
02:33:63:42:d3:9b:5c:57:95:e4:eb:e7:39:cb:41:d4:54:08:
b2:25:b3:8b:87:9e:40:b6:c0:67:a4:18:7d:fe:b6:d6:16:26:
54:8f:fb:6a:2e:1d:47:d8:b1:aa:8c:cb:b5:00:fb:d9:37:2d:
48:44:31:52:6d:45:28:0b:87:91:80:59:d8:41:83:01:21:db:
8b:c2:2c:3a:60:8c:eb:27:3b:bc:d4:cd:36:6b:65:b3:0a:ec:
d0:b6:5b:6e:b3:3a:73:59:66:19:a9:8b:79:0c:3c:b4:a9:3d:
32:1a:23:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 04:38:57 2025 by rpki-client