Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft
File: y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft (raw, json)
Hash identifier: /Cz1YzydWne0WvEH+AvH0yEqSd1Xg4tzA8qU580+Usc=
Subject key identifier: 9D:4E:8E:B5:64:BF:8E:6C:23:B5:46:E3:14:20:A9:2D:60:1D:B1:21
Authority key identifier: CB:54:27:FD:5D:20:58:5E:97:C2:F2:77:1D:48:09:BF:63:41:DA:A1
Certificate issuer: /CN=cb5427fd5d20585e97c2f2771d4809bf6341daa1
Certificate serial: 01974A43AF67D2A8D61FD52D910C339046D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft
Manifest number: 0685
Signing time: Sat 07 Jun 2025 12:00:39 +0000
Manifest this update: Sat 07 Jun 2025 12:00:39 +0000
Manifest next update: Sun 08 Jun 2025 12:00:39 +0000
Files and hashes: 1: Kukv8lguLlqo8syva8to6ZRKCQQ.roa (hash: 6TsYNWvLqQDFoSOz1kHCV3IHIsfRZkDxe8fDivBN+2k=)
2: y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.crl (hash: /MwhU7N4/H/k3LkiVuX2EFz+fBiM7+quA7pwON4kIOE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 12:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:af:67:d2:a8:d6:1f:d5:2d:91:0c:33:90:46:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb5427fd5d20585e97c2f2771d4809bf6341daa1
Validity
Not Before: Jun 7 12:00:39 2025 GMT
Not After : Jun 8 12:00:39 2025 GMT
Subject: CN=9d4e8eb564bf8e6c23b546e31420a92d601db121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:73:a2:ba:b5:39:e7:4b:99:61:64:90:d3:57:
92:1b:ba:c8:46:4f:d8:6e:e1:30:08:c4:85:15:f4:
e7:07:21:1f:36:86:92:d5:c5:11:d3:ee:b3:d0:03:
9d:23:e7:92:0d:da:2d:96:ae:3d:a6:c1:6e:60:21:
0a:53:47:7c:06:47:7a:de:15:7d:0a:56:5b:68:41:
a1:d0:9b:b6:c1:1f:f6:ba:7b:1b:da:ee:45:90:88:
8a:65:15:01:05:a3:43:e6:fc:bc:fd:33:c2:47:6c:
1f:b9:88:8e:de:f4:5d:ef:82:46:e5:93:c3:e5:69:
c5:89:2b:9a:2e:ff:4a:92:59:fd:e7:c5:a8:70:97:
ae:73:cc:f4:ea:b6:e2:ca:13:37:7a:27:f9:8a:68:
b2:d3:19:b5:00:96:1d:5e:e1:5a:b2:13:47:6e:bd:
bf:68:55:e1:20:ad:0c:93:91:ab:6b:ed:4d:f6:77:
e7:4e:aa:d7:79:71:ec:1b:83:bb:4b:6c:c1:d2:fd:
b6:8c:cf:e1:07:2e:a0:34:54:98:39:4b:b2:7b:75:
76:10:aa:d6:21:4d:dd:3f:f2:ff:b0:62:e9:e6:52:
e8:5f:90:a6:5a:81:23:c7:0f:83:90:f5:d5:98:9a:
8b:60:c7:74:82:39:59:1a:c2:f4:6c:10:58:af:be:
8f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:4E:8E:B5:64:BF:8E:6C:23:B5:46:E3:14:20:A9:2D:60:1D:B1:21
X509v3 Authority Key Identifier:
keyid:CB:54:27:FD:5D:20:58:5E:97:C2:F2:77:1D:48:09:BF:63:41:DA:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:79:f0:82:46:35:a5:60:ce:71:84:c6:8f:4c:e5:0e:66:b1:
e1:20:20:0a:f7:c0:d4:30:39:80:8c:cb:35:d5:94:54:ce:78:
22:bf:1f:9e:cf:d5:b4:23:4c:eb:7c:25:ca:0c:4f:6a:d7:b4:
da:65:b1:15:06:2a:05:05:9a:4c:3e:61:5b:f7:5a:ca:12:ca:
64:62:3c:78:93:e3:45:0d:ce:0d:b6:a1:d1:b7:c7:92:a6:41:
62:1b:01:25:e4:25:1e:35:3b:f6:fb:31:bc:9a:49:4b:54:9f:
8c:cd:18:ea:24:a5:f5:28:bb:e8:74:03:0c:c9:9e:c8:eb:48:
58:8c:4a:a3:28:3f:c1:ba:f8:7b:1c:38:b0:79:a8:67:7c:0d:
f9:52:51:8c:8b:5a:c0:66:eb:8d:a0:d8:88:f0:0b:30:20:1c:
57:c3:93:1b:50:a5:e1:ee:64:a7:81:83:64:b6:51:f4:8f:8b:
7d:8b:45:5b:ef:b1:c8:de:9f:c9:8b:77:a7:c4:bd:9a:28:05:
ca:c0:b9:54:e2:30:8d:9e:de:9b:c8:25:10:9d:85:32:35:5c:
fc:57:f1:4d:d0:7f:80:7f:cd:f4:25:8b:00:6e:64:14:ca:12:
a4:c7:85:a9:07:a5:82:16:11:ef:c0:e6:dc:a9:d1:a5:e8:9a:
6b:81:93:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:05:15 2025 by rpki-client