Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.mft
File: y-lwmA1WXMdK2ylKpox7BvUTKJA.mft (raw, json)
Hash identifier: adUEaaQSbiX4Kp4A84T9qnGJF3/Qp0ivJPGhS+lo+kg=
Subject key identifier: 2A:71:00:97:4A:44:FC:BC:7B:BC:CB:14:2D:5F:D9:48:AC:05:91:CD
Authority key identifier: CB:E9:70:98:0D:56:5C:C7:4A:DB:29:4A:A6:8C:7B:06:F5:13:28:90
Certificate issuer: /CN=cbe970980d565cc74adb294aa68c7b06f5132890
Certificate serial: 019770ACB3BCCF11DB0C804CF34F45664CB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y-lwmA1WXMdK2ylKpox7BvUTKJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.mft
Manifest number: 089C
Signing time: Sat 14 Jun 2025 23:00:55 +0000
Manifest this update: Sat 14 Jun 2025 23:00:55 +0000
Manifest next update: Sun 15 Jun 2025 23:00:55 +0000
Files and hashes: 1: w3_nPHf7a07mKfqvAI84MjCWgdc.roa (hash: zETLR/82/cCeh7r1wtGHL+Bc+UNE2hnrIZTGYx5oKPQ=)
2: y-lwmA1WXMdK2ylKpox7BvUTKJA.crl (hash: ssJYEIwepXIll1J65jB38y1+hYUr+n0OKgn97/dJtWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y-lwmA1WXMdK2ylKpox7BvUTKJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:b3:bc:cf:11:db:0c:80:4c:f3:4f:45:66:4c:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbe970980d565cc74adb294aa68c7b06f5132890
Validity
Not Before: Jun 14 23:00:55 2025 GMT
Not After : Jun 15 23:00:55 2025 GMT
Subject: CN=2a7100974a44fcbc7bbccb142d5fd948ac0591cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ee:ba:a7:00:76:a2:dc:35:af:0f:25:77:6a:
fb:86:e8:9d:dd:ac:19:4d:74:da:b5:92:26:51:0a:
8c:c6:61:23:89:11:6a:79:d2:bf:da:e4:10:c2:17:
49:fc:49:37:42:85:48:07:de:c5:5a:ed:c4:fb:c5:
3e:42:c2:8e:8b:19:d7:44:51:3e:61:ed:b6:5e:1f:
39:14:a1:1b:f8:62:91:0a:29:18:95:26:f5:63:02:
a4:b8:3e:2a:74:5c:77:d4:a9:63:b8:6b:b8:35:37:
2a:50:fc:9a:f2:2e:22:86:fe:44:f6:da:de:00:ad:
88:19:98:ae:a0:49:3f:af:37:65:2f:ed:12:eb:3f:
49:f6:4c:a8:b6:79:05:74:0f:aa:14:dd:7f:ec:23:
ad:c8:0f:78:d0:b1:ef:ff:1c:2d:04:01:7e:26:0a:
a1:c7:92:78:70:13:0a:f2:88:de:de:bc:ac:69:89:
cb:ac:13:a7:32:96:51:ff:f6:88:82:4f:f4:df:05:
95:c5:55:94:80:b2:db:db:0b:df:be:94:1f:56:29:
be:a2:6d:33:99:9c:78:da:a0:90:9b:38:c1:8e:52:
c9:d4:cf:05:2a:f8:f1:e1:db:d4:7e:ee:b9:e3:c2:
20:d4:95:c0:bc:81:cf:dc:f8:26:37:58:8f:ec:13:
35:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:71:00:97:4A:44:FC:BC:7B:BC:CB:14:2D:5F:D9:48:AC:05:91:CD
X509v3 Authority Key Identifier:
keyid:CB:E9:70:98:0D:56:5C:C7:4A:DB:29:4A:A6:8C:7B:06:F5:13:28:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y-lwmA1WXMdK2ylKpox7BvUTKJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3dcf7b-1703-459f-ac0b-756a08a4adda/1/y-lwmA1WXMdK2ylKpox7BvUTKJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:de:01:a7:78:e7:e6:a8:fa:11:09:5e:aa:ff:9e:97:7b:20:
65:1d:3f:a2:12:bf:1a:02:39:86:43:42:70:f5:80:ab:3d:41:
a7:7f:91:82:2b:65:57:5a:17:ed:62:37:b1:8e:13:36:ae:92:
7d:8e:46:4b:f3:89:88:3b:8d:34:11:05:20:c6:a0:bf:8d:4b:
d6:64:5b:c6:2f:35:d1:4f:11:a5:cc:f5:f3:02:fd:80:28:77:
38:e9:61:27:e7:84:59:9c:a7:a7:4e:d8:d9:fb:dc:14:e1:da:
05:9a:98:d6:57:5b:aa:0f:a3:fb:6d:b0:87:d9:2d:8b:a6:64:
ec:18:87:ad:2c:e2:a2:d4:51:fc:98:38:9c:9e:c7:ad:a4:6b:
fb:f7:1f:8e:60:9f:8d:2a:9f:84:20:fb:7a:66:78:52:0b:31:
5e:5b:aa:f8:ba:1c:5c:1e:e6:94:4c:70:0d:41:6d:d2:7e:b9:
67:4e:bb:7c:40:65:71:c0:01:09:5e:b5:94:7a:4f:be:d0:52:
8d:fb:f8:64:c3:9d:1f:51:de:3c:c5:b2:3a:b1:a8:4c:51:9c:
76:4a:74:f6:92:ee:17:49:12:c0:90:bd:6b:51:7c:54:e3:12:
7c:05:1d:a2:38:b5:9c:6e:b7:c6:03:8e:1c:23:25:d0:69:19:
46:cc:45:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:06:41 2025 by rpki-client