Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: BG7/d1pVPIS8qARnT4bkfZnRRV02wsQmji6gOV2M7pI=
Subject key identifier: FD:52:06:F6:BF:87:59:C5:FF:FF:88:1E:19:A7:52:9A:47:8D:62:66
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 0197729AC53C5BFA3EBAC1D5AB85C6E00358
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 0374
Signing time: Sun 15 Jun 2025 08:00:35 +0000
Manifest this update: Sun 15 Jun 2025 08:00:35 +0000
Manifest next update: Mon 16 Jun 2025 08:00:35 +0000
Files and hashes: 1: OpWpWHElMT6Em0cb46EU4-eZHBM.roa (hash: UkmgnvSBtnTTqSpYqYCCjTjePdoSg2sK2f+rfkHw/HY=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: fP4213Xo/ue4yt0qbjYZ635NgRR+mbaektDmB5KzuEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:9a:c5:3c:5b:fa:3e:ba:c1:d5:ab:85:c6:e0:03:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Jun 15 08:00:35 2025 GMT
Not After : Jun 16 08:00:35 2025 GMT
Subject: CN=fd5206f6bf8759c5ffff881e19a7529a478d6266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7b:29:35:60:2c:f8:ae:29:07:c8:70:4e:8d:
15:ed:0e:64:bd:e8:f7:db:c7:5b:6e:bc:43:ed:c7:
66:ea:ba:8a:37:fc:d2:43:94:9b:74:2e:62:33:78:
01:9e:4d:0a:ee:95:bc:cd:61:e1:1c:ee:20:92:d3:
b5:43:89:bc:89:54:b5:b5:fb:bb:00:1a:83:fa:11:
af:a6:f3:04:62:b2:9e:fb:b1:7d:e8:f5:39:89:db:
d8:b4:0e:ce:2d:d4:75:84:ba:2f:0d:0f:26:29:2f:
8f:ea:36:c8:05:4e:0d:43:43:de:e1:95:c4:40:f9:
cd:55:db:1f:ef:5c:43:6f:7f:5c:fc:8e:8a:3e:35:
95:d5:a3:87:99:fd:47:02:48:30:22:e4:18:68:db:
a1:9f:ab:25:e2:d2:60:e4:ed:2e:2e:5e:8a:17:63:
6a:62:91:73:19:82:47:50:8d:f9:b9:8d:e1:87:a2:
49:c8:c2:32:81:76:73:33:a5:ba:c7:a2:32:e2:51:
6a:c7:2f:97:f5:95:4b:3c:6e:57:b8:08:92:03:03:
b3:7b:ab:89:b8:39:69:b1:97:a8:1b:a0:e5:2a:21:
c3:b7:c6:4c:e0:3f:70:48:ab:25:67:db:d2:5c:ee:
a0:97:11:b6:a0:96:02:82:56:4f:5c:d0:14:08:70:
a8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:52:06:F6:BF:87:59:C5:FF:FF:88:1E:19:A7:52:9A:47:8D:62:66
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:54:e0:1a:ef:72:8e:d7:26:5b:76:6b:c8:cf:d2:36:a8:56:
08:a1:4c:25:88:fc:90:0f:c2:d5:6c:1a:73:7f:12:9d:dd:23:
a8:38:bb:7c:ba:20:ac:e9:dc:93:ef:5d:88:63:37:8e:53:33:
3b:f1:33:6a:95:12:4d:8a:7d:c2:a7:64:3f:0e:a2:e0:6a:81:
58:c6:c5:f6:bf:36:fb:13:4c:59:41:68:76:bf:56:b6:31:4a:
22:8e:47:b1:8f:34:67:55:04:5e:43:57:5d:d4:20:f8:d1:36:
2d:23:3a:eb:44:eb:18:ba:ea:d8:39:1b:2a:73:98:e3:b8:e7:
3a:da:fd:e0:e9:01:42:f9:88:af:99:7e:65:0d:81:00:a5:cc:
e6:d7:f6:be:1b:d2:9a:6f:91:b3:91:b9:d7:56:4c:8b:2c:b2:
94:79:ce:14:52:17:5f:13:41:b2:bd:4a:59:7a:10:e8:66:d9:
52:18:09:ec:66:cc:5a:d0:e4:ea:91:dc:c2:18:1d:8a:cb:7f:
45:b2:12:bd:2b:6c:61:cf:80:ce:ec:ba:17:75:b8:64:f2:b8:
b0:90:c5:25:24:f8:d0:e9:c9:fe:83:70:50:a2:4c:66:66:32:
14:d6:c0:47:89:f5:7e:d2:90:c5:90:0f:70:9c:fd:7b:3d:00:
18:a5:38:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 11:45:17 2025 by rpki-client