Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: ylbaRtntsQo3NsIvcI/nfp+J8qZHstLor6k2yNq4krg=
Subject key identifier: FD:62:C3:FE:18:EF:D9:64:97:F8:AE:4D:AA:2D:09:4A:0C:36:29:7F
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 01976F6315370BB9E062DBB29470EF6EAE78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0AAF
Signing time: Sat 14 Jun 2025 17:00:53 +0000
Manifest this update: Sat 14 Jun 2025 17:00:53 +0000
Manifest next update: Sun 15 Jun 2025 17:00:53 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: z1jesgTHkNd18lYozvKmdUz7tbwLy2zwrE51BCD7MGA=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:63:15:37:0b:b9:e0:62:db:b2:94:70:ef:6e:ae:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Jun 14 17:00:53 2025 GMT
Not After : Jun 15 17:00:53 2025 GMT
Subject: CN=fd62c3fe18efd96497f8ae4daa2d094a0c36297f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bb:41:f4:85:99:92:46:06:e9:83:e2:f1:19:
c2:8a:3f:a3:62:9e:70:8b:70:ba:8f:4a:32:0e:f2:
55:7a:9f:c7:27:5b:5d:19:77:aa:bb:6d:2b:7e:66:
88:86:d6:d2:e0:5d:00:bd:56:d3:a0:91:dc:c3:f9:
35:58:e4:49:95:73:db:67:7d:88:c0:c1:6f:c8:2e:
4b:2f:9f:69:ee:12:32:2a:78:94:44:fe:bb:a9:d9:
d3:d7:a4:c0:1e:5b:67:3c:ed:0e:78:a9:9e:f6:d5:
b6:83:11:90:7b:5d:c8:ab:3b:8d:d0:af:35:1b:1b:
ff:4b:bd:24:04:8d:54:84:ab:b5:10:9f:22:14:00:
4e:32:5a:a3:9f:06:82:f9:cc:29:39:0d:bf:bd:9e:
44:78:80:15:c0:37:49:55:5c:83:7d:12:9e:cb:8a:
7a:df:74:f3:ed:1d:2e:06:19:91:ca:0a:52:d3:59:
99:20:e3:1e:b1:03:0b:58:af:e1:eb:7a:2c:2c:a6:
58:d5:32:cb:33:f3:26:d2:6e:9c:c3:3a:35:03:9f:
bb:e3:82:d6:e0:cf:15:2c:38:db:51:6a:d1:82:5d:
de:e8:ca:9e:c7:8a:4d:dd:69:4b:0d:0c:37:1f:64:
d7:0b:88:8b:89:04:1f:39:60:30:ff:2b:94:8b:d4:
fa:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:62:C3:FE:18:EF:D9:64:97:F8:AE:4D:AA:2D:09:4A:0C:36:29:7F
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:f0:51:ca:a3:52:da:75:33:05:3b:23:8c:b5:a5:fd:59:62:
65:40:76:cb:67:38:51:b2:0e:80:aa:d6:85:72:38:3f:6a:c0:
0b:1b:11:79:88:0c:53:0d:4c:79:1f:e6:9d:b2:95:a4:00:28:
1d:5b:8a:69:b8:a3:f4:e8:74:bc:cb:2f:f2:b0:8c:3c:01:65:
de:25:1a:7f:fc:0e:a2:12:0d:7b:74:22:f3:6b:e4:ba:9f:42:
ac:e0:b4:79:0a:08:b3:61:c2:3d:14:dd:7e:75:db:66:12:49:
c7:fc:d8:f4:24:ed:8b:39:8d:b8:39:e1:0a:af:04:02:0d:b4:
90:e0:86:f0:e9:8a:43:a0:4f:a5:a9:c8:5f:cf:4c:14:9b:1d:
df:cd:19:e1:d9:0a:0f:25:65:50:f8:6e:ea:11:b8:eb:13:13:
11:4a:2f:51:3f:4d:20:4a:b2:6c:92:88:56:7a:47:ee:16:5c:
0c:d1:b1:e5:83:f3:48:63:d2:a7:09:88:d9:74:05:6a:91:f4:
15:91:a0:8b:e0:10:28:c4:f6:7e:e1:ca:2d:07:70:30:a5:9e:
31:0d:17:60:0f:2c:b3:c0:40:51:23:5c:08:c3:ce:fb:27:de:
9a:10:72:c5:8e:c2:34:7d:a4:db:29:96:15:e0:85:5f:5a:14:
b3:51:10:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:51:03 2025 by rpki-client