Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
File: Y42aUATFktCTzImw2QdS4nnVGFQ.mft (raw, json)
Hash identifier: Dlgbd9a9i4Ne/A0RC1iIQwgFTEuPyGPxmJRc47rtAYU=
Subject key identifier: B0:11:E1:C7:4A:36:EF:17:39:76:36:2A:1E:CB:57:6C:AE:34:EA:E9
Authority key identifier: 63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
Certificate issuer: /CN=638d9a5004c592d093cc89b0d90752e279d51854
Certificate serial: 01976F99B2E5AA0F24CD9DF29825473A65D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 18:00:33 +0000
Manifest this update: Sat 14 Jun 2025 18:00:33 +0000
Manifest next update: Sun 15 Jun 2025 18:00:33 +0000
Files and hashes: 1: 5t5Dcx5tNkWQ_sy57yYX9uF0BSc.roa (hash: PzSrKv8Rw8leyPQ1z/odwxbCskApuD1oeaEEXKXPsNc=)
2: Y42aUATFktCTzImw2QdS4nnVGFQ.crl (hash: OGhF1n5Ba3WTI5UDsfD3VE7U7Z19utsioVpVglNG6Z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:99:b2:e5:aa:0f:24:cd:9d:f2:98:25:47:3a:65:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638d9a5004c592d093cc89b0d90752e279d51854
Validity
Not Before: Jun 14 18:00:33 2025 GMT
Not After : Jun 15 18:00:33 2025 GMT
Subject: CN=b011e1c74a36ef173976362a1ecb576cae34eae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7c:23:8c:ce:ac:a8:30:93:65:95:72:c5:7b:
c7:eb:81:5e:05:54:31:ef:76:94:b1:13:05:9c:24:
df:dd:46:5e:70:ad:c6:4e:a6:ec:ca:de:5a:90:30:
ad:1e:f8:68:58:08:b0:53:c0:a6:ba:d7:54:8b:8a:
d8:84:d0:ec:00:44:e9:e0:60:14:07:55:ff:9b:7c:
f4:07:d3:5c:9c:e6:fe:7e:7b:3d:e0:f5:a0:02:85:
9c:d0:aa:ab:26:fc:66:cc:de:9f:80:ad:c9:eb:58:
06:c6:4f:0a:c4:36:6e:ca:14:17:5b:e9:9b:c0:11:
0b:14:bc:50:21:32:42:28:9d:6f:14:e0:b2:de:5c:
63:c0:96:cf:df:dd:3a:79:6e:21:50:2e:b8:85:52:
56:4b:45:aa:a2:ff:a1:74:d3:e0:b8:41:b6:f3:03:
ba:aa:ef:dc:f1:d6:ad:07:12:b5:35:7f:0b:8e:a8:
e8:87:74:0b:f0:d6:62:b0:89:2f:b7:f3:51:c6:66:
52:75:70:79:a5:80:04:81:c7:f8:ea:29:51:98:89:
57:06:fa:22:ac:62:bb:e9:9f:56:38:48:e9:ae:1b:
6c:50:31:53:4c:3f:24:b1:d3:0a:22:5f:39:f9:b4:
31:53:67:33:d6:fa:bd:62:f3:4e:ba:d3:79:7d:2c:
e6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:11:E1:C7:4A:36:EF:17:39:76:36:2A:1E:CB:57:6C:AE:34:EA:E9
X509v3 Authority Key Identifier:
keyid:63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:bf:12:00:aa:c5:dc:7d:1e:1c:fe:4a:85:c8:4e:96:14:74:
6f:39:73:c6:00:fb:92:15:e3:c0:d8:02:3b:b4:e4:f3:cd:99:
ed:ec:41:91:70:18:ff:da:e3:f3:06:5e:42:0b:84:08:1a:47:
64:64:2e:b8:75:fa:e9:ea:f0:3e:b7:cc:3c:c7:79:a9:73:83:
3f:02:a7:10:28:90:34:41:f5:d0:c1:ba:96:4e:67:b2:67:6c:
2e:7c:15:f4:3c:a3:48:16:06:0a:29:4e:53:37:28:0c:e8:c7:
fe:fe:de:2a:78:7e:f4:bc:16:25:2e:9b:d9:53:f8:fc:d8:0b:
67:7a:1c:c0:ff:ea:90:48:e0:bd:1f:36:09:64:52:da:5a:4f:
76:2e:b1:40:3f:cd:ba:06:8d:37:59:d7:b4:c2:ba:73:7a:c7:
49:2a:6b:cf:5e:a4:93:85:4e:79:3c:5a:4c:e8:1b:73:16:33:
3c:2c:ff:01:60:81:77:28:9d:49:ad:d6:b7:06:1d:8f:1c:c9:
a2:3c:78:68:ab:a3:71:3a:de:aa:3e:d3:88:37:fd:42:8c:2b:
af:4e:01:90:41:48:a7:b7:81:f0:f1:f0:44:c3:8f:22:c3:cc:
43:d5:fd:7a:23:f3:cd:5b:0c:c9:f5:fe:52:7c:b4:bc:72:ac:
43:8a:f0:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 21:29:13 2025 by rpki-client