Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
File: YAG5U8a-H5GDHWilwBFcIODNf5o.mft (raw, json)
Hash identifier: 11teQngNfChOtO9Zx+IJ7R6UL6+TvvtUaRl/6j0Pv6g=
Subject key identifier: DE:91:CE:BA:51:38:D5:96:2B:F1:EC:7D:21:8B:F2:DE:7E:F8:A3:BC
Authority key identifier: 60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
Certificate issuer: /CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Certificate serial: 01977075D4EFDF2D65267CA3B0E70847B489
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
Manifest number: 0574
Signing time: Sat 14 Jun 2025 22:00:59 +0000
Manifest this update: Sat 14 Jun 2025 22:00:59 +0000
Manifest next update: Sun 15 Jun 2025 22:00:59 +0000
Files and hashes: 1: QQlxlfhA9BwLpxAQMkShfHqNuQ8.roa (hash: J1jtN5BQZROl/8dEYO5qeCL3b90fBYd6l0TNzemkVxs=)
2: YAG5U8a-H5GDHWilwBFcIODNf5o.crl (hash: qTTobvd+dzOids2lTA6VKCxAupDD/QOXi3FoH44Ycrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:d4:ef:df:2d:65:26:7c:a3:b0:e7:08:47:b4:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Validity
Not Before: Jun 14 22:00:59 2025 GMT
Not After : Jun 15 22:00:59 2025 GMT
Subject: CN=de91ceba5138d5962bf1ec7d218bf2de7ef8a3bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:48:c0:d0:12:26:7f:6b:0c:be:3e:19:90:04:
40:4e:bf:f3:02:fd:89:ac:cb:1f:61:0b:df:00:09:
05:01:0b:a8:2f:63:98:77:b2:a8:f6:1a:f0:59:28:
87:be:4f:41:3e:1e:43:01:f2:18:f9:ff:64:ef:aa:
05:3c:90:9d:3d:5f:82:4d:ba:85:dc:5e:dd:9b:7e:
c6:74:e8:5a:a7:43:63:eb:61:39:fa:f8:f2:ca:9d:
a6:fd:3f:66:00:44:e1:2f:9f:05:cc:6b:10:db:0d:
d8:9a:67:71:5e:8c:61:15:a5:8f:32:56:99:7b:a6:
43:d4:a1:d7:ca:ea:2f:f1:ac:c4:9c:ad:eb:9e:da:
d5:30:5d:d7:17:e4:a4:93:5e:ce:82:89:53:97:68:
a3:22:bf:7c:09:8e:11:9f:ea:1d:ef:fd:f5:17:c8:
4b:ac:e3:d3:00:ae:cb:d0:2b:f1:d8:46:a8:d0:d7:
07:76:6a:92:2e:ff:7f:0f:4c:bb:c8:34:65:80:ba:
eb:8f:01:df:7b:c4:2e:2f:40:40:71:64:02:ec:cb:
36:01:44:53:2b:a3:fa:e8:34:89:d8:ed:e1:28:54:
c1:3f:7c:b3:38:4a:c8:af:a8:af:5f:fb:44:d1:ed:
a3:88:cd:ab:80:bd:6e:27:0b:0d:9c:28:a1:f7:9c:
8e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:91:CE:BA:51:38:D5:96:2B:F1:EC:7D:21:8B:F2:DE:7E:F8:A3:BC
X509v3 Authority Key Identifier:
keyid:60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:f3:bc:d4:22:f9:f5:44:e7:7d:29:6a:5c:bd:e5:3b:6d:63:
47:94:ff:dc:19:fd:cc:26:78:bb:22:91:3d:74:3e:59:1d:d1:
3d:52:ae:f2:ce:25:98:1c:11:fe:0b:f2:c1:5a:5e:aa:a9:89:
8b:e5:91:03:b3:20:cf:17:93:37:7b:0f:30:95:1c:9e:f1:df:
99:ac:89:18:de:b2:cd:41:fb:27:71:3d:79:9e:5f:55:9a:18:
ba:47:64:c1:48:54:88:9b:ea:f4:d3:cf:e6:61:9c:e4:85:34:
17:c0:bb:5f:b6:32:04:fa:45:df:1f:2b:f6:51:ef:61:36:8d:
a7:8d:31:90:ce:48:ac:5c:6a:96:45:c0:b9:2d:fb:a3:bc:7a:
96:34:56:eb:6b:15:eb:fd:ab:2f:03:eb:65:42:22:cd:ea:d3:
08:32:21:4b:97:bf:58:50:0a:59:91:a1:09:7b:dd:43:e8:f3:
07:37:fc:cd:32:be:c2:22:3a:74:49:28:34:4b:e0:5a:1a:2c:
bf:62:a1:21:91:72:3b:72:fa:01:f8:86:ed:d2:30:11:2a:be:
30:38:ab:ba:84:75:5d:70:dd:c0:77:f7:21:14:56:83:32:ba:
c3:3e:01:87:f3:c0:b6:85:bb:3e:1e:8f:71:32:d2:7d:cc:81:
c5:20:a3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:57:27 2025 by rpki-client