Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.mft
File: y1eZ2NBfSgIAEdyoAxdivqASJV0.mft (raw, json)
Hash identifier: s6es+fsh8s0fxpNNysHpIgREjmVl9zeMPxij+OmwWik=
Subject key identifier: EC:3A:94:3F:16:EB:B2:63:96:C4:3A:A0:A0:32:F0:F7:F1:FB:CD:FF
Authority key identifier: CB:57:99:D8:D0:5F:4A:02:00:11:DC:A8:03:17:62:BE:A0:12:25:5D
Certificate issuer: /CN=cb5799d8d05f4a020011dca8031762bea012255d
Certificate serial: 01987306A938762CE2826109EE8146647183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1eZ2NBfSgIAEdyoAxdivqASJV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.mft
Manifest number: 0B8A
Signing time: Mon 04 Aug 2025 03:01:13 +0000
Manifest this update: Mon 04 Aug 2025 03:01:13 +0000
Manifest next update: Tue 05 Aug 2025 03:01:13 +0000
Files and hashes: 1: FXCR9Lc6KgRx_HPpZhjXnE6ILJY.roa (hash: TawwcEelbsmmDw/jX+MvcIQud2NnCnis9eNEGbrjubs=)
2: y1eZ2NBfSgIAEdyoAxdivqASJV0.crl (hash: 3w+Pka5Xqil0WDUPs8UcdsME/k41tVvJjtRPFr8I2M4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1eZ2NBfSgIAEdyoAxdivqASJV0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:a9:38:76:2c:e2:82:61:09:ee:81:46:64:71:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb5799d8d05f4a020011dca8031762bea012255d
Validity
Not Before: Aug 4 03:01:13 2025 GMT
Not After : Aug 5 03:01:13 2025 GMT
Subject: CN=ec3a943f16ebb26396c43aa0a032f0f7f1fbcdff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0b:5f:31:d7:2c:52:48:70:be:31:15:af:2d:
53:6f:47:cb:12:a7:90:8a:17:b8:3b:1a:c3:3c:95:
7a:80:43:9c:26:33:9e:ff:90:e6:7b:54:40:88:d2:
ff:3a:9c:3d:b0:70:14:44:2e:b2:41:fd:1a:31:2a:
4f:15:2c:c0:02:1f:1c:c7:b6:23:2b:79:db:dc:04:
7b:2c:85:76:9c:89:7a:9e:d0:1d:e1:29:74:73:35:
82:1f:54:1a:70:ea:eb:59:26:60:df:98:e2:03:a8:
ba:98:db:12:4a:df:31:ca:45:af:b0:c2:4d:29:41:
65:e6:95:c0:d9:96:6b:b5:8a:8a:fe:89:b7:ff:9d:
ca:c7:9a:85:b3:ed:e0:3a:9c:06:49:80:0f:50:d8:
09:e1:52:f3:d6:85:66:fb:b0:b7:82:d6:d0:3a:eb:
56:17:f8:bf:ce:91:5e:ce:18:02:8d:3c:16:86:db:
bf:99:1f:b6:cd:95:18:07:30:a3:77:41:33:73:3a:
e5:9e:92:bf:12:d6:16:53:e4:fb:9d:e5:1a:ce:56:
84:31:6e:88:28:a7:76:c5:8e:01:6c:c7:42:ec:de:
1f:42:cf:8a:27:17:31:ba:1f:27:29:a5:58:93:24:
99:97:d6:0c:d4:46:f3:21:ac:32:43:62:59:c0:36:
be:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:3A:94:3F:16:EB:B2:63:96:C4:3A:A0:A0:32:F0:F7:F1:FB:CD:FF
X509v3 Authority Key Identifier:
keyid:CB:57:99:D8:D0:5F:4A:02:00:11:DC:A8:03:17:62:BE:A0:12:25:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1eZ2NBfSgIAEdyoAxdivqASJV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:b5:c2:02:e7:45:26:b9:8a:d1:06:79:34:12:b6:d9:a3:5d:
cc:7f:a1:2c:44:73:b1:4e:38:38:5d:63:81:b5:26:7d:33:71:
a1:92:44:e4:e5:cf:2a:ba:20:bf:95:16:87:3b:b3:2a:4b:7e:
a2:19:a5:72:b1:cf:88:75:14:11:d0:36:44:e3:27:ed:97:0e:
d7:ab:3a:46:e1:7e:9d:2d:de:38:2b:90:dc:bf:a8:69:31:6d:
11:3e:54:a0:44:45:01:ae:29:8d:f6:32:60:28:b0:03:5a:b8:
a5:d7:65:b6:ea:71:81:46:52:3f:94:74:f4:6b:c7:10:23:5d:
27:89:ea:a2:4a:04:80:7f:e5:dd:d9:43:33:36:32:79:a9:cb:
cb:27:91:71:9f:b6:1e:bf:ba:34:19:51:73:d6:0c:26:e8:8d:
99:5d:8d:ac:53:38:27:e1:12:cf:08:c3:1b:73:20:37:10:e9:
8d:ce:86:65:5b:28:6c:56:c9:28:4f:e5:4e:6e:b6:2d:b8:0e:
27:b9:45:a0:7c:07:be:c6:00:9d:cc:84:a5:e8:61:a6:6c:90:
de:cc:1e:2d:a7:37:4e:08:58:ec:0f:be:58:d7:71:1e:36:aa:
a2:a7:f9:fa:71:25:08:35:36:f2:b2:01:7f:5e:d5:df:c7:cd:
5a:83:07:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:43 2025 by rpki-client