Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json)
Hash identifier: tUuCl1mwcFNXonwi/f7iUABGazikQCyP8fzA+hnvlZ8=
Subject key identifier: D3:69:FC:D4:2D:ED:DF:9F:0D:FA:EF:30:90:B7:F1:D8:14:F5:B4:9E
Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Certificate serial: 019768BBF498F7AB2F0C38E8192286ADBD7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
Manifest number: 0240
Signing time: Fri 13 Jun 2025 10:00:37 +0000
Manifest this update: Fri 13 Jun 2025 10:00:37 +0000
Manifest next update: Sat 14 Jun 2025 10:00:37 +0000
Files and hashes: 1: q6cfXUDveWHdgQWTYKqVwvvOAe0.roa (hash: BJPMM6GNYN6IqCj9i2G5fXzbZjuTVnz0OtAPd8t+eZk=)
2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: db9GNDekWhar9gDBq1fSM3V+/jcfUzGsYMpYqiU8SWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bb:f4:98:f7:ab:2f:0c:38:e8:19:22:86:ad:bd:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Validity
Not Before: Jun 13 10:00:37 2025 GMT
Not After : Jun 14 10:00:37 2025 GMT
Subject: CN=d369fcd42deddf9f0dfaef3090b7f1d814f5b49e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:af:ac:84:44:18:2f:43:a0:d0:72:06:42:a0:
32:b4:b0:bd:e9:b9:fc:0d:43:e4:75:e1:91:42:ae:
50:93:13:b6:65:ff:2e:42:b8:ad:f6:f7:ad:ad:82:
d2:1c:22:c5:42:91:e1:cf:60:b0:b9:8f:d2:b5:eb:
78:5b:53:aa:d4:b3:d3:a2:9a:08:05:8f:54:29:a1:
42:8c:bb:01:30:6f:04:1a:86:f9:79:c1:55:cc:39:
96:09:9c:a7:aa:ef:c1:e8:cb:04:d4:08:fc:9a:5d:
6c:0a:c8:59:c2:f9:bd:96:e6:de:5f:f0:5c:98:7f:
2d:b7:b6:8b:15:13:9f:25:43:38:aa:09:f5:f5:94:
93:b2:db:d4:e0:74:9d:3a:be:07:0a:c6:72:25:c2:
31:a7:15:b1:2a:80:8f:01:f4:a8:0a:09:b9:dd:6e:
71:9c:ea:ba:b8:91:df:8b:ea:77:43:60:36:87:d9:
5e:24:d6:84:38:07:a2:99:73:a3:a5:12:9b:cb:f7:
b0:4d:57:3e:fa:ba:9a:b5:a9:a5:e2:da:6c:90:5f:
96:75:da:86:10:f1:22:fd:ad:2f:c8:9f:f1:a2:13:
68:68:06:a1:b2:6c:5e:df:e9:ad:f2:c2:c7:08:34:
35:14:38:d0:45:56:b7:d1:00:0b:b5:e8:08:a1:3e:
95:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:69:FC:D4:2D:ED:DF:9F:0D:FA:EF:30:90:B7:F1:D8:14:F5:B4:9E
X509v3 Authority Key Identifier:
keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:d5:48:87:d4:51:24:4e:e3:d4:8b:d8:dd:15:67:23:cd:19:
63:38:bd:9f:85:1b:89:e4:ad:cf:1f:2a:e7:a6:2b:45:28:40:
95:af:97:7d:51:3d:8f:63:ac:c1:0a:af:88:21:ed:3d:52:43:
48:4c:08:05:a8:45:c7:3c:4b:63:70:0c:4a:c6:4d:28:94:53:
99:20:91:88:cf:d5:17:8e:fe:a6:84:c9:1d:ce:45:fc:c6:a4:
59:86:e3:80:3d:df:8c:a0:65:2e:be:75:6c:2c:0b:33:47:5d:
eb:3a:b2:dd:3f:b0:9f:5a:b6:b3:35:58:0f:39:58:56:39:e4:
7a:d7:4c:4c:69:8a:bb:2d:3b:4e:af:9e:c7:f0:a6:60:e7:41:
7c:68:75:17:ff:93:26:ae:18:42:65:54:45:2d:47:e8:4e:f7:
e6:36:97:44:4a:1e:cb:61:d1:96:f4:23:b0:a1:ea:de:49:56:
36:0a:8c:e7:b7:09:47:ac:44:94:a0:5f:3b:ff:67:9a:29:74:
b7:9d:80:d3:07:96:d2:4d:6b:04:8f:c9:5a:08:62:92:69:ba:
4c:72:a1:01:e7:cf:b6:d5:1e:36:0b:f5:ca:c0:ee:1a:72:04:
a8:8e:f7:cf:c7:02:e6:be:a7:8d:13:03:7c:b4:34:14:57:fd:
32:1f:74:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:14:45 2025 by rpki-client