Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
File: Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft (raw, json)
Hash identifier: 20IjuLAnEX6cIc0zaDP/mbc5aSLhCdNLJdS2R+i53aw=
Subject key identifier: BB:26:13:16:BF:52:99:CB:21:82:A6:5F:FC:50:A8:26:4F:B2:05:D7
Authority key identifier: 63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
Certificate issuer: /CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Certificate serial: 01976D3E3F19C34489EAD8E4BFAEA27889B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
Manifest number: 02BB
Signing time: Sat 14 Jun 2025 07:01:25 +0000
Manifest this update: Sat 14 Jun 2025 07:01:25 +0000
Manifest next update: Sun 15 Jun 2025 07:01:25 +0000
Files and hashes: 1: Qzda_dpxvv_9oCqZ0rKtNjYGFYA.roa (hash: yhmVIZybj8mBYPvdFgcuCe4v8sYhgAuDZKiw+Hdv0f4=)
2: Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl (hash: ZlR1T8ddoenD/S4l6naK5/5LxXiYFJOjyic2REH7gno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:3f:19:c3:44:89:ea:d8:e4:bf:ae:a2:78:89:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Validity
Not Before: Jun 14 07:01:25 2025 GMT
Not After : Jun 15 07:01:25 2025 GMT
Subject: CN=bb261316bf5299cb2182a65ffc50a8264fb205d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:89:e0:d4:87:d7:df:56:a2:13:c6:e2:b8:98:
ae:00:5c:76:ea:2b:a2:53:bb:bd:2e:1a:4f:43:9a:
0c:5e:47:dc:e4:84:a9:37:ea:db:6a:9c:c1:46:ad:
70:30:e7:08:9b:dd:37:ab:98:9d:08:8a:9a:28:27:
0d:74:49:44:79:95:32:72:cd:b5:45:11:15:12:f5:
62:05:a6:61:26:aa:64:26:d8:51:ed:6d:4b:cb:3f:
20:e1:ec:7e:2c:ff:c0:07:47:be:fb:dd:e3:b2:d1:
fa:cd:5b:9e:cb:ad:61:b3:69:69:86:c9:8e:45:9f:
1b:16:4f:00:8a:a7:62:23:d2:6a:a2:52:c4:a6:0d:
1a:fb:65:f8:4c:ab:dc:d6:53:6a:38:7a:28:8d:59:
b2:1d:d3:74:ce:28:25:63:34:55:be:8f:50:39:2e:
83:44:af:27:37:ca:d3:74:ee:08:6e:92:82:4a:37:
56:5d:d7:93:b7:78:3b:2b:d8:af:7c:6c:96:4f:f5:
fb:86:6a:d2:34:4d:cc:21:3c:00:c3:26:77:b6:0a:
1c:13:ac:17:5a:bc:98:d0:1f:64:af:12:52:0f:9f:
fd:87:47:0c:47:67:1e:2c:1a:ea:6f:12:b1:41:e6:
61:8b:9b:eb:1a:b3:c3:a5:e5:a6:52:57:04:e5:43:
1c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:26:13:16:BF:52:99:CB:21:82:A6:5F:FC:50:A8:26:4F:B2:05:D7
X509v3 Authority Key Identifier:
keyid:63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:a1:a4:d9:cd:88:ba:93:a8:fd:b4:d8:b1:61:44:01:8e:68:
a0:b8:ba:0c:05:5a:67:83:ae:c9:98:bd:34:42:bf:d5:31:23:
15:7d:94:3b:0f:a5:94:bb:bf:99:35:eb:04:30:47:ad:ec:9e:
84:88:f7:ee:4a:cf:75:d4:5e:12:ec:dd:75:90:b2:95:a6:9f:
f4:2c:4e:5c:2e:d7:6a:b2:d0:3c:48:9e:15:9a:0f:d0:bc:85:
47:4e:0a:19:57:5b:09:18:4e:3f:2e:b1:8d:30:0b:82:a2:21:
b9:e6:15:1d:b6:af:39:91:10:17:e5:09:ef:a1:84:55:55:d7:
45:07:c4:0c:a5:18:59:68:a1:ab:14:86:16:25:e2:ec:47:8f:
9e:7c:7c:df:50:69:8b:06:08:0a:e4:1d:78:91:e5:67:e6:23:
20:40:f4:92:f1:c6:5c:b1:50:07:3b:69:e0:50:31:e9:7c:04:
42:6e:e0:42:0d:14:f5:1f:90:1e:7a:79:60:11:54:6f:04:11:
42:8a:f3:2a:01:f2:56:6d:da:8e:67:b1:54:5f:f0:b3:b2:35:
a7:cb:7e:bd:a5:a4:82:33:b0:7c:49:36:7e:58:9e:b7:dd:6c:
97:ec:5f:8c:37:a5:3d:d9:f2:b8:b6:d1:64:47:cf:d4:c9:4d:
3d:5a:7f:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:15:49 2025 by rpki-client