Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
File: YaXSF3WehhaW_HftmqY7lO2zvn0.mft (raw, json)
Hash identifier: HaEm7oxyvfWWn1SUtgH0YdbuYT0sJREOpSEOIrzkafo=
Subject key identifier: A9:3B:F4:6B:75:D1:52:AB:75:6D:F9:9D:7B:DC:8A:5A:04:5D:67:CC
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 019776E5AB1A1D79F59F376E5394776DAD5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
Manifest number: 1524
Signing time: Mon 16 Jun 2025 04:00:52 +0000
Manifest this update: Mon 16 Jun 2025 04:00:52 +0000
Manifest next update: Tue 17 Jun 2025 04:00:52 +0000
Files and hashes: 1: 5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa (hash: Wdi/0+eUolZTOBljIE3hewam0WUu332lXIc8cs32Fgk=)
2: 925S4SchOi83vL3V68Y_AUuJSD8.roa (hash: 6EULq2ShinRvQFwY+uALe+ivLl2vWfr/F3fyELn3cug=)
3: PGmGsgYp4SpOgDQPzfkm2Kp84ms.roa (hash: QvQzg0nCw1e7QpH5gXcvQpoprtCI6UOH6zwCxDuFkv0=)
4: YaXSF3WehhaW_HftmqY7lO2zvn0.crl (hash: idHNaukVvWevwBhQrbKQyYTnbIpMinSECCr1cNetmy0=)
5: z3s2kSvc4H2ywLCnLljgXCeMKHc.roa (hash: pgMrP+tE9sQxVvQRywnzdq3UOn28MH01XXGUWXVHask=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:e5:ab:1a:1d:79:f5:9f:37:6e:53:94:77:6d:ad:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Jun 16 04:00:52 2025 GMT
Not After : Jun 17 04:00:52 2025 GMT
Subject: CN=a93bf46b75d152ab756df99d7bdc8a5a045d67cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:36:5d:81:75:30:f3:04:f5:da:da:b8:b6:a3:
50:e7:f9:14:0b:7a:d5:7f:23:89:51:a6:27:2f:24:
8d:3f:36:87:af:ff:08:33:0c:d6:dd:5e:09:d1:e4:
77:d9:b4:cc:c7:74:e2:38:d1:47:ce:ad:37:67:94:
e8:c8:56:67:54:10:da:0c:e2:3e:97:92:1c:cd:a2:
cc:92:d3:7a:49:cf:be:ce:8f:67:20:00:fe:20:51:
58:9f:0c:70:c7:84:c0:a8:88:3d:8f:53:62:42:6f:
46:ae:25:68:82:24:6b:de:36:77:60:b0:09:3e:75:
50:ad:88:79:91:72:25:5a:28:6d:e6:d6:61:b3:20:
c2:c3:b7:45:61:be:c7:9e:8e:cb:ea:e3:f3:1b:bc:
51:5b:1d:2a:2f:c0:57:5b:b8:8c:07:d2:f1:76:f3:
cf:00:cf:3a:75:de:c3:81:11:bf:7a:06:4f:3c:4b:
2b:83:e2:b6:a8:12:31:ab:43:ba:2f:1d:da:a6:f5:
8d:72:d7:87:5f:d5:82:9a:98:35:bb:3c:5a:86:68:
ee:38:d6:f6:78:66:ce:c5:1b:00:51:82:58:df:97:
9b:e8:34:b8:64:a2:4d:86:d7:bb:d2:13:77:b6:73:
aa:34:4c:c4:bb:81:98:ab:84:29:d1:07:13:df:c0:
f5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:3B:F4:6B:75:D1:52:AB:75:6D:F9:9D:7B:DC:8A:5A:04:5D:67:CC
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:4b:d2:5d:30:a8:a9:06:ac:62:7a:6f:b9:96:8e:7d:32:17:
3a:cf:71:11:5b:31:6e:9e:f5:17:07:b3:ec:6d:da:33:f0:6e:
e5:2f:72:1e:98:37:1a:2e:04:96:17:b8:91:8b:70:b1:ba:a5:
b0:24:3b:fb:93:1d:03:04:79:77:34:27:7f:f7:19:a3:7b:39:
b4:af:4f:c0:94:b8:6a:73:85:fb:29:93:e1:67:d3:c2:07:d3:
cd:03:c7:e2:c6:38:12:74:9c:d7:67:e5:2b:a7:b3:a0:86:63:
f5:5b:d8:e3:da:2c:f3:11:f7:6c:9a:8b:a0:c0:c8:9f:b6:f0:
4c:fe:19:00:c9:7a:cf:41:c0:e5:86:f3:18:98:de:d2:8f:c8:
f2:be:7e:90:1b:94:a1:1f:1f:75:af:45:ca:c6:e7:1a:2b:60:
0a:e5:ec:8a:95:8f:bb:a5:40:59:d9:c8:d9:dd:1f:a6:47:da:
d9:6e:c7:1a:a7:dc:c3:3c:83:5d:d5:16:69:9e:3a:4b:4c:00:
fb:b1:4c:04:6f:aa:81:87:23:25:40:9c:26:6f:fb:8b:db:4a:
8f:de:78:4e:57:2c:f4:fb:18:69:2e:91:dc:73:b5:3d:25:3d:
06:11:ab:72:d1:a0:3c:69:c3:cf:84:84:c1:c0:48:84:48:ce:
c7:78:c1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 07:00:15 2025 by rpki-client