Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
File: ymRB2dgH4NeM51IToQNADuFKfNw.mft (raw, json)
Hash identifier: 0Yct8MhAUNcleCVaBsoEJcY4VAaWsO1o0ir1GQWis00=
Subject key identifier: 40:52:6E:5E:C0:3E:59:3E:C0:A7:7E:C9:DC:69:13:B6:A5:A2:07:2C
Authority key identifier: CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC
Certificate issuer: /CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc
Certificate serial: 01976DE27AFC08B021C0F721A42EDE1E281A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
Manifest number: FC
Signing time: Sat 14 Jun 2025 10:00:48 +0000
Manifest this update: Sat 14 Jun 2025 10:00:48 +0000
Manifest next update: Sun 15 Jun 2025 10:00:48 +0000
Files and hashes: 1: DIvBgZwS0Tso3aVf8EICkFleMLM.roa (hash: uFxBmENfxdwwVihL06QRGFulr8RLsRLP+PeZmW4yvHM=)
2: hebYL6M-z610FLivX7dM3OowSRU.roa (hash: IcjCerJ7GmqoXjZHtfS/CxBpCm6nwEU8LVGTcI76v2s=)
3: xIyXjBVQ6PY7db0-kU0MPNqfG_k.roa (hash: hoQlQ49AMRXyr8IYH6xHVURJ84d0LGLOqucCIHUfGFM=)
4: ymRB2dgH4NeM51IToQNADuFKfNw.crl (hash: cepkspxXAMhDZfTafCw8TMHSQh23FnJeCjE1eNbAQ4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:e2:7a:fc:08:b0:21:c0:f7:21:a4:2e:de:1e:28:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc
Validity
Not Before: Jun 14 10:00:48 2025 GMT
Not After : Jun 15 10:00:48 2025 GMT
Subject: CN=40526e5ec03e593ec0a77ec9dc6913b6a5a2072c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a2:25:49:ad:73:90:5c:78:ed:41:d4:0d:c6:
32:f5:07:db:32:16:a5:d3:ac:2b:fb:15:bd:ae:e8:
a8:fb:59:cd:9b:22:42:4c:fe:86:db:bb:02:fa:76:
00:a7:62:22:27:85:19:ad:bf:e5:c8:f5:1e:3a:57:
63:e7:05:7b:04:58:20:18:e8:38:56:fb:76:4e:d6:
e0:08:15:43:5b:28:b6:51:24:26:a8:0e:b2:4d:28:
c3:a3:2b:76:4d:1b:9b:e6:dc:99:0c:4a:b5:19:61:
1d:7f:91:bd:7f:bc:04:72:6d:c0:66:1b:8e:03:fe:
c3:17:66:c3:53:bb:c6:f6:ae:63:9b:db:50:a1:b1:
28:5a:36:b8:e7:d3:44:b2:c2:6a:b0:f5:0e:1a:87:
d2:e5:b0:1b:c5:f6:09:f3:09:ae:a5:a3:82:97:52:
00:76:20:7c:9d:c5:e4:ad:43:86:c0:59:ab:c5:ab:
35:ce:34:dd:ec:b2:96:0a:50:7b:b8:45:dd:cb:08:
cc:42:c9:31:b5:23:7c:6d:cb:33:e1:d0:f7:53:cf:
cc:41:1a:55:b0:d4:e9:9a:35:0b:30:33:b6:c7:db:
e2:13:d4:e9:bd:51:3e:be:54:41:28:e5:9a:55:0e:
a0:fd:da:92:22:3b:d2:31:3a:4f:7f:46:3b:3e:e8:
70:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:52:6E:5E:C0:3E:59:3E:C0:A7:7E:C9:DC:69:13:B6:A5:A2:07:2C
X509v3 Authority Key Identifier:
keyid:CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:5b:2c:b2:40:8a:59:91:3c:05:a8:e9:a2:96:4b:e2:43:0e:
9a:a8:54:db:7f:eb:84:ed:37:d2:f4:60:34:a6:6d:d3:d6:e6:
ff:74:65:cc:94:5c:2f:1a:c8:44:7a:68:cd:58:dc:54:20:cd:
61:8d:b1:1b:9e:14:86:8a:af:2a:b1:80:c0:7b:d0:c7:05:54:
d7:f3:4b:60:8f:19:77:ca:6e:e1:39:b5:7f:b8:5a:22:33:2b:
ef:cb:a9:0b:60:12:10:0c:3b:83:c1:8b:ec:7d:a2:86:32:87:
53:97:05:ea:3a:4c:2f:d7:8e:41:a0:79:c1:ab:dd:04:e5:f8:
57:93:f4:36:a9:b4:e3:b5:7b:2e:1e:aa:aa:52:fa:f7:00:ba:
9a:6a:91:72:f0:4d:bf:0c:99:36:44:22:09:d8:00:0c:c3:b2:
8f:a5:d5:97:9b:f9:ee:48:64:28:a9:a1:e3:82:17:97:8f:e8:
3b:71:20:b9:e9:22:ba:49:63:a1:d1:08:e2:ff:b0:70:55:79:
9d:22:9e:2b:b9:a7:f2:34:0a:e9:90:32:2c:2b:e9:36:4c:a0:
13:0e:77:5e:a6:40:75:27:e5:ce:79:0b:95:d7:5d:55:e2:63:
fd:c3:d9:f7:1c:b1:a2:08:e6:8b:23:44:ca:7b:87:1c:f5:29:
a3:14:a9:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:21:11 2025 by rpki-client