Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
File: yxODRz6KqHJwaPx1LgYOPb9j4O8.mft (raw, json)
Hash identifier: ecciHN9+H7vbaJ+Yr99F2ICftKMKZKVc9A35LwiX7qA=
Subject key identifier: 04:97:17:DD:5C:4D:21:A1:D3:FB:7C:21:24:2B:7B:A6:B6:E7:14:D5
Authority key identifier: CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
Certificate issuer: /CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Certificate serial: 019877BFCC97B585CD5D7E18F4010B7D45C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
Manifest number: 07D5
Signing time: Tue 05 Aug 2025 01:01:55 +0000
Manifest this update: Tue 05 Aug 2025 01:01:55 +0000
Manifest next update: Wed 06 Aug 2025 01:01:55 +0000
Files and hashes: 1: rOX9zRwObaYZKZTR0WDKGvQYCI8.roa (hash: AVl8Cu7AhfVM1Wh1VdzrltPVEMOUXlEEy7ZTpT+wzAA=)
2: yxODRz6KqHJwaPx1LgYOPb9j4O8.crl (hash: 70tA1atfW+kh2zU8gAtKx+KCQuv1bJtqi3YeR9tGmzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 00:46:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:77:bf:cc:97:b5:85:cd:5d:7e:18:f4:01:0b:7d:45:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Validity
Not Before: Aug 5 01:01:55 2025 GMT
Not After : Aug 6 01:01:55 2025 GMT
Subject: CN=049717dd5c4d21a1d3fb7c21242b7ba6b6e714d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6d:68:f2:44:b2:5f:2b:24:92:5c:39:21:64:
0b:d0:33:6a:fd:a9:9f:2f:30:0c:a7:25:87:6e:95:
91:6b:22:ec:60:0f:58:b2:4b:9e:83:0f:04:09:98:
f8:03:06:c3:eb:93:37:57:dd:b4:fb:b3:85:78:aa:
81:fc:b8:fe:9d:56:23:7c:c8:ea:9a:76:07:13:46:
75:f1:c6:bc:bb:b9:5e:6c:64:2a:0a:97:b8:e3:f8:
e3:66:1c:d8:9e:62:a6:cb:1d:87:3f:1f:5c:18:0d:
c6:72:f4:c0:05:73:72:13:8f:5b:c9:b6:65:b8:d0:
e9:03:ba:9d:0b:a7:72:e3:37:b9:37:e6:bf:9b:e2:
3b:b1:f4:da:ff:01:17:9a:be:2e:c2:5e:ba:0f:db:
35:2a:da:cf:ab:43:82:97:9e:c1:6a:76:98:5f:f7:
25:94:87:d1:c7:8a:82:10:7b:b7:ae:90:d9:d0:bb:
be:54:9f:31:9f:fb:ba:8b:05:cc:7e:fc:6a:bc:14:
65:b2:be:65:a3:2e:75:e8:5a:be:ec:1d:a0:c8:1e:
86:d1:6e:f6:d9:d3:a9:42:45:0c:57:87:35:d9:20:
a2:f4:85:88:8d:a1:bc:6b:20:e7:74:9d:1b:35:d2:
b1:e5:f4:49:e2:74:29:ea:ac:f4:bb:02:31:02:dd:
15:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:97:17:DD:5C:4D:21:A1:D3:FB:7C:21:24:2B:7B:A6:B6:E7:14:D5
X509v3 Authority Key Identifier:
keyid:CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:b9:39:c9:02:af:a4:97:0a:f1:5d:a0:b9:09:56:ef:6a:fa:
0b:6d:1c:61:b5:19:64:3e:1c:2c:f3:23:6f:f4:39:5a:7a:3d:
6a:5c:3e:e9:08:96:2f:73:22:9f:ff:4b:08:a3:50:c0:3d:73:
51:a3:77:ad:99:d8:bd:f2:d5:ba:b5:9c:5b:13:58:90:b3:8a:
33:b7:b0:a2:59:7e:89:bd:e0:84:bd:9b:83:cc:a8:96:6b:83:
5c:f0:43:86:74:09:46:a7:15:e5:bb:e1:dd:76:0b:ef:f9:d8:
7a:2d:83:c8:17:6b:20:03:1b:c7:6a:da:34:5e:f3:6e:1b:f5:
64:5f:02:c7:5a:76:d8:50:3b:4d:17:9b:1e:59:6d:e4:bc:4f:
d9:62:f9:67:bc:03:2d:e9:6a:2f:aa:60:34:5a:70:e5:87:83:
bc:cd:0e:af:8d:07:65:fa:0e:c5:5c:1c:93:08:e7:76:4a:78:
74:db:a4:fe:af:59:3f:e0:4c:60:8d:4e:f0:0a:6d:f0:67:5e:
3c:23:98:43:04:35:e5:b9:e4:48:26:a0:11:83:1e:08:2a:49:
30:a5:68:37:43:dd:81:10:dc:c8:1c:62:a5:c8:95:22:58:10:
14:9c:c7:53:16:b7:14:2c:65:b9:90:de:26:fd:77:72:41:40:
3b:9c:88:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 08:11:26 2025 by rpki-client