Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
File: You5JTbCD0KwW-UywNuquYt1XzU.mft (raw, json)
Hash identifier: Kav43tKpH04p3FQMvZ9iEMwvo/RAIsprJNBK/gbGbTo=
Subject key identifier: 76:20:A7:C4:0C:43:B2:F8:FA:DA:51:28:94:CF:93:ED:2A:3B:AD:D4
Authority key identifier: 62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35
Certificate issuer: /CN=628bb92536c20f42b05be532c0dbaab98b755f35
Certificate serial: 019768F2A081351B29A3FD49A457C46AD90C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
Manifest number: 42
Signing time: Fri 13 Jun 2025 11:00:20 +0000
Manifest this update: Fri 13 Jun 2025 11:00:20 +0000
Manifest next update: Sat 14 Jun 2025 11:00:20 +0000
Files and hashes: 1: You5JTbCD0KwW-UywNuquYt1XzU.crl (hash: QVqxUi2klQd1kZDuNDQrb7w1AH305IK96RoE8kblwlA=)
2: lUZIxGhzOYxZGWoE_bPIsAcvBns.roa (hash: 181xs0vbEO2Q9NjKNLp5nMH7XagJ9a8i0PdC3k4WAwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:a0:81:35:1b:29:a3:fd:49:a4:57:c4:6a:d9:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=628bb92536c20f42b05be532c0dbaab98b755f35
Validity
Not Before: Jun 13 11:00:20 2025 GMT
Not After : Jun 14 11:00:20 2025 GMT
Subject: CN=7620a7c40c43b2f8fada512894cf93ed2a3badd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f9:33:30:a9:be:04:67:29:30:62:29:f2:d1:
97:04:68:a5:60:2c:a1:4a:b4:d7:f3:18:4e:a9:3a:
ff:21:dd:35:00:ed:44:5a:a6:92:cf:1e:7c:46:4e:
ab:12:5f:d6:23:00:c9:ea:a6:90:ca:9f:65:e2:53:
7d:4c:19:4a:24:50:eb:6d:74:b1:fe:f3:c9:ad:85:
bd:24:3c:49:5d:e8:8c:68:12:a6:49:3b:27:48:41:
26:72:ab:b7:f2:a8:fa:43:4c:8d:98:ac:14:f2:aa:
d4:75:15:d6:ea:51:fa:07:6f:1c:41:ad:c1:e8:5f:
a4:2f:f7:4f:cc:81:5b:a4:da:c5:bf:60:db:d1:05:
09:da:d2:c6:9a:a3:a0:b2:f4:88:96:5c:9c:89:77:
9d:77:68:ba:c4:a2:ab:4c:09:c1:70:29:e2:7f:87:
33:4f:ac:3c:5e:ee:4d:77:bb:7d:1d:69:b3:d7:0c:
a5:33:39:74:2c:4f:03:e6:d2:71:b1:b5:a7:55:3e:
51:03:e2:05:82:35:56:10:80:cf:8d:8e:8a:9e:18:
f6:15:6e:4a:b6:f0:5d:71:85:59:0e:c7:e8:96:c5:
7f:51:00:96:d0:0f:cb:4e:7d:92:a5:3c:d3:1f:7a:
ae:78:b5:02:8e:db:d3:35:fc:6d:02:f4:ba:72:b0:
09:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:20:A7:C4:0C:43:B2:F8:FA:DA:51:28:94:CF:93:ED:2A:3B:AD:D4
X509v3 Authority Key Identifier:
keyid:62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:cd:e8:80:19:9c:cd:e5:47:7e:8d:46:d5:f0:c5:ed:8e:77:
ec:4b:2a:c9:24:36:b3:8f:a4:41:6b:f6:d8:7a:9a:a3:f2:17:
76:bb:7b:48:8e:fd:b6:be:29:fb:48:b3:fc:d9:b9:e8:af:53:
06:83:10:79:f7:9b:39:04:6a:db:4d:5a:30:30:08:77:2f:08:
e3:1a:d7:78:3d:b0:b3:79:fa:db:12:e7:2e:14:49:a9:77:33:
3a:96:fb:03:46:0e:76:1f:c7:c7:64:0a:26:aa:76:bf:6f:56:
c9:c5:9e:5c:2e:2c:c5:92:e6:10:60:e0:2a:38:77:a3:60:fb:
52:12:87:f8:2e:bc:5f:de:60:29:1e:c3:21:da:de:9b:f1:c6:
6f:b8:93:a3:bc:87:7f:9e:4b:cb:18:28:5f:f6:c5:08:8d:cb:
99:29:d5:39:9c:c5:0b:53:de:fb:85:db:fb:bc:77:80:85:0f:
db:04:2b:f5:a1:c0:49:20:2f:b0:2e:71:6e:a2:25:f1:db:9c:
f2:80:7b:a9:84:42:1f:88:fc:c2:d0:8e:b9:2e:0b:9b:ca:3c:
be:c1:9c:f3:30:01:50:20:ae:1f:5b:15:d4:71:45:48:e3:f4:
63:37:16:1f:ae:48:1f:f8:14:4a:5a:9b:2f:fc:d0:d0:96:95:
9a:57:58:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:10:29 2025 by rpki-client