Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
File: Sy7AqbnmDoZSFoymnZI58nMHw3I.mft (raw, json)
Hash identifier: Ykjwu1ob9iyb9fnPFGPbiN5WPJBnAIxesclMrQoxKsQ=
Subject key identifier: 8B:EC:3D:12:38:E7:B7:73:66:6A:AD:FB:5B:B4:45:3C:B5:69:47:C7
Authority key identifier: 4B:2E:C0:A9:B9:E6:0E:86:52:16:8C:A6:9D:92:39:F2:73:07:C3:72
Certificate issuer: /CN=4b2ec0a9b9e60e8652168ca69d9239f27307c372
Certificate serial: 01976DE25CCE350F5F37DBAAF782A79A323B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
Manifest number: 14F4
Signing time: Sat 14 Jun 2025 10:00:40 +0000
Manifest this update: Sat 14 Jun 2025 10:00:40 +0000
Manifest next update: Sun 15 Jun 2025 10:00:40 +0000
Files and hashes: 1: I0uKuQxKXFKWPHV3tWp8USg1X-E.roa (hash: WXxoeNxUFy+lmF1DwKWF+FMyVOrtNM4sTEwb6rXBq/g=)
2: Sy7AqbnmDoZSFoymnZI58nMHw3I.crl (hash: gLvqgQYB2miXjNI4d3wfiWP6n+WuhqycjFTuxMXBTAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:e2:5c:ce:35:0f:5f:37:db:aa:f7:82:a7:9a:32:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b2ec0a9b9e60e8652168ca69d9239f27307c372
Validity
Not Before: Jun 14 10:00:40 2025 GMT
Not After : Jun 15 10:00:40 2025 GMT
Subject: CN=8bec3d1238e7b773666aadfb5bb4453cb56947c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:77:67:98:4b:c1:ed:c4:0e:32:5b:da:c3:72:
a1:d4:bb:01:c6:2c:e5:d5:e5:2e:37:d4:bb:ba:ef:
e4:b7:5c:a7:42:20:a1:42:7c:27:fc:f4:eb:e9:6e:
d0:e1:54:6a:2b:0f:4f:e8:84:81:98:81:64:ed:2d:
00:58:55:c5:da:e9:7e:b6:0b:42:c1:5f:e0:21:bf:
14:f8:44:b1:d1:a2:96:a1:17:b8:bd:17:4d:97:85:
50:2b:f4:da:91:9e:7f:0f:9d:1d:34:21:7f:1e:a9:
f5:8f:0a:2b:42:06:16:56:c5:1f:da:7b:54:bf:ba:
f9:ec:ef:f9:d8:a7:52:34:49:30:05:28:1a:48:a9:
d5:f7:bf:9e:fc:a9:40:80:63:c6:bc:6b:62:d2:3f:
84:b4:3a:6a:78:07:bc:d3:14:8e:55:68:a7:9a:1d:
ca:8d:90:34:8e:95:e2:cc:97:51:17:18:5f:a9:df:
90:ed:cd:2d:51:2f:23:85:dd:4b:78:82:51:c3:3a:
ee:81:7b:2d:77:aa:ba:c6:e2:87:62:cb:a5:95:66:
39:a9:df:83:0a:61:93:94:eb:1a:e4:41:7b:8b:95:
07:f5:10:e2:81:fc:59:52:e3:53:02:aa:39:5d:18:
34:70:69:ab:db:f7:2f:bc:a6:ec:ab:ef:98:7d:d4:
62:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:EC:3D:12:38:E7:B7:73:66:6A:AD:FB:5B:B4:45:3C:B5:69:47:C7
X509v3 Authority Key Identifier:
keyid:4B:2E:C0:A9:B9:E6:0E:86:52:16:8C:A6:9D:92:39:F2:73:07:C3:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:c5:2b:6f:0c:d4:6b:59:b5:24:d4:a9:69:68:09:ec:ac:0c:
cc:99:0c:1e:fd:51:29:37:95:6d:54:d9:91:73:a7:d1:31:fa:
b6:a1:62:f8:2d:06:7a:b7:a2:84:55:73:d7:86:b6:28:16:31:
94:77:b6:19:aa:0e:2e:99:06:a5:d1:ef:92:c2:de:8a:94:85:
a3:d0:e0:f5:78:54:05:3c:17:a5:3e:e5:2f:e3:4d:4c:fc:15:
0a:4a:e6:d6:fa:8e:8f:0a:8a:0d:77:62:ad:d3:0a:ea:19:9d:
fc:d0:6b:20:bd:75:8b:03:ae:e1:2c:02:66:ff:b1:4f:bc:39:
f4:b9:a9:5c:1b:63:a6:71:3e:34:92:be:a9:0f:0d:99:73:41:
75:f4:1a:e6:67:8b:ae:89:26:8a:5e:27:8f:e5:30:72:58:f2:
8f:bc:d5:93:3b:c7:c7:a8:3a:f5:19:ee:0f:96:20:bc:3b:58:
e6:22:ae:f4:c0:44:34:6d:72:c6:d2:09:66:ab:bf:ef:3f:35:
60:f9:fb:a8:c6:66:a7:98:ce:6b:81:29:03:2d:b8:4d:9e:8f:
14:86:c1:0b:90:d9:f3:dc:c2:b4:4b:0c:15:c4:c7:60:6f:7f:
56:43:a8:3b:8f:4f:24:db:7a:c3:2e:61:1f:1d:eb:e4:f4:a2:
f8:3a:ad:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:49:21 2025 by rpki-client