Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
File: YGVg4D7ogzLu-_ppROvRA4rg6rg.mft (raw, json)
Hash identifier: eQGlw0KxpmTR5EcAQF8+lm0cP+1DFnThwVCDgsLgbN0=
Subject key identifier: 45:23:FE:3B:15:77:A9:BF:B4:9B:78:6A:C4:E0:1A:0D:72:3D:13:BA
Authority key identifier: 60:65:60:E0:3E:E8:83:32:EE:FB:FA:69:44:EB:D1:03:8A:E0:EA:B8
Certificate issuer: /CN=606560e03ee88332eefbfa6944ebd1038ae0eab8
Certificate serial: 01976929E7FA4C37055938D4345DBB030B24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
Manifest number: 0D66
Signing time: Fri 13 Jun 2025 12:00:43 +0000
Manifest this update: Fri 13 Jun 2025 12:00:43 +0000
Manifest next update: Sat 14 Jun 2025 12:00:43 +0000
Files and hashes: 1: 6He2HCHOgYmFWCnJx-CHnw1DNw4.roa (hash: R/op20lcuNNKjtAV2ZxOf6+gcTn27jdjTjhCIstJEzU=)
2: YGVg4D7ogzLu-_ppROvRA4rg6rg.crl (hash: qfPwV+3I1PrPPnRwjCjvKg4uZMVXa4h6yqiOJXEaGd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:e7:fa:4c:37:05:59:38:d4:34:5d:bb:03:0b:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606560e03ee88332eefbfa6944ebd1038ae0eab8
Validity
Not Before: Jun 13 12:00:43 2025 GMT
Not After : Jun 14 12:00:43 2025 GMT
Subject: CN=4523fe3b1577a9bfb49b786ac4e01a0d723d13ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:01:4a:ba:69:ba:d8:1a:39:40:98:6d:0c:a9:
1e:b2:23:3b:0f:88:18:34:81:81:d9:82:14:b5:38:
69:72:15:07:78:7e:52:41:8d:03:38:6a:0b:cd:9a:
5a:14:c8:d3:07:25:cc:b6:af:e2:c5:95:e0:d3:cd:
9c:23:56:64:2e:ff:b8:89:e6:31:f6:fc:c4:ae:8d:
41:ff:7a:80:cb:15:fd:5c:06:cc:84:22:88:93:87:
34:d1:82:cf:28:9d:09:5a:c9:f2:ff:13:46:75:86:
6e:28:bc:dd:01:81:54:17:0d:ac:77:a5:e1:2d:0f:
d6:07:32:5a:40:ec:40:bc:ec:59:18:9e:aa:b4:03:
b2:39:3e:be:fa:a5:48:a4:cc:2a:a0:89:08:23:c7:
b4:b0:a4:5a:d2:10:04:72:b2:76:a4:8f:b8:4d:78:
27:aa:fc:d0:60:9c:56:3a:98:61:54:79:4d:41:a6:
ff:15:c8:e9:a2:29:5f:cb:b2:e8:f7:2d:fd:ff:9d:
47:91:e0:47:34:1c:13:54:a9:ba:f5:b8:6f:47:e5:
36:58:24:c1:8e:22:ed:9c:2c:4f:22:17:b9:92:72:
55:5f:88:ea:d3:b1:6e:88:c2:f1:1f:bf:f6:04:1e:
d2:9a:81:cd:07:a8:1c:33:d2:ff:cf:fd:75:42:60:
11:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:23:FE:3B:15:77:A9:BF:B4:9B:78:6A:C4:E0:1A:0D:72:3D:13:BA
X509v3 Authority Key Identifier:
keyid:60:65:60:E0:3E:E8:83:32:EE:FB:FA:69:44:EB:D1:03:8A:E0:EA:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGVg4D7ogzLu-_ppROvRA4rg6rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d4b78f-8cbb-4846-866e-cf9e7164c07f/1/YGVg4D7ogzLu-_ppROvRA4rg6rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:31:05:84:5e:f0:c8:99:ea:eb:44:7d:37:68:a5:65:0a:2c:
4e:67:47:1d:1a:77:7f:53:8c:10:34:d3:25:76:8b:67:c8:0b:
64:30:95:bd:70:04:95:df:bb:25:fb:f7:40:7b:4b:36:88:37:
ba:d1:5f:7b:86:7c:31:cd:6c:4f:6d:80:28:93:e3:41:bf:4e:
a0:1b:89:20:89:eb:b4:f5:db:6a:19:3c:b0:9f:4e:25:72:77:
c7:9d:76:cb:a3:5a:ae:48:34:e4:f0:cf:ed:49:b1:1b:7d:59:
c0:39:d0:c0:73:25:23:73:a0:ee:27:03:2f:0c:42:1b:de:cd:
d1:32:85:f3:d1:87:f0:3c:ee:da:b5:1d:10:6f:64:ba:09:25:
c0:d0:22:47:af:96:db:bd:ff:55:26:61:9f:71:0f:50:87:0f:
07:d3:8f:00:64:75:16:09:af:d6:8c:64:9e:5d:ff:ab:c2:6f:
9b:c3:72:9c:72:3e:9e:84:b6:48:15:83:2e:9d:cf:ec:1e:1f:
5e:f7:8f:51:12:d2:b9:ec:64:bb:ea:df:77:f6:46:1a:b4:01:
86:cf:d5:c3:d6:21:3a:7c:74:e1:03:24:95:ed:a5:c3:2b:4a:
a2:2d:b3:43:93:45:15:83:ab:65:00:d1:4e:d9:b0:fd:17:31:
c1:b4:c0:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:09:23 2025 by rpki-client