Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
File: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft (raw, json)
Hash identifier: AIWxuf8E18QttPVzYBsNRXTg/vAUNPie41BgyJH0wKQ=
Subject key identifier: 2E:80:08:6E:65:15:96:5A:B7:31:B1:FE:A0:B9:E2:7A:8D:E7:3E:E6
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 01976C6225DCEF289DBC5F70BA903BB227ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
Manifest number: 0B71
Signing time: Sat 14 Jun 2025 03:01:00 +0000
Manifest this update: Sat 14 Jun 2025 03:01:00 +0000
Manifest next update: Sun 15 Jun 2025 03:01:00 +0000
Files and hashes: 1: 2ATvNbnGawNlZZ5eknfDSbXFIzQ.roa (hash: tXSd9lU5fCgD64Z/fTQv/A1ZJJrB3ZcLdqsIZET5sKI=)
2: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl (hash: XUr+ECBn3n2m59OSGchr8d0svqK/tvYKFis1tBFFXxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:25:dc:ef:28:9d:bc:5f:70:ba:90:3b:b2:27:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: Jun 14 03:01:00 2025 GMT
Not After : Jun 15 03:01:00 2025 GMT
Subject: CN=2e80086e6515965ab731b1fea0b9e27a8de73ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:33:91:4a:d9:2f:c4:46:02:39:10:9f:44:3d:
d0:ea:a6:a8:04:6f:7c:ff:49:ff:7a:02:03:7c:f9:
5f:a7:57:77:92:2d:5d:bf:1c:c6:d7:8f:ad:eb:0a:
5c:fd:4a:81:9d:a1:24:44:58:0f:c8:7d:95:34:97:
e7:7e:fc:be:dc:77:38:59:05:9e:30:4c:95:da:e9:
75:88:ff:dc:f5:6d:9f:78:42:8f:a2:d4:bc:93:c9:
a5:70:f7:27:b6:06:21:9c:92:94:2a:8d:44:32:73:
88:1e:72:31:4e:d9:b2:21:dc:2d:85:8b:b6:1c:e5:
d1:da:16:65:d0:81:de:bd:7c:18:6e:53:3c:4d:f3:
bf:d4:aa:d6:c4:46:e0:9d:8d:84:6e:03:cc:af:ee:
3f:23:c2:31:01:08:06:0c:bf:20:f9:88:e8:89:b1:
12:b1:bb:d7:53:65:bb:26:c9:75:7e:49:9b:fc:aa:
cd:c3:5e:64:e2:b1:d6:18:0f:75:a5:73:75:73:3f:
d7:e7:f5:af:1a:6a:75:2b:70:73:de:9c:a8:ba:a7:
37:5f:64:4f:44:8e:82:41:36:33:c1:28:a5:f8:a3:
0d:09:57:fa:6d:3c:6c:ad:91:af:57:40:34:ba:f4:
c3:97:56:1b:93:84:18:4b:59:01:a7:ba:00:23:41:
24:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:80:08:6E:65:15:96:5A:B7:31:B1:FE:A0:B9:E2:7A:8D:E7:3E:E6
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:0b:2b:70:8e:8b:ef:bf:3d:57:35:dd:10:0f:95:f6:df:10:
e5:4c:d1:a4:0b:17:6d:3e:95:ab:e6:12:aa:d2:bc:85:0a:ac:
22:20:eb:70:cd:56:7b:73:06:bd:0d:22:2e:f5:23:2e:27:e6:
be:97:eb:d7:00:d9:bd:6a:d1:25:19:f3:e5:66:cd:03:ab:c7:
28:fe:a4:06:92:f1:13:a1:de:c0:4a:a3:93:dc:f5:8b:01:de:
18:ee:9a:ae:17:5c:f8:17:fd:3d:c1:23:6a:fa:a0:9a:20:5f:
d6:61:76:fe:2b:8c:5a:0a:5c:9f:0d:71:1b:12:7a:90:6a:2d:
6c:6f:60:97:ca:27:b8:0d:2b:a8:7e:4c:e7:82:05:ed:b6:9f:
b8:5a:1d:90:51:58:41:30:91:b9:78:86:7f:fb:ec:f9:36:93:
60:dc:99:c9:47:32:78:e4:e9:5e:62:e9:a4:71:d8:1b:a3:9b:
a2:7b:9b:b9:3a:12:cc:e4:eb:58:d5:ed:5b:37:30:5d:bc:79:
ee:b3:c8:17:63:52:79:f8:ee:bb:ef:2d:d9:68:31:e1:9d:21:
22:4f:55:4a:84:ab:fc:64:64:42:45:ca:22:60:4c:c5:68:8c:
59:b4:d1:c7:96:7d:d4:aa:3f:3c:5b:89:e9:9c:02:5f:c6:54:
d7:e0:98:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:44:49 2025 by rpki-client