Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
File: yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft (raw, json)
Hash identifier: CBCsIdxtWfGj7lJl7RRHwWDYjHlb26sft+xc8UGq4G0=
Subject key identifier: B2:2F:57:6E:D5:A8:B1:B3:1B:04:A2:B1:03:40:81:D4:B9:07:29:10
Authority key identifier: C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
Certificate issuer: /CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Certificate serial: 01976D3D8995CF8F802C33DC6535E5A259BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 07:00:38 +0000
Manifest this update: Sat 14 Jun 2025 07:00:38 +0000
Manifest next update: Sun 15 Jun 2025 07:00:38 +0000
Files and hashes: 1: fewPOq5Sy5alJvzpYZYieD6pmV8.roa (hash: nQVFjlDzgmj3SLHG29wBX3sEI4Pk0MW5juplwGFMB6g=)
2: yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl (hash: wL3YEN9c3/WZG7+p4nsywsZ1zrtYdwclklrO+m1UDy0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:89:95:cf:8f:80:2c:33:dc:65:35:e5:a2:59:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Validity
Not Before: Jun 14 07:00:38 2025 GMT
Not After : Jun 15 07:00:38 2025 GMT
Subject: CN=b22f576ed5a8b1b31b04a2b1034081d4b9072910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c2:5d:81:60:d0:be:6d:7e:c4:f2:41:a6:2b:
d4:eb:f3:d1:91:f4:5a:bc:90:99:b8:ad:b1:ca:10:
0b:fd:07:cc:bf:cc:75:2d:89:e6:5e:fa:d5:18:7c:
12:15:0e:e2:00:cc:ad:76:b4:36:db:76:34:8e:74:
f6:43:d2:d9:2e:57:11:c6:91:de:3d:fa:5f:6a:db:
52:76:b6:95:03:28:04:2a:ba:b2:e1:93:38:64:c0:
5e:0f:23:64:ee:0c:93:07:f0:4e:86:81:f2:f5:7d:
31:44:a9:2a:07:4d:ad:c4:de:87:c6:2f:c2:60:2b:
9d:34:6c:36:d6:67:02:4d:c3:cf:96:cd:e0:d9:a0:
14:bb:87:9a:39:c2:58:de:fc:a4:13:06:56:1e:4b:
e5:a8:23:f2:b9:29:c8:67:33:e0:b5:81:96:f4:70:
03:a5:28:62:06:a6:bb:1e:94:25:e2:36:69:7c:e5:
f1:d8:04:25:56:ef:7b:10:d9:46:fc:c4:72:7c:6a:
65:ca:83:52:57:04:1a:38:b0:35:9e:b4:2d:d5:7e:
07:19:76:9f:92:91:8e:2a:4d:2d:f8:ec:64:6a:19:
4f:0d:a1:b0:af:2e:7c:8a:c1:01:5b:88:b2:99:60:
d1:da:2a:de:64:65:d9:d5:06:e7:28:d2:1a:03:66:
cc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:2F:57:6E:D5:A8:B1:B3:1B:04:A2:B1:03:40:81:D4:B9:07:29:10
X509v3 Authority Key Identifier:
keyid:C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:3f:96:1d:22:9a:90:7a:8b:35:53:4e:2e:e9:3e:c6:8c:96:
66:b7:ae:fe:3b:59:29:a6:de:23:4f:81:1e:42:ac:46:00:64:
5d:2c:db:2f:ba:5a:78:5f:66:af:ab:cb:87:9a:3f:5e:8a:7e:
5c:0f:e2:f7:a1:61:46:40:a1:bf:a7:c8:a8:4b:22:b4:ca:8d:
1c:6c:a5:67:9c:e2:ac:5f:35:b3:0f:42:aa:9f:a0:7c:46:70:
79:92:ca:8d:7e:5a:e0:04:51:b4:a9:0b:2c:09:bf:33:96:81:
8b:2f:8c:2c:ad:02:5d:ac:ed:4d:36:56:ed:86:30:20:6c:69:
26:ad:7f:19:62:9d:99:7d:85:dc:c0:26:02:77:c1:33:92:62:
c9:66:2b:18:d6:e4:ee:0c:da:a9:e1:01:5d:60:21:ae:95:ba:
3f:86:cf:80:c3:08:fc:47:96:1e:da:a2:be:35:d9:8a:3d:f7:
a8:38:7b:ff:b1:c5:f3:cc:2d:e9:6b:7f:d2:d8:c6:69:e4:1e:
c0:9e:a6:ae:05:22:fc:0e:f0:76:03:c5:ed:a6:40:89:13:3f:
54:67:92:c6:c5:03:b5:0e:7c:88:7f:a5:87:f6:78:06:25:63:
f8:d8:a8:01:08:81:ab:fe:e3:f1:f6:cf:8c:fc:4e:8b:73:5d:
81:2f:21:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:26:30 2025 by rpki-client