Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
File: yniqfjFrIfhDz7lYEMaAzdv6bm8.mft (raw, json)
Hash identifier: rOSvTUIXWZ35r26bmwIlf4G8NqwDC7vMw0keHAetgpg=
Subject key identifier: 13:73:C1:5A:F5:1C:06:99:08:C3:A9:27:CE:8A:90:D8:24:84:4B:8B
Authority key identifier: CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
Certificate issuer: /CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Certificate serial: 01976BF446CF33DDCEFEDAAE8BF9BB2CA3DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
Manifest number: 02DF
Signing time: Sat 14 Jun 2025 01:01:00 +0000
Manifest this update: Sat 14 Jun 2025 01:01:00 +0000
Manifest next update: Sun 15 Jun 2025 01:01:00 +0000
Files and hashes: 1: KmT0zBeAxHbx64CqcJ4Kw-HSMGw.roa (hash: g294VQOsqRVKkLhlE8NKqam6KvGQ9H8e4fukJsFTk1Y=)
2: yniqfjFrIfhDz7lYEMaAzdv6bm8.crl (hash: 8hAugffpmlYRJZsIaacJMrSbVlQ6WkIW6E0+a9/vL5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:46:cf:33:dd:ce:fe:da:ae:8b:f9:bb:2c:a3:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Validity
Not Before: Jun 14 01:01:00 2025 GMT
Not After : Jun 15 01:01:00 2025 GMT
Subject: CN=1373c15af51c069908c3a927ce8a90d824844b8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:74:80:9a:b4:4d:0b:83:96:ff:04:f4:9e:7c:
c8:52:e9:56:8b:ca:ae:4f:4a:ea:90:5b:39:8c:6f:
92:70:d1:81:d0:9e:7b:59:19:32:72:ba:1c:fd:98:
ab:dd:0d:dd:ec:72:ad:41:f8:c3:a3:1b:39:7b:92:
94:cd:ab:86:2b:52:a7:2d:2e:d8:5e:04:e7:7d:da:
4f:ac:7f:27:6b:aa:be:d0:40:3c:cb:cf:ee:e2:a6:
10:0e:ae:e5:d4:a4:b2:2d:c5:b9:3a:61:4b:8d:c9:
73:4e:83:f1:cf:d5:16:16:80:df:0b:9f:38:af:ff:
2c:54:0d:8e:e1:fb:28:32:f1:51:24:5f:3f:5d:52:
ec:c6:3b:d3:d2:37:15:3b:58:1e:b9:97:b7:c4:8c:
c5:63:01:3c:32:f4:20:05:3e:b1:b3:16:9d:c3:d0:
6a:65:ff:65:9f:62:8f:12:5a:db:ab:be:e7:5c:f0:
5b:d5:9e:61:6d:fe:0f:7e:c2:f5:6f:1f:ba:95:75:
23:31:7f:4c:2c:43:4d:ef:48:39:a3:cc:78:51:b0:
9f:49:87:6d:f3:d6:ce:8c:e0:69:c0:d8:28:10:fc:
11:d4:1c:80:c4:32:6c:c2:81:1c:e9:70:50:bf:e2:
e3:31:63:67:a5:7d:39:9f:8a:f9:7f:43:f7:3a:ab:
ea:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:73:C1:5A:F5:1C:06:99:08:C3:A9:27:CE:8A:90:D8:24:84:4B:8B
X509v3 Authority Key Identifier:
keyid:CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:15:28:03:ec:ab:23:fe:6f:ba:a4:84:55:81:bc:c0:24:4f:
da:3d:8a:53:0a:05:f6:8a:65:96:f0:78:38:48:e6:d3:92:ab:
8c:c6:93:38:e4:60:8d:80:8c:18:0b:5f:88:da:20:ab:1f:c6:
39:aa:f4:99:a2:8c:46:9e:87:0a:b8:58:9b:92:2c:a5:f9:6f:
0c:03:0d:30:7b:62:24:65:3d:9e:e4:84:7f:c9:90:29:ae:84:
79:4d:72:1b:3e:bf:f0:e6:da:10:f1:10:7b:06:b1:16:47:bb:
43:5d:f6:f4:58:e5:c9:44:c4:65:50:df:c1:d2:f6:d0:8d:22:
22:bb:d3:fa:af:80:cb:a8:b2:38:54:08:21:a1:bb:87:06:0b:
49:92:b8:71:c2:a4:80:c4:c9:52:97:5c:ab:ab:73:98:23:ce:
b4:88:78:c5:3f:02:72:86:84:dc:fd:51:c3:fc:97:59:6f:92:
84:d8:d8:63:e1:e1:76:4e:71:40:1b:7a:e3:67:d1:84:f8:fb:
9f:8e:40:78:66:f9:47:e8:7d:48:49:de:8d:a1:a0:5d:6e:17:
ed:55:14:2a:c6:f2:8f:c5:b7:f3:f7:11:f9:5e:7c:e2:33:a2:
f7:14:10:23:ad:b7:ce:81:90:b7:83:81:a2:8c:b2:f5:f4:60:
e3:ce:9d:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:23:39 2025 by rpki-client