Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
File: y5idLhUgGyDjQIjdHARVslRE-Pw.mft (raw, json)
Hash identifier: sUhhWwNB5Kmnio/2RgpOrUevTWE8+KJwBwG7xZdLDuo=
Subject key identifier: 84:AB:06:73:6F:0C:22:A9:FF:41:F9:69:B6:59:0A:25:3D:E8:52:A1
Authority key identifier: CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
Certificate issuer: /CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Certificate serial: 0197703EB57B2024570B33A8E6772F531B5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
Manifest number: 0BCA
Signing time: Sat 14 Jun 2025 21:00:47 +0000
Manifest this update: Sat 14 Jun 2025 21:00:47 +0000
Manifest next update: Sun 15 Jun 2025 21:00:47 +0000
Files and hashes: 1: IlHeExFCZOwDVGR-pn-Mj6btqHA.roa (hash: G3OUewbUbdIfclHozVugqBGDnmkGwJv9DxeJNbUzFpM=)
2: y5idLhUgGyDjQIjdHARVslRE-Pw.crl (hash: mVE/FOY4OMQE4khRr5+JuhQZYGIyKFIRBRZEPu2BxA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:3e:b5:7b:20:24:57:0b:33:a8:e6:77:2f:53:1b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Validity
Not Before: Jun 14 21:00:47 2025 GMT
Not After : Jun 15 21:00:47 2025 GMT
Subject: CN=84ab06736f0c22a9ff41f969b6590a253de852a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:24:61:7f:a5:8e:4e:f4:ad:10:1b:51:e6:b5:
43:d9:0a:cd:88:bd:6f:ac:17:f2:fd:fd:ae:93:25:
b3:9b:30:94:61:25:91:be:47:d0:ab:0d:c2:97:89:
0e:98:ef:a1:10:92:79:37:0a:74:c5:78:a7:6e:ee:
d5:74:97:33:37:39:74:e0:a9:74:43:e6:d0:b0:5d:
21:4e:16:4d:74:02:65:85:eb:b1:d3:e3:e5:0c:13:
29:a9:c8:06:f7:84:31:6b:19:ea:fc:8c:9e:56:79:
4c:95:d8:dc:1d:40:b7:b1:ac:79:c9:2a:2c:b9:46:
d8:15:34:1e:37:b4:8f:96:ad:5e:75:90:6c:01:85:
01:ef:00:e9:c7:24:d2:c7:e6:e4:43:75:ff:ce:27:
7d:3e:26:8a:ba:3f:04:47:39:6b:44:50:68:49:e4:
85:6a:d8:71:b5:12:79:8b:96:2d:67:1c:88:02:8e:
4f:35:6e:eb:c7:ee:25:ef:e7:f9:a0:d4:38:8f:e3:
9c:8d:d0:7b:f6:de:99:1c:e1:a7:03:55:74:87:c3:
15:8a:3b:4f:59:ac:14:3d:4b:7d:75:ff:41:13:64:
db:64:67:7a:1a:dd:eb:fc:18:b3:e7:01:a1:8d:05:
d2:59:f3:28:c1:11:1e:3d:7c:5e:45:62:44:ba:9f:
f3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:AB:06:73:6F:0C:22:A9:FF:41:F9:69:B6:59:0A:25:3D:E8:52:A1
X509v3 Authority Key Identifier:
keyid:CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:aa:4c:fa:e7:a7:ca:dc:bf:16:ba:9a:a1:d3:7b:a3:63:ca:
7d:58:d7:8c:f1:a2:b9:7d:13:c2:43:c5:86:c6:b5:58:ac:07:
52:7e:d9:fb:05:53:da:b7:68:d4:d7:74:e6:d3:3d:cf:e7:dd:
f4:5e:17:dc:83:d8:b8:6f:02:ed:11:eb:6f:eb:38:34:ca:e0:
7d:e8:12:6a:fc:01:da:91:15:c8:b7:6c:3c:58:73:3e:c1:66:
a8:9d:20:d0:2f:d5:e0:3e:0a:df:36:5d:8e:95:2a:ff:ad:82:
23:d5:d1:86:8a:a7:0a:c9:b5:60:49:4f:c6:39:5b:dc:20:45:
0b:35:57:93:3f:7d:32:42:f9:4e:18:60:27:58:73:d2:4a:30:
8a:00:9e:ce:b0:0d:ad:01:99:2c:d9:a7:ab:31:17:e4:e3:5f:
95:14:49:44:0e:ca:e1:8d:85:eb:29:86:77:aa:24:71:fd:86:
f0:38:fd:45:dd:ce:45:77:a5:05:b5:16:81:47:e1:dc:bd:b8:
a7:b9:46:8c:e9:c2:e6:31:10:6d:83:9b:76:64:d5:ff:ee:4f:
ce:f1:33:cb:53:4d:5e:2f:d4:d5:b0:96:01:50:0e:48:61:16:
22:e0:32:cf:cf:a2:a3:f5:2a:6a:e6:80:da:ab:e3:f5:48:88:
93:ca:44:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:06:05 2025 by rpki-client