Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
File: y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft (raw, json)
Hash identifier: DhO37vXjMHsNMr8x46VXJoIcFIOPOcxQHavX6Tz56FE=
Subject key identifier: C6:0D:E6:1D:43:81:89:9B:A0:D3:22:F6:A7:3E:E1:78:D3:57:A3:18
Authority key identifier: CB:55:6A:B1:29:90:F1:87:1A:9E:1E:E7:43:96:9A:A8:A2:79:9F:CA
Certificate issuer: /CN=cb556ab12990f1871a9e1ee743969aa8a2799fca
Certificate serial: 01976D3E1FAED25EB7246BDD0819B461B710
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
Manifest number: 14F1
Signing time: Sat 14 Jun 2025 07:01:17 +0000
Manifest this update: Sat 14 Jun 2025 07:01:17 +0000
Manifest next update: Sun 15 Jun 2025 07:01:17 +0000
Files and hashes: 1: y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl (hash: he/1tpAV01hwAyq0n/ld8Ror8q5bB696gYCixLj3Uls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:1f:ae:d2:5e:b7:24:6b:dd:08:19:b4:61:b7:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb556ab12990f1871a9e1ee743969aa8a2799fca
Validity
Not Before: Jun 14 07:01:17 2025 GMT
Not After : Jun 15 07:01:17 2025 GMT
Subject: CN=c60de61d4381899ba0d322f6a73ee178d357a318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:03:fc:fd:7f:69:c5:61:bb:5c:2b:c4:9b:a3:
36:e2:ff:6a:75:48:4d:0d:64:20:66:42:b5:b9:98:
fb:5d:9b:4a:b2:ac:a5:17:f8:5f:95:09:47:f5:b3:
a6:ef:44:28:6b:16:b9:c4:96:fd:7e:4c:9d:41:ec:
93:b7:1a:e1:d2:1c:e6:1f:d4:4d:e0:a7:8d:cf:ce:
bd:94:63:72:22:87:24:1f:ca:95:b1:2c:49:a2:3e:
41:62:c3:b5:63:17:af:07:3f:da:50:5e:a2:87:48:
ba:7b:fd:c9:b2:a2:9e:64:44:f9:3d:43:7c:27:66:
f1:56:60:97:6b:fa:17:e8:30:d2:fd:8e:0a:20:dd:
4f:ac:d8:05:7a:07:9a:db:ed:7a:05:95:45:f8:ba:
33:3d:79:4f:b1:79:d9:4a:a2:e8:cf:78:f8:7d:7d:
12:c3:24:b5:d9:89:16:12:3f:96:92:c9:a9:09:48:
c1:8b:b0:8c:8f:02:ce:a0:a6:26:85:93:ba:ea:16:
ec:62:25:7e:7e:23:cd:87:5c:d3:43:91:ef:e9:47:
bf:e7:cc:89:1a:e3:88:8e:5a:3a:86:21:bb:1d:b7:
23:88:dd:0d:6f:41:30:56:ef:8c:b2:09:0c:4a:56:
32:c8:f4:aa:05:11:7a:33:ff:ea:4c:5b:52:64:60:
8e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:0D:E6:1D:43:81:89:9B:A0:D3:22:F6:A7:3E:E1:78:D3:57:A3:18
X509v3 Authority Key Identifier:
keyid:CB:55:6A:B1:29:90:F1:87:1A:9E:1E:E7:43:96:9A:A8:A2:79:9F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:59:14:22:3a:62:57:be:3b:0e:4a:c2:65:cf:06:96:06:58:
b0:54:3d:8a:9d:e2:1c:fe:e2:94:82:50:03:59:cc:b9:dd:b5:
ff:41:7d:bc:f3:c5:6c:1e:ce:db:a2:3d:b9:11:56:fe:f0:ee:
09:e2:cb:01:42:e6:f5:c5:17:8d:00:39:44:e0:ac:33:78:64:
af:d7:c9:c6:be:d1:9f:a7:6a:8c:8f:26:9d:93:31:72:2b:e0:
31:aa:ac:03:08:6b:53:05:3f:dc:cb:fd:ac:1b:1f:a4:35:0f:
60:f7:70:e2:b5:8b:e7:f5:1c:6b:c6:93:78:89:30:fb:0c:f0:
24:2f:09:1a:b1:c5:f6:7b:b6:b9:9d:07:ce:24:29:20:23:c3:
38:8f:cb:66:fc:c8:00:6f:fb:d2:8e:63:49:6d:c0:e1:a9:83:
17:8e:d5:f8:55:65:d3:d1:2c:36:a6:50:31:9e:52:8d:c9:37:
92:32:fb:ec:62:55:98:91:17:2a:88:06:eb:bd:9b:28:4c:64:
20:11:c7:62:a4:a6:7c:34:0a:cf:9c:c3:87:c1:00:c1:f8:56:
e6:57:0b:80:5e:c5:5e:ba:aa:54:99:7a:74:2a:e2:ac:56:9a:
98:eb:ed:82:42:4f:e0:ff:2b:c8:15:41:c8:5c:ac:4b:b7:ef:
6f:37:01:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:51:48 2025 by rpki-client