Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json)
Hash identifier: P2cJe7ZgtqksPJ6CiIloUbLcXqArEGtNGshicNT07F8=
Subject key identifier: BB:6B:65:F5:57:8C:CE:E8:8E:44:87:2D:B0:58:07:BB:20:5C:A3:A7
Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Certificate serial: 01976BF45677E3C3D6ADC1B9DDA07CE4651A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 01:01:04 +0000
Manifest this update: Sat 14 Jun 2025 01:01:04 +0000
Manifest next update: Sun 15 Jun 2025 01:01:04 +0000
Files and hashes: 1: UvHXXFoVL7W8kRf_CmjRtC48uH4.roa (hash: E8q/i3b6Anio6852XqG98vgAFVWa9Xn560kQh/u0aSY=)
2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: YGN6+nsoHsgGBuvRgZSQb7WHsszLurDiZHcPpaThXCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:56:77:e3:c3:d6:ad:c1:b9:dd:a0:7c:e4:65:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Validity
Not Before: Jun 14 01:01:04 2025 GMT
Not After : Jun 15 01:01:04 2025 GMT
Subject: CN=bb6b65f5578ccee88e44872db05807bb205ca3a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:01:2d:71:bf:ae:0b:51:5d:94:85:37:6d:b7:
23:96:c6:40:d2:98:b7:b3:49:c2:5d:ae:b6:61:1c:
8b:9c:99:64:20:8c:dc:73:08:65:29:89:7e:10:0d:
77:67:7a:e9:95:8f:d1:d6:53:84:bc:b3:81:1d:ad:
27:93:df:67:9c:d5:5e:2d:b1:7c:6e:d6:bb:49:24:
d4:e3:1e:e5:09:85:9b:50:bc:50:55:c9:f0:17:29:
1e:8c:7b:fa:5f:77:93:45:8c:e6:77:24:9c:1a:43:
09:29:11:f8:99:14:24:cc:b3:ad:d0:2e:15:31:41:
fe:58:17:c9:b1:9e:d5:c6:69:a4:33:7d:65:c2:6b:
fd:09:49:f1:17:d2:17:29:dc:6f:98:e4:81:54:2a:
99:bf:61:7d:75:4b:c0:08:f1:de:94:ed:e2:f8:81:
76:17:ab:2a:ef:2e:f6:c9:b1:76:4b:b2:3c:fe:b3:
82:2d:d1:ce:55:f5:5e:fc:a3:ed:d0:0a:90:ec:73:
17:b6:ec:e7:63:67:99:51:44:c7:54:5d:5f:56:ea:
b8:4c:33:eb:50:9c:c4:ba:a6:3f:1d:d1:29:1a:89:
bd:11:aa:b0:9c:0a:4a:5a:63:4a:89:e9:1b:4a:83:
35:97:b1:02:a5:6c:5b:8e:9c:ed:46:17:f4:0a:d4:
42:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:6B:65:F5:57:8C:CE:E8:8E:44:87:2D:B0:58:07:BB:20:5C:A3:A7
X509v3 Authority Key Identifier:
keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:2a:37:3b:38:f1:fb:e6:38:fa:d6:f8:79:9a:96:e1:1b:28:
80:b8:23:cc:0e:68:5c:41:34:58:62:76:ff:59:77:a4:ae:04:
f0:e8:9c:89:b2:74:d5:41:5f:78:23:06:d3:28:a9:70:68:67:
7b:a5:25:f3:c8:83:31:fb:d8:d8:93:e7:76:51:0d:8d:95:c5:
d1:85:f3:c1:65:55:11:e0:88:3a:33:5f:f1:84:91:aa:25:3f:
ae:16:66:b6:0e:60:49:c9:8c:b2:f8:48:12:5f:99:ed:7d:3b:
65:6c:7a:aa:cb:ea:59:f1:42:67:29:27:55:6f:5b:1c:24:73:
49:32:aa:ff:84:ee:ea:54:74:fe:c5:65:34:86:7c:cf:83:d2:
63:57:93:e0:25:36:19:74:3e:c0:a5:1f:34:81:42:fa:92:c3:
c8:f0:84:e7:c8:76:0d:40:19:7c:47:d7:80:50:a9:a5:0a:30:
1f:4a:cd:99:ff:03:c8:14:d1:f3:b9:86:90:d2:62:0c:f4:6e:
46:fe:e4:54:48:ca:ec:4b:aa:6b:de:d2:9c:38:e8:90:64:4d:
bd:a2:ac:50:b3:bb:b7:b7:06:f0:c5:04:3b:8f:a2:e0:4a:3e:
68:0c:86:66:5b:1c:56:75:90:8b:45:e8:ac:e0:51:a2:c8:b1:
6c:7d:87:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:58:27 2025 by rpki-client