Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
File: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft (raw, json)
Hash identifier: mVDSufOB0LeXXBbozNtcDkzG7sxETfKi+qoLTSG146M=
Subject key identifier: 9F:AA:46:0A:F8:F7:A4:32:D9:E0:60:DE:C4:84:C3:DF:C9:F5:03:44
Authority key identifier: C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
Certificate issuer: /CN=c8544c778152f0fd85e5dcb44904f001e5987424
Certificate serial: 01976CCFBF5B8FE4043BA81118C20D83EDB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
Manifest number: 063A
Signing time: Sat 14 Jun 2025 05:00:43 +0000
Manifest this update: Sat 14 Jun 2025 05:00:43 +0000
Manifest next update: Sun 15 Jun 2025 05:00:43 +0000
Files and hashes: 1: S6l_0JOcWBI56o1Ky2VXoMdeNbs.roa (hash: Wj6L5jF5/gTOwMGZzw/KKTZV7RAbfIUF0qejcJRN4Ao=)
2: nUgVe_wCiJGaFj6dh7AjUlPsEn0.roa (hash: jaTBLGxMAzmUNw1xz6jc+rhc56U1GYTnqK8npgQkUZU=)
3: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl (hash: ipC7pVRPCXPSKw+ktU8hGdQJUaGknOF0mg/5MFmeMMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:bf:5b:8f:e4:04:3b:a8:11:18:c2:0d:83:ed:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8544c778152f0fd85e5dcb44904f001e5987424
Validity
Not Before: Jun 14 05:00:43 2025 GMT
Not After : Jun 15 05:00:43 2025 GMT
Subject: CN=9faa460af8f7a432d9e060dec484c3dfc9f50344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:49:d7:61:28:7a:a2:69:c9:38:1c:24:a5:9b:
de:37:91:d7:1b:0d:2b:38:a2:4c:32:d8:3b:1b:eb:
38:3b:f8:5d:a8:e2:3e:f3:0c:38:76:7e:21:c2:2b:
33:c9:99:43:be:fd:70:ab:4f:03:27:5e:8e:71:6e:
f9:d9:1c:e6:cc:c6:68:e4:09:cd:1f:eb:fe:1b:ef:
22:ed:99:bb:19:e4:f1:81:6f:93:34:77:09:f2:2b:
35:59:58:88:3d:5b:d2:83:63:3d:ba:a9:85:b1:d9:
b6:b6:31:88:8d:5e:d1:f6:fa:88:5b:87:ef:61:9c:
e5:9d:f8:7e:f1:64:b2:5a:2e:41:5f:1a:de:ae:71:
f2:6b:88:53:f8:8c:62:2a:aa:e1:3c:23:4a:f4:02:
f8:f0:38:fc:a8:e6:97:21:c5:28:44:79:87:a5:9f:
f0:68:98:14:90:51:b0:a9:d8:fa:00:19:5c:56:42:
5c:79:d6:d0:c3:cc:8b:21:23:56:a8:97:dd:d5:08:
91:01:79:d8:fd:b2:0e:08:30:f0:ed:42:ba:5f:d1:
6d:79:29:0f:05:5f:d6:13:bb:83:da:7b:e7:ea:c9:
65:de:9d:aa:0d:0e:f3:93:b1:7e:f0:7a:b2:63:3d:
6f:b0:11:46:32:2e:a9:ed:bc:83:e8:94:de:f0:35:
e4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:AA:46:0A:F8:F7:A4:32:D9:E0:60:DE:C4:84:C3:DF:C9:F5:03:44
X509v3 Authority Key Identifier:
keyid:C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:5a:8b:dc:f3:e2:3c:9c:e2:44:62:2f:5c:cd:cc:19:1d:71:
6d:19:10:ba:4a:3a:3d:3c:54:ad:a7:9f:5f:86:12:25:d4:e9:
2c:ad:03:f8:c1:d2:66:3d:83:3c:86:fd:f7:6e:f9:a0:dc:b2:
a1:f1:ec:d6:fe:f0:1b:ce:a2:60:ac:c8:dd:04:bb:00:87:8f:
7b:bb:e0:4f:6f:42:9e:35:ff:85:18:a5:a6:43:e0:24:34:e0:
5b:72:0e:70:d1:c5:08:f2:7a:3a:bc:02:d5:bc:a0:34:d1:d7:
b4:f7:a5:70:a5:85:f1:1e:70:51:10:14:e1:b4:73:ff:a8:d1:
18:34:61:5e:75:dc:fa:3f:5e:7e:c7:7e:a3:d9:15:98:0f:41:
68:52:c5:0d:02:59:88:b2:b9:b8:23:17:45:8d:2d:c3:f8:82:
38:ef:44:58:23:bf:f0:75:5e:ff:5c:6c:bb:2c:c5:0f:76:82:
c7:8c:91:69:7a:fe:7a:fd:d7:a6:db:31:5b:fb:77:00:3c:71:
05:2f:05:fb:a0:19:03:02:e5:0e:09:68:83:9b:70:d3:5a:68:
34:f6:8c:6b:3c:9e:59:2d:33:18:d8:c2:0c:db:ac:8a:7b:6c:
93:c5:67:81:5f:5a:47:08:01:68:b3:e9:f9:e6:f4:28:15:81:
77:bb:90:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:38:12 2025 by rpki-client