Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
File: YGhXxDyh3wTLaaSgqshim98ydWs.mft (raw, json)
Hash identifier: X4VumidvvxeyyXxatenkCqHO2zGIRsi9cypcsPHpEFM=
Subject key identifier: B2:27:08:13:8B:18:78:6D:C3:F3:EA:DA:39:C2:13:4D:EB:39:DE:E2
Authority key identifier: 60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
Certificate issuer: /CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Certificate serial: 01976C61FE709A60F14CF0D1BE12AE6A11F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
Manifest number: 1245
Signing time: Sat 14 Jun 2025 03:00:50 +0000
Manifest this update: Sat 14 Jun 2025 03:00:50 +0000
Manifest next update: Sun 15 Jun 2025 03:00:50 +0000
Files and hashes: 1: XuX7uT8cb5cVhdOXna_jZRuc6JE.roa (hash: 6nSukjm2iQoWm9SssGRSJpva0KahTxgtp11M/o63UVs=)
2: YGhXxDyh3wTLaaSgqshim98ydWs.crl (hash: si1wUZMl7jzsh+4zyge63oMmY6LlKpKJzI4jza/AKG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:fe:70:9a:60:f1:4c:f0:d1:be:12:ae:6a:11:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Validity
Not Before: Jun 14 03:00:50 2025 GMT
Not After : Jun 15 03:00:50 2025 GMT
Subject: CN=b22708138b18786dc3f3eada39c2134deb39dee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d3:a4:e8:b2:51:fe:19:de:ad:ea:92:d2:70:
bd:f9:1b:0d:2f:b1:5e:12:0f:14:de:8e:90:1b:98:
05:ba:bf:ce:91:6b:4b:39:49:f7:0f:9a:ea:03:90:
09:51:f1:de:73:7a:53:40:4d:73:38:a1:9c:70:61:
cf:1d:c4:82:80:2e:78:77:49:a7:ce:cc:ff:59:a9:
45:8c:52:61:e4:1c:fc:7e:ef:26:42:45:52:50:03:
15:65:9c:a3:b1:ae:fa:e8:16:85:c3:b4:e4:01:8f:
d0:93:c9:49:56:5a:47:cc:b8:f2:3a:b1:f1:f3:b0:
ba:fc:41:f1:ea:d3:56:de:8c:c8:c6:da:73:44:49:
fc:ce:b9:be:c7:89:8f:8c:46:84:a4:16:bc:16:ec:
b2:00:97:8f:e0:40:8c:9c:8b:f4:61:29:e3:c5:90:
9b:4f:fb:f8:69:36:92:53:9f:ed:3b:c4:96:ef:14:
f3:0d:a2:61:9b:6d:e6:78:3c:e5:a1:a3:50:8a:e5:
18:eb:44:fa:17:fb:8e:9f:b1:03:51:d5:eb:22:d0:
ca:b9:a1:53:46:b0:80:4f:a6:50:af:47:16:c7:ca:
88:bf:27:0e:88:11:b7:59:2f:8c:3d:9a:45:5d:2f:
70:a3:a5:2f:36:53:64:3e:d1:74:0e:5c:f8:9f:7f:
e4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:27:08:13:8B:18:78:6D:C3:F3:EA:DA:39:C2:13:4D:EB:39:DE:E2
X509v3 Authority Key Identifier:
keyid:60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:44:46:95:ae:ac:4f:8f:4c:20:05:96:29:db:43:36:c5:26:
25:ed:6f:97:4d:9a:70:90:a1:8d:dc:d7:2e:40:4f:d6:be:04:
e5:c5:73:f0:aa:86:07:e8:73:43:fc:d6:a9:3f:42:7e:96:7b:
2a:84:92:ab:86:22:b6:0b:8d:14:6c:e6:10:34:7b:0f:6b:c6:
1c:ad:d8:b7:3b:18:90:61:05:74:a5:90:c8:19:ae:fc:43:2c:
d1:fb:c6:af:61:7c:73:07:3e:f5:0e:94:d7:2a:6e:09:78:c4:
87:f7:46:aa:91:df:f1:85:19:f5:a3:b3:54:10:59:13:27:3a:
88:d4:aa:23:4f:dc:e1:3e:93:69:9e:cf:b0:2c:03:60:de:21:
51:f9:8d:1d:33:f8:ab:76:5b:21:29:69:40:1a:ce:76:fa:6f:
f5:cc:00:18:0a:b8:77:3b:b0:22:f0:6a:1e:2a:dc:ae:3d:a5:
d8:7c:0e:70:5c:69:93:75:66:9d:22:b9:d2:ad:53:29:fc:64:
2c:02:24:2c:91:63:01:4a:6e:a0:31:dc:aa:e5:d8:ab:f5:66:
4c:7e:98:25:62:55:80:7f:e5:78:6b:45:f7:ea:b4:11:0a:84:
7c:41:77:e9:28:b9:7a:c7:e2:77:0b:4a:bd:6f:4a:be:1e:34:
61:8d:0f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:06:25 2025 by rpki-client