Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: G3x1Ss+IqYP891LqkXctdDSSbJnqnqCBdkoDscIppIs=
Subject key identifier: 7F:33:09:6D:35:37:68:70:0E:82:92:44:68:A4:B0:B4:50:8E:AE:18
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 0197778AB5223669C547B8B31149EDD47D2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 05B5
Signing time: Mon 16 Jun 2025 07:01:08 +0000
Manifest this update: Mon 16 Jun 2025 07:01:08 +0000
Manifest next update: Tue 17 Jun 2025 07:01:08 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: ip8DmKLWOa/OwOmmJ2EpN/23kC5w6hmDRw81PwlCCpE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 06:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:8a:b5:22:36:69:c5:47:b8:b3:11:49:ed:d4:7d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Jun 16 07:01:08 2025 GMT
Not After : Jun 17 07:01:08 2025 GMT
Subject: CN=7f33096d353768700e82924468a4b0b4508eae18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e0:86:50:af:6b:50:78:8c:14:35:3f:ca:7f:
97:8d:1a:93:62:22:e0:8e:a9:32:02:8c:b7:aa:0a:
54:47:89:d9:e6:86:2d:af:2a:a4:6f:6c:da:1c:07:
b7:37:a8:39:4f:2a:47:85:b9:f9:95:8a:e2:3a:3e:
2c:7c:1d:b0:89:67:58:6d:ee:4c:88:46:87:eb:73:
b0:64:b5:22:5f:6a:c9:60:7b:d8:9b:be:5b:a5:5c:
a7:88:35:6c:6e:5f:89:58:ca:c3:0e:3b:d7:c1:53:
92:78:47:a9:36:13:ed:f6:04:47:25:6b:8e:0d:05:
25:9f:78:ca:16:a1:59:ce:7d:2d:30:d0:b6:41:e7:
c2:05:f5:9e:0a:a2:5f:a8:b5:05:86:da:9a:d6:88:
66:ca:1e:e2:13:45:50:ff:57:c2:29:c7:ef:fc:07:
1b:9c:f3:21:ef:60:38:bf:c6:b0:ae:dc:ca:41:d7:
3f:3e:c2:71:7a:ad:7a:81:58:98:c1:f1:fc:d1:aa:
9e:57:39:62:0e:f0:84:47:92:93:bf:ac:05:f0:a5:
59:60:d9:82:27:ae:ff:10:5f:73:eb:a3:b0:7b:8b:
bd:59:ae:41:46:22:31:47:c2:8c:fc:40:22:1e:81:
b9:ad:81:85:b7:fd:e4:6a:6d:9c:51:10:2b:1e:5c:
f0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:33:09:6D:35:37:68:70:0E:82:92:44:68:A4:B0:B4:50:8E:AE:18
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:c7:30:9d:54:05:ef:d3:48:d1:1e:99:29:be:1e:e0:24:58:
ed:e2:1d:39:3e:0a:10:a1:f3:00:23:1c:bf:85:58:74:ee:2b:
d2:13:78:f4:84:7c:16:3b:a7:db:ee:fa:24:44:fd:dc:d1:d9:
cb:2b:e9:24:69:4f:40:92:c2:ac:83:53:ef:c2:2f:de:e6:a3:
5a:87:82:40:93:63:27:5a:b2:2c:0d:95:a9:82:2e:23:de:6a:
f9:dd:37:b7:d3:f6:15:05:4d:47:1e:d7:f6:2f:33:c8:d3:79:
4f:a7:34:95:5c:24:c8:8f:c9:fe:30:13:13:f2:18:db:0d:05:
f3:8e:86:d2:ef:2a:9f:67:47:0c:d4:34:51:29:dd:90:19:ee:
3a:eb:2b:bc:be:ca:0a:7a:7b:9f:85:b9:84:de:4f:e9:e8:2c:
6a:2b:48:59:fb:e1:97:d3:6f:b6:a5:fe:9e:73:ac:7d:af:ed:
41:04:65:b0:42:2b:89:60:2d:2c:05:0e:16:2c:8b:40:14:2d:
82:a2:b7:64:1e:fa:d7:db:79:d7:a4:27:f2:52:93:49:67:62:
2a:50:df:5d:fe:f2:d2:70:5c:e0:7c:23:8f:52:3f:14:cf:05:
49:92:eb:2f:c1:42:18:ca:89:fa:94:cc:4e:c0:43:ad:22:50:
b4:3c:d5:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 09:25:54 2025 by rpki-client