Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
File: y9_OOlNV-GH9xIwyASx4ydr5paQ.mft (raw, json)
Hash identifier: GwkKdcSvSuQFYq9bqfbEzBs4jDDg/DWgkWRllzWwQPM=
Subject key identifier: FF:DF:89:D6:2B:C4:44:11:50:17:72:51:0D:12:D7:1B:3E:B2:B2:AB
Authority key identifier: CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4
Certificate issuer: /CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4
Certificate serial: 01976F629C1E727652C63AC5D09A74862E5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
Manifest number: 1579
Signing time: Sat 14 Jun 2025 17:00:22 +0000
Manifest this update: Sat 14 Jun 2025 17:00:22 +0000
Manifest next update: Sun 15 Jun 2025 17:00:22 +0000
Files and hashes: 1: mkk-KHtVpdSjRTu_tkkdV37L-30.roa (hash: ivbrYqlxOhyTn42BC3RV5SMdz9F9dKpqo8vRZ2G2vog=)
2: y9_OOlNV-GH9xIwyASx4ydr5paQ.crl (hash: 4430nyBn7pWBZN2It8CIqhOQ8Vg0P1ZIjQ0/ugYVtIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:62:9c:1e:72:76:52:c6:3a:c5:d0:9a:74:86:2e:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4
Validity
Not Before: Jun 14 17:00:22 2025 GMT
Not After : Jun 15 17:00:22 2025 GMT
Subject: CN=ffdf89d62bc44411501772510d12d71b3eb2b2ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2f:a8:5a:69:b1:9e:e7:d5:af:c6:90:59:a3:
6b:a2:c0:14:a6:46:b5:e2:28:14:74:f1:45:23:b5:
bd:3c:cc:43:e3:2b:fa:d1:99:e5:28:e8:33:75:32:
9d:6f:88:10:b1:7e:31:c9:77:17:7d:b4:e6:0b:9a:
7a:cc:91:06:8f:8b:83:b1:46:20:2b:13:00:d0:54:
96:6c:c4:21:56:61:4e:e3:01:8e:5a:22:43:e2:3a:
dc:ce:cc:b7:0d:64:76:33:c1:a3:ac:f3:0b:ef:26:
bc:25:af:bd:e8:29:97:dd:e3:05:16:bf:15:7e:5c:
ab:82:29:17:1e:3e:fb:80:3c:1b:42:39:64:c1:cb:
7b:a9:7d:d1:fa:78:74:bd:f0:0e:f9:6c:cc:f3:ce:
76:b0:6a:40:c4:1c:0b:3e:e1:a9:08:3d:6b:25:ea:
bb:d6:4e:02:66:eb:3e:e8:69:51:23:7c:48:96:dd:
bd:5d:f9:38:c2:72:91:70:2f:08:3d:60:99:5f:82:
7d:69:a7:45:dc:f2:62:fa:bb:08:e7:ae:f6:32:a5:
93:1c:8d:01:41:4f:50:eb:89:cb:1a:0b:6a:02:83:
22:f3:e2:c5:c4:9e:f2:cd:d4:81:f9:ff:ee:d2:cf:
7c:23:62:1a:d8:ba:c9:56:35:37:88:ca:c9:9a:bf:
f0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DF:89:D6:2B:C4:44:11:50:17:72:51:0D:12:D7:1B:3E:B2:B2:AB
X509v3 Authority Key Identifier:
keyid:CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:2e:7c:f2:70:4d:7d:7a:d6:3f:68:3d:ce:68:a1:ce:61:a5:
5c:a5:3d:8d:b4:e2:c6:0a:52:18:38:b9:68:23:4d:16:49:8a:
97:6e:54:87:17:60:50:35:23:c6:63:3d:fb:76:f5:34:4b:29:
c2:b0:71:da:20:e9:84:ae:b0:0e:c6:0a:ae:40:a6:eb:5f:5c:
67:dd:3e:36:e9:eb:00:b3:c6:38:71:04:24:10:bd:01:1e:1e:
4a:a7:9b:80:0a:06:40:df:0a:38:32:75:22:6d:91:40:f4:6e:
30:26:13:18:6c:13:bc:2b:b0:fc:86:c8:d6:46:b8:84:18:68:
1e:b8:f8:e3:07:4f:ed:77:8d:fc:be:36:19:9d:cd:72:86:00:
3f:d1:22:5f:f1:c1:0d:58:12:e0:88:9f:2f:42:70:ef:56:09:
b1:7b:30:07:cf:82:c8:87:5a:35:6d:f8:56:07:d4:6b:df:2e:
ad:a3:82:4b:24:69:3f:52:94:4e:90:46:0f:29:83:44:ae:2b:
b7:5f:a3:db:de:11:cd:87:90:5e:66:fb:77:3e:03:9a:0d:90:
9e:6d:5a:de:37:a5:12:c8:cf:cc:83:5e:09:92:4e:f0:3c:8f:
86:b8:1b:ed:4b:a9:b8:15:37:67:b9:05:fc:ff:ed:d5:07:e7:
60:2f:c1:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:07:43 2025 by rpki-client