Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: YpJ1wR+6lE8oBhmeg1XhdPqDs7cXiiCZFb4IOT30h+k=
Subject key identifier: 63:09:71:B8:04:44:65:AB:06:2B:A9:3D:F2:DD:7A:07:2C:53:F0:EE
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 01976EBE49C84BA8F69E56CA6385496EFCB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 01A7
Signing time: Sat 14 Jun 2025 14:00:53 +0000
Manifest this update: Sat 14 Jun 2025 14:00:53 +0000
Manifest next update: Sun 15 Jun 2025 14:00:53 +0000
Files and hashes: 1: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: aAD/Yqiic3+WuYnHpERbJRnoSFewohTfYay5AFg6LgE=)
2: zIZvUw6LEttnk9GqCkFL8S-ncbM.roa (hash: g5dRThI/Wu6nM24igsF8Y2hQEgVjjdxUN3aRLJWGc3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:be:49:c8:4b:a8:f6:9e:56:ca:63:85:49:6e:fc:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: Jun 14 14:00:53 2025 GMT
Not After : Jun 15 14:00:53 2025 GMT
Subject: CN=630971b8044465ab062ba93df2dd7a072c53f0ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e9:f6:b4:61:ce:a3:38:18:2f:17:78:73:5e:
3f:94:50:c5:03:11:b2:b5:b5:3b:5d:4d:45:92:e5:
a7:45:12:1a:e1:2c:53:bc:7b:a8:9e:ae:f7:4e:b0:
d8:e7:1f:a2:ad:69:d9:5d:ba:c9:9f:52:8d:35:d0:
ff:24:11:1f:75:17:e4:90:dc:33:24:77:6f:b6:20:
b1:aa:4f:18:fb:56:01:2e:7b:54:98:b1:7c:6a:1c:
8f:c4:27:36:5f:c2:df:62:0d:d5:1f:0d:f7:80:c9:
a8:23:a7:55:16:04:92:40:5b:2a:22:03:55:8a:55:
ab:7d:ae:db:9d:4c:7f:ca:01:7d:f8:ce:2a:8c:49:
56:37:a1:3c:9d:f3:f7:b6:67:13:99:04:05:3c:e9:
2b:93:58:9a:ae:78:fc:ea:e4:d0:65:04:be:8f:c9:
a9:fe:57:59:c3:3c:66:89:7e:d8:34:d5:d6:52:7d:
24:fc:9f:b1:74:83:00:a6:95:ba:34:b8:eb:ed:43:
29:7b:9a:7b:a7:88:fa:eb:53:37:3d:7d:10:f0:8a:
7f:23:cc:f4:69:20:4a:7f:be:19:64:b2:3b:81:ab:
25:fd:c2:73:f8:64:a9:bf:75:af:40:38:10:3c:d7:
b8:92:97:93:7e:82:87:94:ed:46:10:7f:c2:a9:8b:
74:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:09:71:B8:04:44:65:AB:06:2B:A9:3D:F2:DD:7A:07:2C:53:F0:EE
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:5b:c7:01:52:17:23:9b:bf:52:aa:f4:7c:dd:35:ca:8e:13:
bc:1e:68:94:46:e1:1d:69:34:80:e8:33:78:71:b7:2e:ea:20:
27:54:79:ba:80:2d:99:39:1c:60:5e:84:28:94:58:72:46:7c:
59:86:82:77:a5:11:64:e3:1a:ac:13:30:61:37:48:b1:ab:9f:
54:a8:ca:ce:86:b6:84:48:5a:4f:0f:7a:4d:87:de:22:61:a8:
7e:5b:bd:43:7c:c3:e7:2f:37:a2:8a:66:40:17:41:27:34:ec:
48:4d:c4:32:fe:b4:86:1c:7a:32:ff:dc:bc:66:bc:7a:c5:2b:
7e:c6:2a:40:26:fc:cb:2e:57:94:93:29:b8:e5:46:05:18:69:
56:de:d7:80:58:78:14:f8:80:ef:4e:67:fb:35:73:7f:75:37:
51:04:65:87:af:67:52:ad:31:45:63:0a:79:5b:fa:36:e5:5f:
0a:cb:53:e1:c8:e7:0e:fb:fa:e3:74:a5:68:5a:cc:d3:5e:72:
ad:f9:72:e0:70:1e:77:9c:40:fd:38:0e:b8:37:8a:01:b2:70:
dd:eb:0a:00:e3:39:2d:d0:b3:36:d3:a9:22:9f:03:56:46:24:
25:c4:84:5a:76:6b:4b:ed:7d:a6:9a:25:da:39:d2:65:12:16:
65:89:7c:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:38:27 2025 by rpki-client