Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
File: ygHfSTk2pi4uyamAWo-ja4M1vVA.mft (raw, json)
Hash identifier: bpGtQSnwTIWpPqVrbjzESlrft7G6OyLI8i4WF5Om0Rg=
Subject key identifier: DB:FF:CE:B1:DA:F9:E5:DC:C9:C1:99:8B:97:94:5D:EE:F9:85:7B:60
Authority key identifier: CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
Certificate issuer: /CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Certificate serial: 01976E5084B792749B72701D44F14238DF77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
Manifest number: 071D
Signing time: Sat 14 Jun 2025 12:01:00 +0000
Manifest this update: Sat 14 Jun 2025 12:01:00 +0000
Manifest next update: Sun 15 Jun 2025 12:01:00 +0000
Files and hashes: 1: VJejrkbQcGz8ZtoJmN8x1bw4bkc.roa (hash: fTHkpU+4ZrTAo/sH1aFITBDz8Ocuvc9wBymMbgUJLms=)
2: ygHfSTk2pi4uyamAWo-ja4M1vVA.crl (hash: GYzaUSim0XSEEj7YYDzVom0nnRicXNQRvoWAr5Dcl2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:84:b7:92:74:9b:72:70:1d:44:f1:42:38:df:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50
Validity
Not Before: Jun 14 12:01:00 2025 GMT
Not After : Jun 15 12:01:00 2025 GMT
Subject: CN=dbffceb1daf9e5dcc9c1998b97945deef9857b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:37:dd:8a:90:fc:04:33:15:01:a8:41:82:4f:
fd:5e:b2:94:d8:39:e9:24:24:c1:6b:a0:61:ab:8e:
70:00:5e:b9:20:19:41:6b:3a:bb:4e:b9:57:44:87:
a8:19:b4:44:9b:70:6c:83:ea:f8:71:de:c2:12:18:
97:8e:77:0e:d1:38:d3:4e:01:f0:24:af:84:a1:f6:
3c:46:4c:9d:12:2b:05:83:9e:76:10:c2:c6:e5:e5:
30:b6:7a:d1:58:e7:bf:2d:4e:05:cf:c6:b3:4e:02:
61:51:3d:6e:11:ba:ea:6e:8e:34:92:7b:45:d3:17:
63:2e:f9:61:77:8b:2e:db:b7:22:14:65:cd:c2:1a:
8c:fd:5d:ae:e5:01:2b:b8:35:6b:9d:a0:da:c5:67:
86:53:88:59:2c:04:d2:d5:16:2c:64:36:19:e2:03:
1f:04:c3:53:10:aa:5b:45:e1:cb:d5:2a:94:62:09:
93:11:d8:7c:af:b2:ba:7e:2e:82:3d:c1:d2:7b:8b:
fe:cd:d7:18:bc:da:6a:c5:d9:fb:5e:c5:76:cd:8d:
de:6a:c0:e1:cd:7e:cf:1c:0a:e3:51:03:2f:76:73:
e6:78:2f:29:a2:21:b4:ec:c5:81:3e:9d:56:c7:35:
b2:f5:e0:25:14:2c:c9:ff:63:f0:b0:4c:6a:d0:e9:
be:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:FF:CE:B1:DA:F9:E5:DC:C9:C1:99:8B:97:94:5D:EE:F9:85:7B:60
X509v3 Authority Key Identifier:
keyid:CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:c7:3c:5c:ce:3f:b4:50:a9:46:8a:f9:e7:96:f4:39:05:45:
e9:3e:e1:62:df:38:bc:95:42:fa:34:c6:74:00:8b:c0:b4:32:
78:7a:34:0c:f9:99:b6:c5:89:60:de:c4:4d:06:9c:f7:80:d0:
d0:18:db:c4:03:3e:fc:2c:0b:bc:ef:fc:df:e4:15:0b:00:cc:
9b:de:e8:8f:3b:d5:a1:4d:32:8e:1d:05:ac:7e:d7:d6:cf:ef:
d8:cb:59:d3:d3:a7:b0:e2:64:01:29:c4:86:71:a1:6b:f3:97:
12:51:21:14:c8:8b:6d:ca:3b:07:31:8b:c5:d0:66:22:32:ae:
de:8d:47:71:c3:61:1e:3b:12:19:7f:b2:21:8d:fa:91:21:d4:
85:6a:97:ac:dc:61:a6:c8:c2:82:8b:89:9d:66:2a:42:47:b2:
12:35:ea:9a:33:8e:ad:4c:6b:d7:77:ca:2f:47:48:76:bf:44:
a4:a7:9a:00:4e:e1:cf:b8:3d:b4:6d:e2:5f:78:3e:ed:75:44:
e1:21:e7:00:3c:9b:af:ef:c9:51:8a:a5:3d:e7:58:ff:9f:ec:
32:07:f8:57:a4:c6:35:04:88:31:96:86:c6:e6:b6:4b:94:5f:
f3:c6:1a:c0:6f:8a:9d:c1:e0:ef:97:47:4f:03:8e:32:0e:ff:
17:d1:6f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:45:19 2025 by rpki-client