Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: 9lKJLS4FEmobAq6LfWfhhRq89TQ1vBUQonpnwAC5bU4=
Subject key identifier: B6:52:00:97:0E:09:10:D5:7E:46:AB:8F:0F:E3:1B:5E:B7:D7:3C:AD
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 0197684E8531A959FD688E8C89AD3E676C0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 03B4
Signing time: Fri 13 Jun 2025 08:01:05 +0000
Manifest this update: Fri 13 Jun 2025 08:01:05 +0000
Manifest next update: Sat 14 Jun 2025 08:01:05 +0000
Files and hashes: 1: 8tq6vUxikXVafkdQNOumeQjFfpc.roa (hash: UpmsMokgr2OHdk8MVVsUZdaiVZYh5g21JKYfdCc4ZA8=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: zcGGaGI1XDXZVTy3ZNRT/ZCy0SWf38KM06jFMUgYAjY=)
3: j89ASOslTb0sA8qPaNCnvdarbHI.roa (hash: pTH6+0WVaBMdNBqgh83yrPXmlHTEaPDbAotvSzt0CT4=)
4: vSrVfCiFhwuThaFge_HlQGTrHjk.roa (hash: Bc63krCzWLaf7LOD/k916HgQOiH2H7M6asbeefYBGos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:85:31:a9:59:fd:68:8e:8c:89:ad:3e:67:6c:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: Jun 13 08:01:05 2025 GMT
Not After : Jun 14 08:01:05 2025 GMT
Subject: CN=b65200970e0910d57e46ab8f0fe31b5eb7d73cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8d:35:29:8e:38:57:d1:73:15:8a:df:ef:74:
1f:04:13:dd:4e:ce:0a:de:71:1c:a5:1a:1d:59:81:
a0:7b:1a:98:7c:59:ac:e8:2b:da:1f:3d:b2:37:3b:
bd:42:0f:bb:ac:ed:60:ab:ac:42:79:36:4e:83:07:
e3:ff:aa:0a:65:70:fd:74:c3:ec:a3:df:af:59:46:
08:a4:b5:ae:9d:d7:13:ff:8b:c0:a0:bf:b0:22:0e:
0b:2e:29:e5:d1:95:71:05:ee:f8:90:81:ab:55:bc:
89:0a:e6:3b:3f:4c:a7:d9:5d:87:05:46:cc:8f:20:
7f:d5:b5:4f:93:27:9e:7a:e0:7a:1e:75:0a:1f:bb:
6d:ea:2f:e8:9c:5d:4a:91:ba:25:e4:ed:c0:63:6a:
5a:a0:30:f3:d5:4f:36:9f:ed:4e:ed:77:c7:64:2d:
0b:fa:10:a1:91:c9:3f:12:fc:00:48:ba:e0:41:18:
e1:87:ac:ed:10:30:9a:56:05:06:33:d3:b8:87:aa:
30:2b:9a:37:2b:0a:76:66:e1:5c:d8:e9:07:2f:c9:
f4:78:2c:a9:ea:a4:ab:67:d9:6e:ca:a8:6f:d2:4c:
ce:31:58:9d:cc:eb:a8:e2:cb:c7:b7:f1:09:7d:69:
20:77:5e:bb:de:a3:41:d2:cb:d4:32:33:ac:2a:09:
cb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:52:00:97:0E:09:10:D5:7E:46:AB:8F:0F:E3:1B:5E:B7:D7:3C:AD
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:c4:30:d0:07:73:67:a9:7e:21:7f:22:ea:1a:88:7b:ab:8e:
ec:54:0c:48:78:19:a4:35:1b:e0:4c:8d:94:4b:51:a1:22:da:
0c:c9:fd:c8:61:7a:c3:2a:1d:8b:e7:d2:73:66:bc:52:36:e8:
a3:5a:55:fc:43:3c:f0:58:ee:5b:af:9d:c3:33:08:f6:2c:7c:
b3:89:72:46:2b:51:e4:25:f2:32:11:25:1a:19:85:33:40:30:
c7:70:d2:c8:9b:8c:70:ca:ee:aa:66:77:03:9d:08:28:c6:cd:
04:6e:f5:85:2d:37:7f:87:5d:28:bf:95:75:9c:3f:f1:cd:a5:
ff:d8:60:3f:72:28:fb:98:97:89:8d:d9:17:9f:f6:a0:e6:bb:
37:0c:f9:a1:0b:77:77:23:55:22:c0:e7:fa:87:18:f4:0a:f4:
32:a1:7c:78:f2:8a:c1:7f:36:38:0c:bc:3f:86:31:be:66:0d:
36:97:cd:af:b2:ec:09:91:0a:72:7a:31:d0:58:2c:86:30:16:
8b:53:22:d8:02:63:0b:44:00:74:8a:49:91:8e:35:d4:ca:96:
e2:c2:0f:b8:59:3f:2c:b3:d8:ed:2a:15:d3:3c:f8:61:0d:49:
16:2d:0d:19:c9:76:79:a8:8b:0c:1c:ac:03:89:b1:06:9b:10:
f8:b0:32:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:12:25 2025 by rpki-client