Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: hiSJKxoboKSupBMChFEhTvzxScEisK/DUu0cnbzzmGs=
Subject key identifier: F0:78:3C:6A:40:55:00:15:3F:70:1C:BC:B9:96:3E:62:BE:22:20:DA
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 0197B70F1171DC82A7B84A829376338FF689
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 0E28
Signing time: Sat 28 Jun 2025 15:01:47 +0000
Manifest this update: Sat 28 Jun 2025 15:01:47 +0000
Manifest next update: Sun 29 Jun 2025 15:01:47 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: kRd95NeTV2PFfD4xXWkIp0NIQXTWygovHIgcVxUquSA=)
2: v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa (hash: g731f8Kk7ZRmBzHdANv/XJyJm7Gc4rKXDwNwW3MJnpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:11:71:dc:82:a7:b8:4a:82:93:76:33:8f:f6:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: Jun 28 15:01:47 2025 GMT
Not After : Jun 29 15:01:47 2025 GMT
Subject: CN=f0783c6a405500153f701cbcb9963e62be2220da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0c:c2:f9:fd:5d:b2:ef:40:b7:57:bf:c6:c7:
4f:f0:bc:0c:7e:cb:44:9b:92:ae:a7:f9:17:6a:79:
c1:84:75:21:e2:4a:ba:91:87:75:85:63:5b:01:ef:
00:60:ca:55:07:a0:be:17:d8:33:e6:90:ca:eb:1e:
56:1e:09:db:cb:2d:90:5d:d5:48:f2:04:b1:b2:ff:
53:93:cd:67:52:63:39:60:cb:f0:40:67:30:05:36:
1d:27:46:92:17:da:ac:87:19:c7:d6:bf:54:e7:36:
7e:f2:1c:0b:d7:cd:f3:8d:cd:58:9d:1f:97:00:8e:
01:c0:01:d7:68:a4:36:8a:76:1e:6e:f5:f4:55:76:
e3:98:b2:7c:30:99:ed:6b:9f:a5:12:e4:83:e2:5b:
37:7f:40:7b:74:93:b4:6b:ae:f8:b3:af:4f:c0:2a:
3c:01:e7:1a:1d:e2:a7:6e:c0:57:ec:c1:fd:fa:29:
8d:b6:bc:57:9c:4d:81:cb:49:92:67:f7:b6:1c:5a:
2e:0b:b6:43:05:7f:6f:be:61:c9:9a:44:3a:c4:54:
50:2a:ed:df:86:99:be:11:3a:fa:63:2d:69:a4:8f:
65:ef:30:66:6e:3f:fa:e3:0a:9e:ee:3e:27:25:54:
08:99:de:5d:e2:e0:24:13:06:12:7e:fc:00:88:3a:
08:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:78:3C:6A:40:55:00:15:3F:70:1C:BC:B9:96:3E:62:BE:22:20:DA
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:e5:50:c2:92:84:60:4a:36:b2:61:7b:fb:ae:ad:92:93:a6:
5e:1b:be:ce:22:8b:55:95:b9:c4:6c:d9:23:3d:bf:f3:e9:1b:
43:32:e8:e0:6f:08:1b:92:39:c3:17:e4:bd:49:d0:d2:28:ec:
dd:3a:e7:98:31:19:61:51:c4:15:18:c0:ee:06:87:b7:90:b6:
bf:03:5d:03:a7:1b:cf:e3:89:76:c0:28:dd:46:3e:08:1e:22:
fc:ec:5c:9f:c6:f8:2e:e3:4f:e7:fd:1b:62:78:92:1d:fc:6b:
61:d6:ce:9d:61:32:29:d1:09:62:e9:ab:cb:10:dc:a6:1c:d6:
ff:1d:a2:de:16:47:60:77:34:d8:dd:7e:46:93:b3:b0:63:dc:
6c:d0:c1:93:52:2a:e5:cc:26:18:3f:56:ab:15:d9:a7:40:76:
05:50:4a:49:2e:45:da:25:c5:fe:da:cf:ed:95:ea:1e:49:39:
7b:37:3e:b3:58:ac:c9:69:f0:4f:9f:6d:8e:11:5f:26:5f:3e:
27:ac:5e:0b:1c:f8:37:98:d6:ac:7b:17:ab:d5:94:e1:9e:41:
93:95:d1:fd:27:8d:b1:92:94:c9:b2:b1:29:3b:9a:f3:df:4f:
6f:5e:84:90:1d:dd:1e:ac:db:57:71:a9:f9:d7:96:a7:37:a3:
7e:75:bb:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:36:05 2025 by rpki-client