Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: XDcQNZLYYReqIookJWlEtGXVKMpDpARqxn58eptc2m4=
Subject key identifier: C8:7B:A6:1B:BB:F0:29:CE:AF:CF:D2:47:2D:64:ED:DA:26:3C:73:9B
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 0197B6D72A03A9DA2A4EBBD019F8A1ECE7BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0AD4
Signing time: Sat 28 Jun 2025 14:00:43 +0000
Manifest this update: Sat 28 Jun 2025 14:00:43 +0000
Manifest next update: Sun 29 Jun 2025 14:00:43 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: L6VEjRSTwb/KK6UEbjzalQq0ILGOLKMck56j+1NtijA=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:2a:03:a9:da:2a:4e:bb:d0:19:f8:a1:ec:e7:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Jun 28 14:00:43 2025 GMT
Not After : Jun 29 14:00:43 2025 GMT
Subject: CN=c87ba61bbbf029ceafcfd2472d64edda263c739b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b0:93:fa:e9:b5:6d:16:2b:3f:98:bd:52:00:
b5:36:64:71:dc:d6:1d:0b:3c:5c:d5:d9:1e:20:6f:
f6:7f:a3:7e:13:1e:e7:af:c3:fe:0b:5b:a9:52:8d:
92:cb:90:24:54:b8:f5:06:d7:03:d6:18:f8:cb:e9:
2c:9e:77:aa:01:8a:c3:35:4a:ef:d0:64:e4:0a:50:
ae:e4:f3:da:30:8d:49:2e:5b:1d:30:b2:10:54:3a:
85:02:0e:27:56:43:9c:ad:0e:53:06:96:d6:f3:48:
3b:30:cc:ea:22:a6:c7:55:4b:9c:c9:c9:4b:85:9c:
c7:af:46:67:6b:8e:cc:5a:e0:39:6a:79:0f:28:b8:
e8:13:96:df:6a:64:db:3d:4e:70:0d:1b:38:c7:b6:
0a:22:d6:fc:58:5a:0f:ac:60:25:61:bc:be:f6:26:
26:c3:e1:c4:71:71:96:8d:02:df:ab:42:98:d7:05:
9e:19:b2:5d:75:ce:7f:aa:a0:a7:6a:9b:27:f0:72:
26:3a:48:1c:7f:0e:ee:53:cd:0b:a3:a3:b3:45:c6:
a2:04:74:b0:dc:9d:98:42:72:e8:6c:e6:5d:fb:60:
08:83:8b:90:2a:bf:81:1d:c7:c8:c2:2a:9b:44:1c:
c3:16:d5:1a:52:26:80:91:ea:ae:b5:58:6b:87:5f:
8d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7B:A6:1B:BB:F0:29:CE:AF:CF:D2:47:2D:64:ED:DA:26:3C:73:9B
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:1d:c3:68:69:7a:a8:80:f6:80:5e:c3:68:3f:6d:b2:b5:d4:
da:64:a5:1c:80:81:17:15:5a:20:72:58:ec:80:ba:46:6c:f4:
57:e5:d6:fb:df:64:24:75:ee:c5:8a:77:72:e0:19:2e:0e:5b:
40:3d:07:58:48:9e:58:64:6c:aa:a2:f5:fa:93:c0:90:21:d0:
a8:5c:1b:82:7c:36:df:26:7f:a3:eb:d8:cd:2d:14:97:f7:4e:
03:f1:65:a3:30:c4:51:44:9f:4b:bd:3e:4f:bc:68:89:7b:e9:
c3:52:4b:1f:a4:47:f8:5c:ca:b1:4b:cf:24:89:e9:75:bc:30:
85:db:a7:c8:ea:b9:f4:dd:9d:cf:79:0e:9f:39:0f:18:43:ab:
f6:75:70:64:a1:8f:db:c9:62:61:bc:7f:b2:c5:8f:f3:a2:2a:
87:ef:e5:5c:7a:88:9d:a8:db:81:a1:6c:a8:d4:8a:44:a8:f1:
15:1d:ba:e5:5c:03:3c:fc:d7:ea:25:d4:94:f1:d8:73:3b:ad:
3b:84:6b:cb:d6:1d:13:11:af:f4:a7:a6:65:75:2e:20:93:4d:
b8:d9:50:d7:e6:c4:51:70:b1:b2:01:63:5c:47:d4:74:b8:5c:
b4:27:a0:d3:18:ec:5e:ba:2f:e2:d6:9d:c3:c2:95:c0:f8:d4:
8c:71:3f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:25:52 2025 by rpki-client