Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: xWAmqoBdUYiO6Z9AJhcuhw9wKd6onXFYRu1r70xiJLU=
Subject key identifier: 19:D9:4B:69:9E:C4:CC:DC:9A:DC:8A:6D:94:45:78:E8:B5:52:24:4B
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 0197B7EAAAF722A7D1E2A78245BDFD59BDD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 0604
Signing time: Sat 28 Jun 2025 19:01:39 +0000
Manifest this update: Sat 28 Jun 2025 19:01:39 +0000
Manifest next update: Sun 29 Jun 2025 19:01:39 +0000
Files and hashes: 1: GP-mcsPVfkxFR6BakAdLWMHzvnk.roa (hash: 46Gy5AnSQQR4RzlnLScg9/HmedHrQU8V47NDaOoaI7E=)
2: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: M4KNjcLw83FtgCC0Yjl4SZ2Bu9Yv46TaZjG2N7foKNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:aa:f7:22:a7:d1:e2:a7:82:45:bd:fd:59:bd:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Jun 28 19:01:39 2025 GMT
Not After : Jun 29 19:01:39 2025 GMT
Subject: CN=19d94b699ec4ccdc9adc8a6d944578e8b552244b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8d:97:4f:ae:22:7d:d2:a7:44:1a:89:a6:b0:
b2:58:75:37:cf:cd:a6:cc:8c:76:a8:2e:93:30:e7:
db:35:6e:b4:c5:e5:3a:11:e6:11:36:1a:c5:e9:9c:
8f:2c:c0:fa:b4:89:57:e1:36:a0:b6:7c:31:19:e8:
7c:c3:0b:38:0e:a3:b7:d9:81:27:8a:f2:bb:9a:ce:
26:60:59:9b:93:18:63:37:60:09:64:f9:4a:27:54:
4b:ea:32:7b:12:c8:64:68:cf:14:a3:70:36:68:8a:
9c:7c:6b:01:84:40:f2:a7:7b:5d:a2:fa:0e:7d:bc:
d6:c7:be:6c:59:af:3d:f6:3c:4c:d3:dc:41:f5:0a:
f4:56:20:aa:79:46:97:a2:7b:94:63:9e:a8:2a:f3:
ac:85:b0:2f:9e:f6:05:b9:2c:fb:45:7e:5f:84:db:
99:86:ed:54:f6:3d:e0:9a:3c:9d:11:35:a0:df:3d:
8a:c0:e2:c4:8d:13:75:43:2c:e5:e0:7d:2f:4d:94:
e7:c4:7a:89:67:d8:70:54:2e:71:ed:a1:28:49:f3:
10:25:7d:16:b2:36:7b:21:82:9e:34:4b:aa:77:d8:
2c:23:fc:b0:99:45:74:b2:6e:63:5d:00:89:7e:c9:
bd:2d:33:32:da:83:76:69:6d:5f:31:b1:2d:12:b7:
7e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D9:4B:69:9E:C4:CC:DC:9A:DC:8A:6D:94:45:78:E8:B5:52:24:4B
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:27:dd:04:35:b1:94:15:22:40:6c:05:db:32:05:c3:15:94:
ee:67:72:32:11:0a:06:4c:cf:da:12:d8:52:dc:19:b8:fe:ae:
b7:23:97:b0:cb:27:e5:07:db:6f:3d:71:2b:62:15:71:34:92:
d7:80:0a:75:a3:15:07:97:a2:8d:0d:cc:7d:40:90:fc:3f:d0:
6d:d0:4a:8c:a3:65:03:4f:12:96:48:ca:1e:e9:83:79:7c:56:
23:bd:78:1a:6c:f7:c4:fb:26:8a:9a:17:25:e2:41:0b:33:4a:
23:e9:67:79:48:f4:cb:3c:bc:57:8f:52:91:0a:cc:0a:ad:61:
b8:e9:e7:20:2f:1b:00:72:60:26:70:86:7b:d5:92:b6:e0:c2:
37:6f:d3:ff:78:83:2d:8f:d6:e7:b5:e8:1d:ff:42:10:bf:26:
d0:d1:b8:6e:17:cc:a6:92:22:d0:b3:c0:99:68:8b:e0:97:bf:
cc:c4:d5:d6:e7:d1:c4:06:7e:93:bf:dd:09:29:4a:80:a4:1a:
f9:5c:bc:ad:89:1e:a2:35:ce:24:e9:d4:20:ef:9d:50:34:c5:
3f:64:75:10:43:89:4e:54:7e:6f:5a:e8:18:3f:76:bd:fd:bb:
fb:7c:aa:8c:94:0f:c7:00:b1:a1:ce:ec:a9:01:fc:60:08:4f:
23:0d:8a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:44 2025 by rpki-client