Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
File: cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft (raw, json)
Hash identifier: K1z75ZOz289HmJVRk4WO5ckuo3Ie3ooelqdCGMTdEuA=
Subject key identifier: 9A:2F:38:C3:D0:74:31:CD:44:D1:4D:E1:EA:8B:D0:3D:11:CE:0B:51
Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd
Certificate serial: 0197B70E80BC2D870B38AAE75204673E769E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 15:01:10 +0000
Manifest this update: Sat 28 Jun 2025 15:01:10 +0000
Manifest next update: Sun 29 Jun 2025 15:01:10 +0000
Files and hashes: 1: X75BC-oQSIZ_Eow4PmOQdnEFFSA.roa (hash: 9fCRye0I7SNN/gpC5nOojc7Nk1BoVgXxf8JAD5uwXBE=)
2: cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl (hash: sSctpQGKURX2tiIDb0IR7fKaYcsltlT+DhxB2PY8zCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:80:bc:2d:87:0b:38:aa:e7:52:04:67:3e:76:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd
Validity
Not Before: Jun 28 15:01:10 2025 GMT
Not After : Jun 29 15:01:10 2025 GMT
Subject: CN=9a2f38c3d07431cd44d14de1ea8bd03d11ce0b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:be:2e:be:18:cc:2e:61:b7:dc:c2:9b:36:
b4:cc:b8:e1:47:1d:26:92:5c:79:e9:f0:59:9b:14:
b6:26:d7:76:d7:46:b6:fe:6e:7b:99:9d:f2:98:ff:
20:07:43:30:6b:75:2e:9f:dd:a5:a2:85:d1:ff:dc:
c9:a2:4e:fd:87:b3:37:20:20:e9:b5:57:8e:56:14:
f5:37:30:cc:ba:77:70:e9:29:fe:43:8b:52:53:8e:
92:c9:f6:1e:ca:5e:fa:18:ac:67:cb:c9:02:17:9a:
2c:76:d0:22:e3:5a:99:53:f1:ff:f1:3c:46:78:62:
f1:97:af:fb:14:d5:3c:a3:51:19:4c:93:c6:d1:87:
aa:59:5a:f0:d4:c5:39:e8:24:c8:d5:8b:ce:f7:5a:
83:6e:72:49:f4:3c:55:d2:97:89:fe:91:80:cd:b7:
7f:bd:f9:12:f5:f9:38:8f:1e:6a:9d:e3:6b:ce:40:
c8:08:ef:0f:f6:03:4d:ae:f8:5f:62:2f:63:a4:a6:
32:56:f9:2f:5b:4a:75:5c:2d:0e:37:68:0b:12:ac:
d4:6b:0e:b3:ab:99:46:5e:e1:b5:6f:38:c2:9f:29:
4c:fd:ae:0b:f4:e9:58:cd:46:2a:a5:4b:00:59:59:
0d:c4:24:8f:fa:a4:f0:ee:d0:ce:2d:d9:b9:fa:76:
99:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:2F:38:C3:D0:74:31:CD:44:D1:4D:E1:EA:8B:D0:3D:11:CE:0B:51
X509v3 Authority Key Identifier:
keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:96:45:b1:aa:c5:61:0e:03:f9:71:a0:cb:89:71:db:5e:f5:
1a:f1:da:ed:60:f1:0a:75:72:a7:1a:1e:91:88:68:d9:f3:04:
47:21:d0:80:95:5e:6b:63:75:03:f2:13:03:82:d4:3c:19:77:
8f:b1:6a:b1:17:ba:38:38:b7:1b:c1:98:8d:0d:cb:47:4b:24:
d6:56:32:d6:65:aa:77:bf:94:90:40:f5:f1:2b:23:dc:62:5a:
72:33:dd:6d:e9:71:a0:37:80:a1:f0:19:db:68:51:85:d9:4e:
8c:98:cf:8e:a4:5a:a1:47:f3:07:75:4f:26:46:0b:2d:1e:03:
be:64:47:b6:90:55:56:6c:79:8f:32:b9:52:0b:93:34:55:fa:
60:dd:f7:56:01:80:bc:19:7c:0e:a7:7a:46:8c:03:81:fe:76:
6c:37:2b:32:2c:ec:ae:4b:a0:8b:60:64:82:73:e9:5c:a0:3c:
64:8a:f9:49:e7:52:17:2f:86:07:a7:92:40:cd:e8:b5:ee:d3:
56:15:47:d7:c7:d2:0f:b5:69:30:9d:a4:bc:d7:52:1b:d4:51:
e7:2b:e9:d3:20:53:de:da:97:63:24:e2:d1:a8:33:90:84:c4:
6f:36:68:42:9b:7e:76:52:94:c1:70:f7:9b:21:40:54:f5:7a:
1c:a1:15:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:30:54 2025 by rpki-client