Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json)
Hash identifier: prrOkOMrO/D4SyNkPklY09sXfwBYcM0cNf2tJ4nnZkE=
Subject key identifier: 14:77:E4:24:FE:D4:A1:48:7D:0C:B5:73:B9:B8:95:43:E4:88:EF:B8
Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Certificate serial: 0197B8FD489FC5CDEC58BF64FDD67FD00E4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
Manifest number: 15B5
Signing time: Sun 29 Jun 2025 00:01:36 +0000
Manifest this update: Sun 29 Jun 2025 00:01:36 +0000
Manifest next update: Mon 30 Jun 2025 00:01:36 +0000
Files and hashes: 1: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: Die8Hj1nFDTr0qiZGqSnE08nNeqra5xYL3hBMlQY7IQ=)
2: ZmJk3i0UqR_uJ_XLaSjGUe2aH00.roa (hash: BCwdh7j1ZUyJ+mVEfLtfrzwX+n9rg9YN807VJjPHsUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:48:9f:c5:cd:ec:58:bf:64:fd:d6:7f:d0:0e:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Validity
Not Before: Jun 29 00:01:36 2025 GMT
Not After : Jun 30 00:01:36 2025 GMT
Subject: CN=1477e424fed4a1487d0cb573b9b89543e488efb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:db:80:9e:71:3b:b9:e7:78:16:3f:fe:a2:84:
6a:21:18:74:9e:46:7b:13:40:db:22:90:b9:01:2e:
cd:e4:ef:95:eb:bf:bf:2b:23:ed:6b:96:02:63:8a:
b7:25:6a:9b:19:ed:35:01:ca:2d:ba:55:ce:79:ea:
eb:97:c8:7d:0a:0b:e9:c3:ed:de:18:8c:19:37:05:
53:1a:f4:7a:50:af:17:e6:6b:f9:07:eb:d9:a5:ce:
3e:ae:59:6f:4c:59:98:ff:87:8b:a4:b5:b9:4c:72:
ef:45:1f:58:c6:11:e3:12:dc:aa:83:fa:ac:72:f1:
41:87:69:b2:7e:ea:19:de:f1:56:70:d2:ab:eb:80:
bf:a3:c0:12:11:dc:8e:1d:52:52:20:a2:31:74:25:
e2:60:94:26:f9:7f:d8:b9:f7:a7:4f:75:8e:6e:02:
06:82:bf:4a:14:68:95:5a:34:ed:4b:f6:56:f5:9a:
36:16:d0:0c:e1:e7:b5:2b:fd:b4:d2:88:4d:76:02:
de:3a:5a:ac:68:f7:73:7d:aa:3b:b5:7e:1e:2e:1b:
74:da:0c:61:4a:5e:94:39:ef:07:78:67:db:41:82:
53:71:9a:66:9a:a4:28:da:06:97:c9:66:e5:fe:40:
12:e2:4e:ff:5d:a8:95:1f:34:1f:16:ef:f2:b0:43:
28:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:77:E4:24:FE:D4:A1:48:7D:0C:B5:73:B9:B8:95:43:E4:88:EF:B8
X509v3 Authority Key Identifier:
keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f4:db:87:ae:93:88:58:15:02:81:8a:9d:92:3f:1f:ad:b6:
1f:96:9a:03:53:18:c9:0a:14:f3:33:ce:99:48:f7:c3:d1:cb:
55:00:ea:2f:4b:62:af:2c:31:a6:ec:cd:a6:78:a7:65:7f:07:
06:41:45:c4:35:6a:86:70:26:d1:c3:de:d5:6f:0e:64:7b:5d:
34:4f:77:e7:5c:12:75:bc:65:8b:c4:10:ab:ff:dd:bb:78:4d:
54:36:c3:da:d5:5a:9b:30:f0:96:cf:34:ae:0a:2f:62:6e:35:
7f:85:c5:c3:98:75:33:e5:a7:5e:d0:96:cc:d7:c4:a0:39:79:
b9:b4:cf:b2:0c:31:66:b2:e5:84:a3:a3:17:e5:05:99:29:86:
f3:6f:18:f8:a4:4c:3c:21:b3:d2:2b:4f:72:f2:c4:62:b9:9d:
0a:16:16:84:5a:74:12:33:38:4b:a4:6f:b1:7e:dc:c6:2b:00:
13:cf:be:20:9a:c4:54:dd:fd:8a:d3:60:6e:54:e8:05:0f:4e:
af:12:db:90:97:c3:ad:ab:6a:a9:9a:a3:e6:82:a3:ef:cf:85:
d9:16:91:57:ad:31:b0:28:24:ab:53:cf:f2:e0:5b:bb:7d:40:
e2:80:01:c1:73:fa:88:61:7e:24:f6:c9:f8:f1:3a:84:b2:d1:
33:55:e4:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:47:38 2025 by rpki-client