Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
File: YG03z4fxLyqy3vMTgMOGuCbBnWU.mft (raw, json)
Hash identifier: ppb9lwGM9gHa9ngUiIvrQjVgAJ7Lz6JuTs9s3bXwLko=
Subject key identifier: F3:40:27:B2:5E:9F:72:D6:B6:84:DB:35:22:D0:B0:E7:41:DB:9C:7C
Authority key identifier: 60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
Certificate issuer: /CN=606d37cf87f12f2ab2def31380c386b826c19d65
Certificate serial: 0197B70F0B87A6D261213E75CA5E693E8451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 15:01:45 +0000
Manifest this update: Sat 28 Jun 2025 15:01:45 +0000
Manifest next update: Sun 29 Jun 2025 15:01:45 +0000
Files and hashes: 1: YG03z4fxLyqy3vMTgMOGuCbBnWU.crl (hash: 8kKTkEHlUL0JrLQGIOuOrbiEw22L4dpslwYEqLmgoW4=)
2: nLsyVuehs4jeCS4JRJE2VO5aV5I.roa (hash: ypIKdtNC4Ic9Sqbxvpei64KUmu5yr6lYiqShQ2+fMBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:0b:87:a6:d2:61:21:3e:75:ca:5e:69:3e:84:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606d37cf87f12f2ab2def31380c386b826c19d65
Validity
Not Before: Jun 28 15:01:45 2025 GMT
Not After : Jun 29 15:01:45 2025 GMT
Subject: CN=f34027b25e9f72d6b684db3522d0b0e741db9c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d8:f9:f8:21:f8:66:33:90:44:cb:c6:99:e8:
22:9d:3a:fe:92:3b:d3:ee:ae:56:1a:c0:8c:19:d7:
48:d9:ba:91:63:15:84:ae:08:0c:15:5f:39:a5:65:
1f:e4:37:da:79:02:56:7b:3d:f2:cd:d9:74:9a:7b:
7b:04:32:e8:85:1b:66:fa:1b:cd:af:92:3e:b3:f9:
69:99:b9:6e:75:4a:12:25:f5:a3:0b:12:e9:f1:c3:
6f:62:65:e4:e2:6b:31:3c:9c:5a:07:7b:78:81:67:
c0:ca:1d:6a:b2:7e:dc:07:6e:3c:09:04:f0:63:07:
0d:24:42:51:5c:1e:7b:e7:01:3e:6b:e4:e2:8e:1a:
34:08:5f:ad:7f:ed:82:cc:fc:ed:10:f3:ee:0f:72:
ef:ae:f3:20:da:db:55:9d:45:74:12:c2:d8:4e:d4:
d7:c4:6e:b4:13:23:dc:87:02:4e:2b:3c:5b:82:bf:
70:c7:fb:42:fd:3d:26:ec:de:b8:3a:29:2b:5f:d7:
cc:36:44:d2:a1:f9:64:99:e0:55:55:76:32:f8:44:
35:82:48:e5:a7:21:01:d5:91:3c:3b:8b:47:ea:c2:
3a:27:59:00:37:6b:5f:21:45:a8:49:2c:fd:1f:d7:
3b:3e:31:46:73:3a:8a:f8:4a:18:e3:03:22:d6:da:
fc:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:40:27:B2:5E:9F:72:D6:B6:84:DB:35:22:D0:B0:E7:41:DB:9C:7C
X509v3 Authority Key Identifier:
keyid:60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:bd:b3:09:d4:c5:6f:b2:3e:90:74:4d:67:0a:85:ea:07:50:
f9:29:18:d8:01:a8:9c:d7:47:a0:af:01:b1:28:36:ee:b8:18:
20:c1:2b:14:f7:38:90:20:93:7d:3c:d6:4a:c2:99:e0:bf:99:
47:c6:6f:5a:b7:f8:1b:42:59:b5:46:c4:a3:57:37:e5:e9:fb:
65:6f:6d:9b:c6:86:fd:a0:3b:76:2f:22:14:6c:1b:a7:04:99:
fd:6a:fc:88:5c:49:55:12:23:78:51:8f:c3:9a:c4:09:ca:f5:
d1:f6:b3:69:7d:0c:93:09:98:9b:65:41:15:09:e4:5f:90:a6:
25:ac:d4:20:d4:81:7c:86:20:56:e6:6d:2f:b9:83:84:8b:17:
ec:25:03:58:b7:d8:9a:7b:ab:cf:2e:eb:21:03:a8:a1:a7:86:
2c:ad:f9:cc:cc:fd:44:c6:1f:b8:20:4b:1d:48:d2:02:ac:eb:
de:96:a0:19:e2:08:dc:2b:08:14:ea:38:b7:96:7a:db:e4:76:
b3:3c:7c:c9:e9:94:ed:22:60:82:9d:32:f5:0d:a9:00:20:dd:
3b:f8:b3:7e:e3:08:f5:c9:6a:d2:59:e7:8d:f7:b2:f2:ee:16:
0d:f5:8e:93:ea:ba:59:6f:36:ca:28:4b:71:16:f1:23:fc:28:
87:30:8e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:08:07 2025 by rpki-client