Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json)
Hash identifier: FvsOZf+W3DnhKtkPY6tFdXKKZX9uhOmGzCrePIiI7NE=
Subject key identifier: 00:F7:4B:AF:3D:F6:31:EB:C5:5D:51:CF:7E:9E:B5:E1:32:75:10:87
Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Certificate serial: 0197B7EA1363244377D637CD978F07A307A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
Manifest number: 0269
Signing time: Sat 28 Jun 2025 19:01:00 +0000
Manifest this update: Sat 28 Jun 2025 19:01:00 +0000
Manifest next update: Sun 29 Jun 2025 19:01:00 +0000
Files and hashes: 1: q6cfXUDveWHdgQWTYKqVwvvOAe0.roa (hash: BJPMM6GNYN6IqCj9i2G5fXzbZjuTVnz0OtAPd8t+eZk=)
2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: QxQln3TmKA9xVyPsUmV3ZPqR6UJH3e4KIa/ZoMzU5EQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:13:63:24:43:77:d6:37:cd:97:8f:07:a3:07:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Validity
Not Before: Jun 28 19:01:00 2025 GMT
Not After : Jun 29 19:01:00 2025 GMT
Subject: CN=00f74baf3df631ebc55d51cf7e9eb5e132751087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c5:63:70:5f:94:c6:6a:e4:ac:90:2a:a4:06:
5f:53:19:17:fd:53:37:ab:e1:8f:00:ca:0e:32:a3:
c7:22:6c:d3:a8:5e:3d:57:f5:17:36:59:8b:05:a5:
b4:50:bb:76:84:9b:14:47:49:cc:88:f4:ff:a1:e9:
0c:c1:99:41:52:9d:99:17:79:ae:c3:d3:9a:b3:43:
07:fc:c0:e4:88:c7:07:71:e9:5b:45:b2:2e:e1:3b:
b2:bf:09:d3:30:6a:e6:f5:d6:63:2f:ea:88:9a:76:
1d:97:91:6f:b5:17:d4:b2:f0:bb:7d:ae:1e:52:9e:
83:83:47:37:a9:e3:5f:3c:82:5f:1f:13:24:6f:a7:
5f:d2:47:f7:f4:11:75:ac:07:56:a0:26:4c:6b:8a:
b1:9a:3c:61:8f:6d:cb:d5:9c:4d:e2:2e:4c:5c:05:
0c:d5:64:f0:e3:44:8f:cf:c3:77:03:d9:1b:dc:ba:
76:e2:58:3e:78:c0:82:e8:56:94:ce:b3:9a:76:72:
3f:65:34:53:53:74:54:db:c5:d0:00:9b:1b:73:19:
2a:83:e4:ec:87:79:f3:c4:0b:62:7b:42:ab:d9:cc:
07:c8:11:12:5f:99:8c:65:33:ef:a7:26:27:99:58:
d1:d9:fe:27:82:30:c1:7a:f8:0b:99:4f:48:cc:7d:
63:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F7:4B:AF:3D:F6:31:EB:C5:5D:51:CF:7E:9E:B5:E1:32:75:10:87
X509v3 Authority Key Identifier:
keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:db:a0:bb:19:fc:42:d4:3f:e9:ce:af:b3:75:0d:b5:9c:24:
65:0c:f7:04:6a:3d:34:e7:1c:16:07:50:e2:f2:19:86:44:bb:
00:f5:49:d8:2d:e1:9e:3c:cf:6b:eb:c1:39:5a:e1:f4:e2:e5:
fa:17:34:ee:63:20:dc:1d:2d:66:52:b3:e8:53:62:dc:86:cb:
c1:87:be:e5:7c:5c:71:0d:c2:cd:b2:8d:c9:9e:7c:f6:02:47:
2f:a4:9b:17:ce:80:0a:d4:7a:18:ed:46:ab:9c:9d:f6:1d:8e:
05:dd:dd:aa:dc:94:a2:ad:28:e0:1d:58:2b:2c:f2:75:2e:4d:
dc:45:34:1f:bd:31:27:bf:c1:b1:3a:49:a7:4d:9d:43:9b:b3:
c2:e6:6c:0a:66:a0:cb:45:e0:62:3b:4f:9e:20:c5:42:81:c1:
20:93:2c:55:5a:90:35:fa:c4:59:22:99:de:8c:b8:65:70:cc:
2d:81:04:d4:27:82:da:a5:5d:ec:60:e8:29:35:5f:d1:a9:f0:
32:dd:7b:17:6c:23:f8:16:8b:be:9e:bf:79:b8:88:50:af:67:
96:c3:92:f2:b6:6a:f7:71:29:e4:86:41:ce:41:93:35:77:0c:
c3:33:5d:29:e3:51:d9:28:da:af:d1:1e:49:13:c4:b4:82:b6:
68:f9:16:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:13:48 2025 by rpki-client