Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
File: JY9ajila0de0ih4RlYeQBStXolM.mft (raw, json)
Hash identifier: G8Nq44ED882oiLVcq4D82oZPUsXUCbeTKOBCJdmoZBs=
Subject key identifier: 76:7F:32:5F:62:30:5A:62:63:D5:EC:B3:7E:8F:91:23:30:7E:1D:59
Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Certificate serial: 0197B632B457C6BAEBCAAF85254C861D6207
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
Manifest number: 150C
Signing time: Sat 28 Jun 2025 11:01:05 +0000
Manifest this update: Sat 28 Jun 2025 11:01:05 +0000
Manifest next update: Sun 29 Jun 2025 11:01:05 +0000
Files and hashes: 1: HL0tpswU2gQezd0-x9ZWDdfR-RY.roa (hash: NAIPlF1KgdG7sggbmAwv2GRB6aTgtE/arOeqKYJF690=)
2: JY9ajila0de0ih4RlYeQBStXolM.crl (hash: UfR+cE3tiLLeHpUkvmsJKzY3FLhqi1417lOkl1wDdRs=)
3: X5-jl_Od0mEO_dSg7rALYkevjoQ.roa (hash: xqc4fnPLjvYYKZxEv5pbNLPSZEhrMf7SnWN3fQ6sCO8=)
4: ljF5u-YRkQFhR1-JzkqgY4rX8fg.roa (hash: yARJg/r5KzAJTCBC6Aa8YbBreZ5SqvZOXFrSvclMQ38=)
5: s_QDIrLshBQNlu6RPwCemGYvy74.roa (hash: 6Y18bq+vtApdDZHTDEQgo5JwDFt4pJR0lVY1yqjzjsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:b4:57:c6:ba:eb:ca:af:85:25:4c:86:1d:62:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Validity
Not Before: Jun 28 11:01:05 2025 GMT
Not After : Jun 29 11:01:05 2025 GMT
Subject: CN=767f325f62305a6263d5ecb37e8f9123307e1d59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ec:ba:0f:d0:d5:e8:d8:2f:68:70:01:99:4f:
96:7d:26:da:66:5f:cc:6e:47:d9:55:61:b2:d1:a1:
bd:1b:d6:0f:89:d7:a2:7a:67:16:e6:be:d2:b9:69:
38:83:42:60:f5:4c:ff:d2:1c:68:0e:b7:71:e8:fb:
2b:52:23:5a:07:c6:6f:f6:2b:4a:fe:a3:d0:64:44:
d3:80:f2:1c:84:ee:8f:18:dc:b9:65:49:3e:22:8f:
8d:b6:8b:1e:fa:24:98:5c:7b:76:0f:26:90:aa:d2:
66:68:67:24:52:59:58:53:d9:c0:fa:c4:19:93:71:
72:56:97:8b:37:b8:fa:65:cc:a4:12:3d:cb:6a:4a:
55:1e:6b:e9:69:64:f3:95:12:3a:fc:be:4d:be:08:
cc:94:68:13:1e:53:34:7a:2a:5e:86:dc:12:9b:04:
a6:75:e1:07:d3:1f:fe:ad:72:a8:c8:1c:00:6f:a5:
6e:f4:6f:6e:02:69:59:5e:24:7c:2a:06:69:b7:62:
27:77:c5:03:15:aa:0b:ca:76:c1:b8:5d:25:19:de:
58:08:da:2c:fd:e7:dc:5c:50:14:bd:e8:e5:0c:c8:
d7:75:e8:22:81:b4:cb:a4:fd:25:6b:bd:75:3e:12:
9c:0d:f6:a4:46:78:05:0a:94:f3:bc:19:9d:5b:33:
ac:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:7F:32:5F:62:30:5A:62:63:D5:EC:B3:7E:8F:91:23:30:7E:1D:59
X509v3 Authority Key Identifier:
keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:05:f1:9f:ae:e4:a8:25:4e:85:43:17:5e:6d:da:6a:ff:37:
27:14:0e:01:0b:dc:80:4c:6a:f0:80:38:b6:c1:11:b2:5c:95:
57:1d:d4:21:66:4a:73:6d:50:32:12:19:18:f4:2a:d0:8f:04:
30:a9:ce:c6:17:53:61:c8:e1:e5:ac:a0:04:fc:16:0b:ab:12:
8e:6a:e0:fb:13:46:26:85:32:a0:e5:2c:95:c8:0d:19:91:88:
c7:8d:76:ad:72:95:7c:ab:e8:b7:bb:ad:d4:31:de:9c:23:54:
3f:25:4a:a1:45:05:d4:53:e4:07:36:93:47:80:77:79:20:5f:
81:04:89:af:53:21:75:68:3c:61:7a:4e:31:a0:3b:b0:7a:41:
9f:8f:a3:15:7f:33:54:13:91:78:97:96:8f:50:fe:33:ae:06:
39:29:7c:c4:f8:bf:01:85:53:e7:33:0b:cb:1e:18:1b:3f:e8:
bf:b3:0f:c2:15:a6:85:fd:74:f0:ef:6c:a3:c5:92:01:f3:c5:
93:f4:ea:7a:71:8a:17:ab:6b:d4:d3:92:94:3b:1d:13:7f:b7:
d6:ef:89:8c:c6:8d:f8:26:49:5c:96:2a:9e:fb:92:03:ef:f6:
93:54:b9:da:7b:3d:9c:2a:8d:86:03:bf:81:6e:c3:08:2d:11:
c5:bd:c2:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:57:28 2025 by rpki-client