Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json)
Hash identifier: nkGDP5HV75WomTxFHqCF4ysikM974NNuOZ82xEipDIk=
Subject key identifier: 91:DC:C7:74:B3:3E:EE:F2:0D:98:D0:40:FE:76:22:58:B6:F9:3C:69
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 0197B9D88FA2E9FA1E7620E557C2EC837E64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
Manifest number: 15DD
Signing time: Sun 29 Jun 2025 04:01:06 +0000
Manifest this update: Sun 29 Jun 2025 04:01:06 +0000
Manifest next update: Mon 30 Jun 2025 04:01:06 +0000
Files and hashes: 1: N1MG3ptUi6lRkgCQgC4sjQwbS5E.roa (hash: JXk8TsLqv4eNpEsTxzdAoUG6ec7BUvgM4Lyhjc+WI9U=)
2: pMIZZEHYcO0IlQ8lJ-JaDY1xnJs.roa (hash: KI7tUZnJYI1JaBjFs0d5L727l5SVVoE+xByQFUZQZZI=)
3: uiLIHzK4-mf16_OjnZc2yUpW0us.roa (hash: RlQY7OlYxlif+RwnDDphDKPVhonzC8U4YVG2wYszXJM=)
4: wmxHtvcKqJtTUqnf5sR3cyCPMeg.roa (hash: /EPsVJFiMZ3O3IoH+IOAZdQSfyIhjr2V/FlxWvt6e5c=)
5: xF5VKoGOYu4SuTkWFtzR0bzZqmI.roa (hash: rdwu1BaRed5RxmIo/GH4jXiyNp3cFaIjeNX4kVrFm70=)
6: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: gVib1YD41XjukyhajRnyCVk+QlXvIi6WUVUUC3d9+Ao=)
7: zPFc5xzrxxMWf2K11uBlgIiWqTo.roa (hash: 3x/T35aDdfP5Wrtlu3UJYc2NEgecLDM5KH+dyoNyYx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:d8:8f:a2:e9:fa:1e:76:20:e5:57:c2:ec:83:7e:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: Jun 29 04:01:06 2025 GMT
Not After : Jun 30 04:01:06 2025 GMT
Subject: CN=91dcc774b33eeef20d98d040fe762258b6f93c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:91:1d:a5:9d:54:be:c5:02:c3:6d:42:b3:7e:
1d:a6:be:98:c6:40:0e:ac:85:2b:17:ea:18:2b:89:
b3:cd:67:63:43:68:36:63:7e:a6:82:f2:df:18:52:
99:64:81:0a:13:12:36:cd:5c:f4:cd:7f:c9:6d:fb:
9d:c5:fc:e9:6f:5b:46:7a:72:2a:0f:37:ed:d7:a0:
0e:41:d6:bc:67:c8:f4:87:54:5d:bb:62:a0:78:55:
fc:e6:d5:04:8c:6d:99:bd:32:cc:c0:f6:52:18:c9:
1a:04:dc:0e:32:03:9e:c5:0c:ae:4d:b1:49:80:34:
45:6a:86:bb:3c:45:39:ed:a3:95:2a:36:56:81:ad:
04:ef:3a:4c:dc:e7:d6:c6:71:02:fd:92:f1:bb:00:
c5:8a:31:5f:8e:ed:3e:26:63:fe:a4:4e:89:06:ea:
5f:4c:a5:28:59:95:58:66:4d:2d:0d:5c:5c:fe:b4:
0f:70:24:f4:e7:41:5c:f6:64:95:43:3b:60:fb:26:
b5:19:64:66:ed:62:72:59:7b:34:5d:cf:52:b7:02:
41:26:0c:e6:2b:e9:e0:54:b5:d6:e2:3b:33:68:fd:
b5:32:68:52:ff:a7:ec:36:d9:fd:d5:cc:66:32:b0:
9a:84:61:3c:c3:6e:49:25:43:dd:4f:77:3d:27:b3:
a5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:DC:C7:74:B3:3E:EE:F2:0D:98:D0:40:FE:76:22:58:B6:F9:3C:69
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:27:0c:80:c6:51:c9:9e:5d:ba:61:b8:66:59:34:c1:1b:41:
84:f6:a5:f1:7f:f9:8d:87:a8:c0:78:6f:e6:93:a6:47:ca:c2:
26:47:a8:b0:76:45:6d:88:b1:3b:a2:84:54:4e:be:27:eb:2b:
82:ba:27:78:91:47:d8:62:de:09:c0:37:eb:47:ab:a1:3c:93:
c8:1b:f0:6a:9c:aa:3c:13:b7:39:be:e1:e5:b1:23:50:45:16:
26:24:c8:2c:c5:38:49:c7:9e:7e:7e:29:d7:a2:3b:95:ea:6f:
1a:96:b0:6d:f2:eb:ca:3d:97:6d:12:3f:aa:9c:1f:b0:28:7c:
c7:6e:fc:d3:47:30:eb:01:09:31:09:93:28:fd:8d:f5:51:bb:
40:d4:07:29:1c:ee:78:10:28:f6:fa:49:fa:52:90:e5:1b:f9:
72:c9:cb:4a:9b:82:81:60:16:92:76:c1:55:27:83:bb:8f:4a:
f4:41:00:43:80:aa:38:18:73:55:ff:1a:59:f0:29:13:88:67:
42:57:5b:1c:8d:e7:1c:f2:4f:82:75:1a:0d:7f:4b:78:32:9b:
e7:96:b9:08:87:c5:c2:a7:0d:8e:e8:63:20:65:cd:5c:d0:b2:
bb:5b:eb:7f:ba:bf:a0:9d:c8:9d:31:28:64:85:92:53:1f:98:
3a:d4:30:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 11:19:54 2025 by rpki-client