Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
File: ypQrJwZ2HCunUyiXg-35heM48Xc.mft (raw, json)
Hash identifier: nQCWofIZFiQ/CobaDFD80dsQLIukL1+arBm5O31sv40=
Subject key identifier: 7B:C6:D5:7B:06:07:57:C7:F2:69:3F:F0:05:18:68:72:79:F3:DB:A6
Authority key identifier: CA:94:2B:27:06:76:1C:2B:A7:53:28:97:83:ED:F9:85:E3:38:F1:77
Certificate issuer: /CN=ca942b2706761c2ba753289783edf985e338f177
Certificate serial: 0197B9A1870408A52D657E2A01F0B64EDE4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
Manifest number: 0B44
Signing time: Sun 29 Jun 2025 03:01:00 +0000
Manifest this update: Sun 29 Jun 2025 03:01:00 +0000
Manifest next update: Mon 30 Jun 2025 03:01:00 +0000
Files and hashes: 1: eiXFhQbxCQpcEPNruQeHmSAD-Z0.roa (hash: MfMam3uqTveTnOv++uzEyTkwTSJ0lTcdAkWlcL+odNo=)
2: ypQrJwZ2HCunUyiXg-35heM48Xc.crl (hash: gGSC4LkuMiBA26cee7AFRhvWG7l4nKXQUVZzsPsm1uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 03:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:87:04:08:a5:2d:65:7e:2a:01:f0:b6:4e:de:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca942b2706761c2ba753289783edf985e338f177
Validity
Not Before: Jun 29 03:01:00 2025 GMT
Not After : Jun 30 03:01:00 2025 GMT
Subject: CN=7bc6d57b060757c7f2693ff00518687279f3dba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:18:9f:71:60:51:98:5c:6b:d3:aa:df:9e:51:
8f:b6:a8:13:d2:b2:1a:75:ce:40:b6:28:a7:49:56:
b9:1d:7b:e6:87:8e:0c:5d:de:43:73:94:0e:0d:fb:
e7:67:23:ae:a8:7a:95:e9:e0:24:6c:69:2a:14:63:
8c:0a:c2:29:63:07:8b:97:81:97:c6:06:bf:1e:eb:
6d:84:d1:fe:cc:16:dd:fb:78:68:91:e1:45:8b:d0:
3b:96:56:52:c3:ce:5c:20:87:2b:fe:39:ff:23:46:
39:3d:96:03:98:b8:96:19:90:4e:4b:be:20:1f:38:
5d:4b:71:3d:7a:d9:f3:ea:04:12:d6:db:12:e4:11:
23:d1:80:5b:ec:e8:81:e3:b6:84:5a:0f:4d:59:a9:
2b:8e:f4:1e:ab:21:fb:41:71:fb:c6:63:e4:7d:0d:
48:5c:88:29:22:d9:a2:7a:32:4c:76:c2:74:d9:6d:
f6:e6:e9:b7:9b:1b:9b:d9:36:f6:ec:ad:15:c7:58:
6f:de:01:6d:b9:15:eb:a6:dc:87:e6:6b:cd:6e:e0:
9b:f9:68:b8:9f:e6:da:e5:0a:6b:4d:6b:a0:23:eb:
d8:fe:f6:12:a5:0f:8e:ce:34:67:d8:fe:ff:d3:26:
92:46:02:b5:0d:cf:97:60:de:8d:c3:a1:4e:7a:0d:
fe:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C6:D5:7B:06:07:57:C7:F2:69:3F:F0:05:18:68:72:79:F3:DB:A6
X509v3 Authority Key Identifier:
keyid:CA:94:2B:27:06:76:1C:2B:A7:53:28:97:83:ED:F9:85:E3:38:F1:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:30:bf:b6:c6:88:2d:db:c6:7f:6c:25:c2:a7:39:1a:75:21:
c7:77:da:77:36:77:df:19:67:df:1c:05:40:53:d8:d4:86:e1:
ed:68:b3:4a:1e:d3:fe:43:1b:5e:b6:38:10:49:1b:3b:3b:d0:
f9:45:02:86:83:72:73:e7:6f:d9:d0:dd:95:09:52:56:4f:14:
55:68:9b:e9:7d:49:e7:90:0a:22:91:19:76:c7:cf:a6:c5:ee:
26:c9:7b:fc:83:c5:dd:5c:15:28:f4:1d:c3:0c:eb:59:33:4a:
80:04:89:46:03:e0:96:a1:8c:35:ac:0e:65:26:76:04:7e:c6:
c6:de:6e:0c:3d:f1:bc:ac:04:94:ca:b6:26:2e:bc:20:04:bc:
4d:e8:08:24:4d:7b:21:03:34:26:98:45:76:65:40:1a:2e:2a:
76:0c:89:bc:da:8d:19:55:fc:51:e0:c2:f8:66:40:7e:a9:40:
71:e4:67:1f:09:7b:51:db:c3:5d:11:dd:e9:2f:f6:de:b0:50:
3f:cf:1f:18:94:b3:b1:bf:90:1a:5e:53:44:02:65:e3:4b:c3:
e5:55:b9:57:00:25:f0:b8:46:88:60:fd:04:0b:a1:cf:40:ef:
39:24:04:bb:d4:5a:0d:fa:4c:d1:20:cf:0e:50:38:ff:13:77:
77:fa:ab:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:20:09 2025 by rpki-client