Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json)
Hash identifier: Hof2s2PzF7/WXhI21mu+rhIn8Php/LzBMv+/w72zuN0=
Subject key identifier: E0:B2:13:0B:3F:B4:5B:C8:EC:C6:1D:CA:D9:4E:07:B7:79:3D:D7:43
Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848
Certificate serial: 0197B77C69C238C19A8EADEEE65BD599C846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 17:01:13 +0000
Manifest this update: Sat 28 Jun 2025 17:01:13 +0000
Manifest next update: Sun 29 Jun 2025 17:01:13 +0000
Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=)
2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: kKPUQSaA6c5Ses+0NkNpwxSCup5etkUrBZGEy2gNXXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:69:c2:38:c1:9a:8e:ad:ee:e6:5b:d5:99:c8:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848
Validity
Not Before: Jun 28 17:01:13 2025 GMT
Not After : Jun 29 17:01:13 2025 GMT
Subject: CN=e0b2130b3fb45bc8ecc61dcad94e07b7793dd743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:89:4e:c0:05:e8:49:6c:bd:82:d4:e6:1c:3d:
dd:0d:b0:eb:ed:66:e1:78:d4:1f:d1:82:a9:b9:10:
72:f2:52:c1:a8:6c:8c:f6:00:ff:e4:73:f5:f4:2c:
91:96:66:23:60:3a:c3:8f:1e:6f:20:b3:ed:4b:ac:
5b:c0:95:92:a0:b0:13:6e:b4:c8:1e:22:fe:d1:86:
0f:a1:58:18:fd:af:cb:8e:e0:94:a6:b0:3e:fb:fe:
8a:62:32:61:96:d8:2c:33:e0:48:02:4c:85:b7:66:
0e:5c:32:ed:e4:c3:15:c3:fb:ea:ea:48:73:88:82:
9d:89:a4:a7:52:4a:2b:8b:f4:a0:38:7f:13:36:bd:
1b:91:e3:b5:59:b3:de:b3:d3:72:d5:59:ca:51:77:
57:a5:8a:f8:1c:a2:bc:61:2e:9b:40:6c:51:32:86:
8d:56:50:62:3d:7a:d3:56:d5:7b:6e:78:e8:00:4d:
19:5c:78:de:89:96:9d:04:53:97:aa:57:d1:f4:bc:
7b:33:ec:b7:44:35:d9:01:ef:ee:69:e5:f3:ac:3d:
ea:34:bc:67:b8:a1:ca:8e:bb:25:9d:59:56:9f:a3:
3d:43:6c:05:51:61:7c:6e:bf:9f:49:36:7d:49:79:
d0:a9:71:6a:56:e2:c4:1c:1f:e2:36:49:f0:3e:81:
fb:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B2:13:0B:3F:B4:5B:C8:EC:C6:1D:CA:D9:4E:07:B7:79:3D:D7:43
X509v3 Authority Key Identifier:
keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:4a:e1:18:1a:30:14:a0:40:91:79:91:72:e8:bc:59:83:90:
56:23:e8:09:b4:63:8b:2f:83:27:8b:e3:63:e7:76:d2:0e:ea:
3c:68:de:30:01:06:3f:b7:08:77:bb:af:fb:5f:df:0a:9b:df:
5b:45:9d:d0:4e:94:f3:00:70:0f:e5:a6:62:0a:da:1f:da:6e:
3d:72:b4:4c:bb:64:8c:3c:88:c7:0b:3c:9c:81:aa:7f:77:cf:
91:96:00:43:55:13:09:01:83:19:d0:2e:8f:51:15:c6:d6:0f:
e5:fa:0f:53:ef:90:3d:51:3f:12:05:9d:47:b8:a7:c4:56:f0:
ec:b5:73:32:a6:c1:f1:3a:6c:fa:36:ac:b2:21:6a:20:0e:55:
76:f3:a7:ec:66:8e:09:cd:98:d7:d3:7f:ff:64:1a:06:bb:be:
65:2f:ae:d0:d0:d1:83:2c:19:06:fe:28:3b:56:f2:76:ae:e5:
4a:ae:a6:5d:fa:54:a0:00:c0:51:47:88:91:e4:96:46:1a:29:
86:d7:c5:7d:50:0f:2c:ab:ce:bd:0e:e1:b6:f5:fe:6f:88:79:
a3:3e:c4:95:71:9a:cf:37:42:dc:e2:9b:e4:f7:dc:e3:4b:6e:
d6:fd:1e:07:49:90:24:18:ae:d6:45:50:ee:83:79:ed:2d:42:
ad:83:ab:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:34:56 2025 by rpki-client