Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json)
Hash identifier: XQXdYJ0jK2ngS9+uEhsqQhNfdi2IrAde3GvdZ14VxuY=
Subject key identifier: 5E:D8:E0:97:EC:CA:4B:34:84:D9:2E:86:76:41:C8:71:40:2C:2B:63
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 0197B6A089AB835312536562A634D1084459
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
Manifest number: 038B
Signing time: Sat 28 Jun 2025 13:01:03 +0000
Manifest this update: Sat 28 Jun 2025 13:01:03 +0000
Manifest next update: Sun 29 Jun 2025 13:01:03 +0000
Files and hashes: 1: UVQQxsyFxE5G_GAZUd3A6ZXjkCE.roa (hash: zpm9oScjJUHtNk/CwO+EVZyjIHRYFCB8FAgH34Qnsvo=)
2: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: HznYmss1TjwXNizh2hYaJCRHoPrQO2TKWw3AoPlW7LA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:89:ab:83:53:12:53:65:62:a6:34:d1:08:44:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: Jun 28 13:01:03 2025 GMT
Not After : Jun 29 13:01:03 2025 GMT
Subject: CN=5ed8e097ecca4b3484d92e867641c871402c2b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:67:60:42:be:f1:cf:ff:69:c0:7d:a9:40:67:
fc:d0:dc:41:c4:7d:e7:1f:e2:d3:0e:64:e4:d8:b3:
96:86:69:45:00:c1:b0:ae:b1:16:1e:c7:e1:5a:00:
4b:0b:44:ec:b7:65:a5:67:79:51:ba:a3:65:83:b5:
aa:93:f4:53:94:92:6f:3d:7b:8b:2b:06:19:03:4d:
88:e9:d4:cc:25:04:a6:9f:8c:09:58:31:21:61:b6:
76:0a:a7:2a:9c:3c:bb:5b:c9:f3:0d:ab:e3:52:0f:
9e:e1:5d:a4:42:fb:48:6c:97:37:72:d2:2f:b4:26:
8d:af:02:a0:85:67:2e:72:b6:39:31:3c:ed:94:c0:
e0:81:4a:91:60:44:a4:44:09:da:fc:38:01:bf:1a:
fb:c9:0d:f0:18:2b:9a:43:bb:4f:0b:c7:26:88:2f:
dd:e5:4f:4c:5a:04:da:81:76:37:dd:58:1e:d7:0f:
36:ea:3a:5a:1e:c4:84:fb:b2:15:5a:14:e6:f4:f9:
07:3e:d5:95:30:ef:8f:c8:fc:bd:ad:7e:e1:cc:f4:
74:8a:1c:05:f2:55:1d:76:e5:21:a9:e8:97:50:d5:
07:89:76:11:46:fd:f8:32:60:22:2a:ad:cb:18:61:
b1:e9:c3:79:3a:08:c6:c7:ed:34:85:55:fc:e0:c1:
cf:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D8:E0:97:EC:CA:4B:34:84:D9:2E:86:76:41:C8:71:40:2C:2B:63
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:0a:4c:a8:03:55:61:4d:61:c6:b1:b9:71:b8:9c:09:99:8e:
30:59:af:46:f3:72:f5:09:db:3b:ff:e2:7b:6a:06:be:f5:9b:
b6:2f:c1:d5:b3:93:20:0a:8f:76:75:07:49:7c:b5:91:e4:e7:
ea:b9:ee:c9:91:b0:11:41:02:85:82:79:82:43:75:44:00:30:
d0:0c:7c:dd:58:5f:f7:54:98:c4:e0:32:6d:9a:12:78:50:e8:
87:11:54:3c:32:bb:cd:b7:13:2c:87:ae:6d:e6:ab:d0:f3:4a:
bb:d7:02:7b:39:6a:49:c1:c1:b3:80:52:b9:92:b4:49:c2:3f:
78:4b:ce:bd:a6:33:64:3f:f6:bc:af:e6:a1:ff:ec:c9:44:14:
6c:22:5a:17:46:d6:a6:34:2a:58:3a:88:42:fe:07:f3:a7:f3:
f9:b4:37:d1:b2:cb:5d:40:66:24:38:d3:cf:86:b8:05:73:5b:
e9:a0:61:42:0b:4f:86:22:92:e2:d7:20:4e:97:91:08:32:47:
e0:ac:9b:98:4f:bb:23:6c:d0:09:d1:4e:32:0a:84:7d:36:16:
fa:e9:47:67:98:9c:9e:0f:3e:a8:70:41:be:64:f4:64:b9:b8:
db:aa:54:37:ad:ab:63:90:b7:ee:8e:60:3a:b7:cd:2c:7a:24:
41:9b:1a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:41:33 2025 by rpki-client