Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
File: yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft (raw, json)
Hash identifier: BVI2exaNZaW1CNEcLOEZsxaVlrN+ztopD3dBjlk2VLE=
Subject key identifier: A4:CA:19:18:0A:52:A3:D7:D5:58:56:42:9D:45:7B:12:DD:2A:2A:5C
Authority key identifier: C9:1D:7E:44:9C:FE:C3:12:0A:98:51:16:3C:77:9A:60:26:98:61:72
Certificate issuer: /CN=c91d7e449cfec3120a9851163c779a6026986172
Certificate serial: 0197B821434686C5B536DAE3CD55E791381C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
Manifest number: 02EC
Signing time: Sat 28 Jun 2025 20:01:16 +0000
Manifest this update: Sat 28 Jun 2025 20:01:16 +0000
Manifest next update: Sun 29 Jun 2025 20:01:16 +0000
Files and hashes: 1: yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl (hash: /Lf06QZ630yThzox3Dy53OM9I8UOnV/fKafIzGRdfRk=)
2: z4GL3R9iwn241BwmecTavitjvmk.roa (hash: gozzqy0wMPz097Vp/T+QSgyQzissUGlOoz2lP5A4OOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:43:46:86:c5:b5:36:da:e3:cd:55:e7:91:38:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91d7e449cfec3120a9851163c779a6026986172
Validity
Not Before: Jun 28 20:01:16 2025 GMT
Not After : Jun 29 20:01:16 2025 GMT
Subject: CN=a4ca19180a52a3d7d55856429d457b12dd2a2a5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fb:73:b9:40:e4:2f:fe:f9:14:3e:33:88:15:
be:e0:95:8a:cc:ac:47:a9:8a:01:67:c9:52:73:2d:
70:d6:85:32:40:d0:bc:b9:8b:4b:04:5f:3a:c0:00:
48:41:9b:74:37:bb:04:80:7b:85:b3:7f:01:d5:d0:
00:cb:33:30:62:7e:dc:34:f3:04:4d:06:2d:5b:bd:
8c:7a:22:f3:ea:e7:49:ef:e1:37:67:c7:41:b6:85:
09:6c:d0:93:62:9c:8b:c9:bb:1f:ae:c9:8a:f2:6c:
9a:f2:c5:82:de:76:fa:d9:8d:b8:7d:ed:80:e3:f1:
a9:c9:6d:b3:09:25:ef:02:98:d0:ed:1e:ce:cb:85:
ac:d6:5c:1e:8d:2d:8c:cc:6c:c9:d8:05:f9:f0:01:
5c:49:5b:c6:d6:6b:0c:c4:b6:d1:3a:06:e1:34:ab:
12:69:2a:0d:ca:12:33:d7:ed:85:f2:1d:a6:73:98:
d6:4c:6b:8a:7c:87:1a:aa:0e:ea:75:3b:aa:85:2c:
4a:83:01:0d:c7:bc:40:44:40:9c:6f:07:90:36:70:
34:3f:1e:70:25:48:5d:d8:42:2a:8d:67:75:75:9d:
aa:f4:97:92:21:4a:0a:97:ba:45:1c:d2:7c:3d:f4:
69:74:2f:c3:50:13:f5:3b:46:d4:4e:a1:1c:b6:6a:
1c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CA:19:18:0A:52:A3:D7:D5:58:56:42:9D:45:7B:12:DD:2A:2A:5C
X509v3 Authority Key Identifier:
keyid:C9:1D:7E:44:9C:FE:C3:12:0A:98:51:16:3C:77:9A:60:26:98:61:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:f1:2a:97:fd:88:87:24:21:6a:16:4d:77:83:fb:8c:53:9b:
9e:e2:04:30:c3:14:49:4a:ab:be:69:6a:d3:f3:72:26:3d:1e:
df:ff:83:7b:da:cd:fc:80:11:5f:d3:99:29:f6:36:9c:eb:6c:
fd:41:be:86:51:0f:da:7e:b7:57:e6:10:d3:60:be:5f:7e:b9:
c7:b5:c1:da:77:fa:78:4c:64:aa:0f:46:5e:fb:3c:a9:d1:b7:
5b:ab:52:13:9f:91:d6:ac:ce:80:6b:b4:16:bf:4c:66:bd:b1:
29:dc:bf:ee:2e:ff:51:c8:e5:22:90:64:63:cf:f8:4d:a0:5e:
e5:f9:91:7d:4b:25:c6:7e:1b:8e:1b:9e:ee:8c:c7:68:9e:c7:
e7:d4:b8:71:1e:87:33:34:e1:a2:7f:83:57:9b:b6:47:6c:8d:
2c:63:60:68:4b:d1:54:52:0e:c6:07:58:a3:5e:95:0c:63:4a:
bf:87:ca:cf:96:f1:0b:a9:02:0b:d2:71:81:f0:e3:7e:78:06:
46:dd:cf:f0:9c:7f:11:40:be:24:12:3b:99:6d:ae:82:86:4a:
04:77:ff:7d:13:a5:84:ce:9a:92:01:8b:40:66:1e:82:26:e7:
09:1b:2b:c3:79:0e:0a:37:98:c3:44:a6:0e:1a:ae:b5:b2:9c:
80:b5:fa:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:53:25 2025 by rpki-client