Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
File: YNxaADaNiuH7qZVDHwOkExrdipo.mft (raw, json)
Hash identifier: GBvsYvnUVLDhJ+Wyq8P7S5l1Ab6nqkWM/Jt7MNSaNSU=
Subject key identifier: 65:23:90:16:FE:0C:99:81:79:01:DD:4F:FD:C0:60:1C:90:A4:E3:E7
Authority key identifier: 60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
Certificate issuer: /CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Certificate serial: 0197B70F29EA0B3F8988E94BC521106C5E6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
Manifest number: 0761
Signing time: Sat 28 Jun 2025 15:01:53 +0000
Manifest this update: Sat 28 Jun 2025 15:01:53 +0000
Manifest next update: Sun 29 Jun 2025 15:01:53 +0000
Files and hashes: 1: 2eWTXc6MdHH3SvAeJM9n6ydZI5Y.roa (hash: XnJT5JSjqE4Adj+ylm025sl/JK+1c1iwTV7Ra2tEO8w=)
2: YNxaADaNiuH7qZVDHwOkExrdipo.crl (hash: Rrn6r/H1U9qLb+VnkDmTj2NNRprHEr3mX+2X6fYhmrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:29:ea:0b:3f:89:88:e9:4b:c5:21:10:6c:5e:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Validity
Not Before: Jun 28 15:01:53 2025 GMT
Not After : Jun 29 15:01:53 2025 GMT
Subject: CN=65239016fe0c99817901dd4ffdc0601c90a4e3e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8f:d9:a7:3e:61:b0:55:94:40:be:1d:81:63:
52:56:c6:d8:35:4a:b2:65:c2:48:8a:7b:2c:83:d7:
53:11:06:6b:3e:8a:26:ce:09:85:7d:e0:a5:77:83:
87:8e:cf:72:9b:b6:d3:eb:94:05:a1:47:22:60:e9:
44:ce:7b:36:db:26:4e:a3:9f:25:ed:3c:f8:39:ef:
fe:8d:5e:b7:0a:f2:25:28:20:8d:eb:9d:22:c6:8d:
6f:c3:24:47:15:1d:21:60:4f:43:31:2a:f8:8e:3c:
d4:70:1c:18:8b:67:1c:59:86:42:c0:01:f0:43:54:
96:63:de:f1:16:af:e3:b8:78:c9:49:9e:21:2f:4c:
0a:4a:57:2b:f0:b2:db:61:f8:b9:0d:81:86:cf:e8:
1d:62:3f:c1:67:49:15:f6:17:c4:16:05:1b:8b:c2:
34:a0:05:9a:9b:aa:d5:94:61:74:b5:68:f6:e3:ff:
b5:b4:5a:5c:df:16:f8:18:36:bc:38:26:b2:a2:17:
54:48:64:6c:32:82:15:9c:d8:7b:e5:3d:26:5e:a7:
45:1b:05:ad:b1:3c:1b:23:cf:da:60:98:ee:ae:b1:
86:50:93:1e:83:c6:da:95:54:9e:0b:30:62:a0:4e:
c5:17:24:cb:b0:3d:41:c7:31:b3:50:7d:e8:fe:db:
e7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:23:90:16:FE:0C:99:81:79:01:DD:4F:FD:C0:60:1C:90:A4:E3:E7
X509v3 Authority Key Identifier:
keyid:60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:76:ac:ba:81:7a:35:6d:15:f3:a8:ad:7c:1e:84:2a:60:2c:
7f:47:83:12:bb:8c:1a:60:1e:61:07:3d:7a:85:91:65:a7:6a:
1b:21:7b:ec:85:c5:54:63:4c:b0:0b:58:dc:cf:29:97:13:49:
bc:35:16:35:13:b6:66:f3:a6:0d:39:44:74:75:31:53:61:74:
ef:ad:1b:96:56:b6:f0:a4:cc:40:61:e6:96:eb:52:cb:88:9d:
da:2e:bf:ad:07:03:b3:42:8c:bb:1f:48:92:9d:c0:a0:e8:1c:
6b:92:87:57:78:a2:56:6f:0b:b2:08:ff:27:7e:a3:2d:d5:ae:
22:1f:b3:e2:65:4a:72:72:f0:52:e6:1c:64:64:99:5f:a6:58:
2a:68:27:44:e8:cd:0e:15:4c:28:79:70:b1:3f:df:e3:fe:55:
8c:9a:52:23:66:72:00:b7:64:5a:d2:cb:c5:53:cc:21:9f:9c:
cf:57:b2:5a:9a:a6:ed:c7:cb:8f:9b:2b:b3:93:2f:39:31:65:
a0:76:34:aa:12:1b:46:a0:3e:1d:71:a0:1c:d6:78:ef:15:74:
1e:4a:c3:1e:99:f3:28:80:e0:66:66:64:1d:5a:04:56:f8:d4:
5b:11:11:3b:42:71:64:c0:30:69:e2:70:9f:70:60:36:67:a1:
21:64:4f:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:42:09 2025 by rpki-client