Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
File: yRjEAZR0zIHsZh_OZObJOJchlto.mft (raw, json)
Hash identifier: D9/po4Doyg7i2k7kOdXfc7hlNh4eFP1CSF5Nf9yll98=
Subject key identifier: AB:6F:8D:BF:D4:0C:91:F9:D5:2E:D3:1E:2F:21:82:DD:29:94:08:93
Authority key identifier: C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
Certificate issuer: /CN=c918c4019474cc81ec661fce64e6c938972196da
Certificate serial: 0197B9A1C416B663B492EC4E7947565590C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
Manifest number: 0559
Signing time: Sun 29 Jun 2025 03:01:15 +0000
Manifest this update: Sun 29 Jun 2025 03:01:15 +0000
Manifest next update: Mon 30 Jun 2025 03:01:15 +0000
Files and hashes: 1: Jsgd2QMS4v8iKbqKY7mpL6rgdrw.roa (hash: zUKbiJyZKBDLVjXxF3gSP5G2WQgNlz6YzfL6risxYY8=)
2: yRjEAZR0zIHsZh_OZObJOJchlto.crl (hash: lEnvD0lkGaMgU9B2fmOhiLtI7KUs5RrauCKxSd0V77I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:c4:16:b6:63:b4:92:ec:4e:79:47:56:55:90:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c918c4019474cc81ec661fce64e6c938972196da
Validity
Not Before: Jun 29 03:01:15 2025 GMT
Not After : Jun 30 03:01:15 2025 GMT
Subject: CN=ab6f8dbfd40c91f9d52ed31e2f2182dd29940893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e3:81:14:0d:9a:cc:e2:c8:52:69:98:06:e8:
26:cb:60:c3:53:1d:72:bd:71:d1:6c:8f:79:6c:5d:
5e:a4:77:9e:1c:23:13:99:31:89:52:a3:09:5e:1e:
84:8e:40:4b:9c:8e:df:39:65:a2:de:68:83:34:61:
d6:71:72:97:02:3d:13:28:86:ad:2c:44:ee:21:c8:
2f:21:37:40:59:3c:18:76:b5:29:5a:27:81:18:84:
f5:de:da:3b:3f:56:1e:fb:5d:96:cf:6e:26:fe:e4:
46:43:30:66:c1:48:f5:0c:7a:af:3b:db:ed:56:54:
a0:1d:be:df:23:57:36:3b:3e:e0:dc:c9:c7:ad:cd:
fe:7c:18:fe:04:e6:c1:64:9b:2d:fd:bc:70:db:48:
58:0d:66:49:2c:08:13:55:a5:88:68:16:21:3f:7c:
b5:cf:0e:c7:72:a3:01:c9:55:4a:21:48:9c:7c:fe:
f6:cb:d4:8f:61:17:4a:ce:fa:e2:11:58:0d:f4:3c:
9d:f4:09:aa:38:b0:93:be:c4:f8:1b:e0:6e:18:5a:
79:9d:92:d1:c0:b8:21:e9:40:d0:c8:3f:37:84:63:
b2:93:97:8b:ee:5a:a4:a3:46:df:5c:4c:33:6d:d9:
01:80:61:1a:79:28:80:1b:d2:92:93:57:0d:67:4f:
8e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:6F:8D:BF:D4:0C:91:F9:D5:2E:D3:1E:2F:21:82:DD:29:94:08:93
X509v3 Authority Key Identifier:
keyid:C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:22:4d:91:01:46:02:28:2f:54:4b:37:a2:16:84:ce:ae:5b:
65:17:b2:e6:e9:97:02:0c:d1:67:b4:9a:f2:01:f7:0a:c9:86:
f1:12:5f:6a:98:eb:a3:76:66:29:d9:2f:8f:34:51:24:ea:42:
0e:e1:03:55:a2:ec:1c:36:1c:fd:51:40:c9:e1:7a:70:ec:ba:
e6:90:f2:43:88:9f:c6:f4:70:a8:b1:aa:73:2c:e2:32:a5:3d:
01:06:b0:70:7c:09:b2:7d:1c:56:33:b5:b1:3c:ab:61:41:1c:
3f:6e:aa:8e:2a:c4:b1:4b:a0:10:c9:da:05:36:c3:ce:a0:78:
dc:23:95:33:9b:30:95:54:51:ac:7c:96:5e:e5:e8:aa:a8:d6:
44:95:63:0c:25:eb:9b:92:df:36:a5:63:97:0a:33:ff:2b:d8:
2d:21:16:2f:aa:d6:d8:c6:e2:1c:f4:2f:50:b0:3a:91:e9:ab:
ad:df:87:7b:03:2d:01:81:ee:8d:1a:10:dd:66:2a:e7:c2:a4:
6f:62:79:24:96:5c:ab:40:52:cb:01:55:3b:5a:80:61:09:32:
f7:77:bf:9d:cb:46:df:31:10:73:e0:25:8e:0b:a9:bb:cd:db:
bc:5a:72:c5:2f:4c:86:9c:fb:1f:43:88:a0:8c:e9:2b:16:49:
4e:bc:73:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:38:49 2025 by rpki-client