Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json)
Hash identifier: jOex8gKd090ninH6hu0K+YwnDOHNsAzEDg0iN2F59Os=
Subject key identifier: 8D:87:5D:A8:E9:42:13:FF:50:5F:A7:83:F7:36:7E:DB:01:C5:FD:77
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 0197B745855947A763A1DEBFFEAB45B2F3A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
Manifest number: 1154
Signing time: Sat 28 Jun 2025 16:01:15 +0000
Manifest this update: Sat 28 Jun 2025 16:01:15 +0000
Manifest next update: Sun 29 Jun 2025 16:01:15 +0000
Files and hashes: 1: nPtNOVhjTVbNoPzqUJGa-Eqnb0Y.roa (hash: Yuz9f1rxV7S4atM+GycUQVhSQinvjc3oT1lXV1zOVuE=)
2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: PUnylUjOkzFHl1RpYkgN9A0KKkCnWY7Zrb+9yS92Dfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:85:59:47:a7:63:a1:de:bf:fe:ab:45:b2:f3:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Jun 28 16:01:15 2025 GMT
Not After : Jun 29 16:01:15 2025 GMT
Subject: CN=8d875da8e94213ff505fa783f7367edb01c5fd77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f2:5c:aa:e1:c0:70:58:d6:be:a8:23:f9:9b:
9c:de:91:d2:61:0f:5a:58:b5:f9:a6:9e:c4:e2:6b:
5e:a4:fd:c0:38:e2:ab:c6:62:5e:66:14:0b:17:2c:
9a:c7:53:bf:5f:f3:2d:52:7c:e8:2b:b0:f3:ba:56:
2b:53:12:2e:5b:ff:1a:2c:0d:9b:a4:9b:14:0b:d3:
0e:33:cd:9e:be:2b:97:49:0b:02:ac:f1:96:bd:ac:
c4:09:30:44:7e:db:b2:4c:f9:b4:37:c2:7f:97:98:
61:fc:e9:7c:f5:57:26:c5:ee:22:2b:69:a2:0f:17:
39:01:05:47:5c:88:0b:63:3e:09:c6:ef:3f:7f:90:
c9:5c:f2:19:62:1d:61:00:a5:50:f9:4f:c1:e9:99:
ec:94:ab:a5:5d:08:9e:83:ad:ec:df:37:d2:20:5c:
39:70:69:f8:84:b2:d7:ff:62:93:48:75:f4:94:d6:
60:e0:f2:4b:35:57:45:d8:f0:fc:9a:44:c5:18:74:
87:f1:2d:aa:2e:26:e8:9f:da:f5:09:93:a3:10:10:
5e:6a:3e:cb:8e:2f:1d:6a:70:c1:e4:96:1a:dd:cd:
52:dc:da:65:f8:9b:04:06:68:bd:57:c0:99:30:20:
a7:c8:64:5b:9a:b1:d6:45:6f:84:b9:c5:c1:e4:ed:
4a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:87:5D:A8:E9:42:13:FF:50:5F:A7:83:F7:36:7E:DB:01:C5:FD:77
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:03:42:2e:62:7c:30:19:06:32:1f:85:5e:82:73:55:ea:4d:
85:12:85:96:fa:cc:3d:69:5d:18:af:b6:14:b5:c3:ce:af:4b:
60:c0:d7:90:fc:76:0e:2d:77:52:ec:c3:d9:9d:49:c9:aa:d1:
de:8e:89:f9:73:5e:99:55:ea:9b:95:54:9f:a4:eb:c2:44:8f:
93:b4:8b:10:2c:ed:49:fd:43:72:b7:fe:55:81:e9:c4:34:6e:
ba:3c:68:53:26:39:2e:7b:54:fc:f3:56:2c:c0:81:bc:90:26:
c0:75:24:4b:4d:39:9c:99:4d:fb:9a:71:8a:83:3b:d3:23:3b:
c2:43:ea:75:26:1a:6d:40:d6:36:6a:46:fe:a3:99:a1:99:5a:
44:53:32:80:51:00:2c:66:03:14:45:de:63:bb:c8:39:c8:db:
c1:7e:3f:8c:66:24:01:3f:d8:70:69:ee:83:78:45:eb:06:da:
67:20:1c:a9:d6:74:42:d1:93:f1:40:75:d6:fc:09:c6:ee:40:
c8:de:61:9c:fd:d1:1c:12:59:a2:cc:ca:14:5e:18:01:65:3b:
89:1d:4e:d8:3c:38:7b:59:2f:cd:4c:37:60:28:e6:eb:74:c4:
f2:04:58:be:15:c0:43:96:1e:70:62:ec:d0:dc:83:8f:b2:36:
f5:d1:c6:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:08:14 2025 by rpki-client