Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: DvrsnMQNNV1ggrojUGjaq3tDc7l9/lITu8O/e+8Jnbw=
Subject key identifier: 33:A5:61:48:38:89:F8:6C:D3:50:19:B3:B8:30:D5:42:6E:4B:15:9B
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 0197CE71DE4B8BCFA77D480369310F8DFA2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 1129
Signing time: Thu 03 Jul 2025 04:00:58 +0000
Manifest this update: Thu 03 Jul 2025 04:00:58 +0000
Manifest next update: Fri 04 Jul 2025 04:00:58 +0000
Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: Q1vpX1ANpesSMZi7k3WIvh0ilKIlCdnFtenMAZ0VLDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ce:71:de:4b:8b:cf:a7:7d:48:03:69:31:0f:8d:fa:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Jul 3 04:00:58 2025 GMT
Not After : Jul 4 04:00:58 2025 GMT
Subject: CN=33a561483889f86cd35019b3b830d5426e4b159b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3c:bc:78:da:95:06:8a:61:3a:25:36:1e:5c:
8b:32:e1:ea:ae:09:d4:26:02:de:84:6e:25:8e:00:
90:bb:21:e1:57:0a:74:0e:aa:46:32:a6:de:8f:f5:
49:2b:5a:45:18:44:df:d3:ea:34:96:40:93:ac:09:
5f:b6:8c:6a:7f:d7:db:ca:30:3c:f5:45:70:53:db:
0d:3c:c1:e2:d2:fa:6e:79:ca:29:71:35:f8:26:43:
93:9d:22:eb:97:47:56:55:67:ee:b5:96:9c:73:52:
14:55:6c:4b:b3:20:79:d3:17:b0:ba:05:36:ed:bb:
cc:19:c8:f2:d8:ce:58:72:8e:fd:21:c6:dd:67:d7:
29:b1:cd:94:c5:76:42:9b:7d:ac:ef:50:12:22:9b:
12:e2:37:2b:7b:a4:73:90:9f:e7:31:b5:29:7e:ad:
58:b9:87:6e:76:1b:62:62:0c:9d:6c:d3:de:be:7e:
ff:e4:0d:c5:e6:58:ed:02:29:8f:7d:8b:53:81:13:
52:23:eb:c4:f1:62:65:a2:ab:00:6e:95:45:bc:07:
be:b1:dd:aa:63:ca:66:7d:92:39:2e:aa:f2:13:17:
54:94:a9:21:a6:77:d1:a5:67:a5:65:2f:44:dd:d6:
dc:a4:31:9c:0c:70:dd:7d:e0:a1:07:51:b3:b3:75:
70:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A5:61:48:38:89:F8:6C:D3:50:19:B3:B8:30:D5:42:6E:4B:15:9B
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:56:ee:0d:d8:57:0d:44:7c:62:4a:8f:d8:3c:c7:c8:0b:93:
63:30:c0:8e:7a:f7:8c:42:e2:04:3d:ec:17:f7:c8:bc:09:1a:
a3:3e:da:fe:1d:02:69:77:fa:74:1f:8b:3b:d0:67:3c:fb:8e:
42:e8:61:eb:6d:46:3e:ed:89:a5:96:26:27:ad:13:a6:e4:f7:
5a:c6:3f:3e:84:ca:54:ab:24:12:16:c0:1e:2a:6c:eb:75:8b:
5a:94:44:5d:41:c5:32:58:37:23:82:29:24:73:e1:3c:c0:e8:
f6:fc:bd:6e:1f:4d:fd:08:42:3d:a6:44:e1:97:84:5d:60:44:
a1:ee:89:0b:42:31:a5:1b:d5:f5:db:8b:8a:ae:3d:4b:d2:5a:
00:1e:06:e7:c0:01:a9:a9:ff:48:2d:6d:e7:74:b4:ee:af:9c:
d7:34:a5:de:2a:09:47:2a:c8:f2:57:aa:54:96:d6:69:4a:83:
94:e8:a3:58:d5:7f:44:37:b2:7c:cb:e4:c4:ee:fc:24:93:6c:
3f:9f:96:4c:e4:35:79:4e:39:cb:43:8c:2a:fd:9b:7a:0a:4c:
c0:81:a7:91:b6:46:7f:78:76:5f:61:55:e0:ef:ea:4a:b8:61:
b1:ba:55:eb:58:6e:b6:9b:2d:6d:cf:d9:b6:c7:06:03:aa:b6:
b5:a5:ae:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 13:17:49 2025 by rpki-client