Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
File: yuDyZX221YxEden7gXNW4u3SzA8.mft (raw, json)
Hash identifier: Qgdt7AmWU1KVHlukYNAT1ShNLtJG8OYNUldShYXiYyY=
Subject key identifier: AC:00:9F:F2:F3:02:DB:57:DA:84:BE:0B:D1:91:43:EB:44:47:58:FC
Authority key identifier: CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
Certificate issuer: /CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Certificate serial: 0197B70EEB453F355477CE54FA1B4F525988
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
Manifest number: 1191
Signing time: Sat 28 Jun 2025 15:01:37 +0000
Manifest this update: Sat 28 Jun 2025 15:01:37 +0000
Manifest next update: Sun 29 Jun 2025 15:01:37 +0000
Files and hashes: 1: yuDyZX221YxEden7gXNW4u3SzA8.crl (hash: bjetqYpeldDrpDP32I4cYrlcV37Nh6ecBtsbUNys/+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:eb:45:3f:35:54:77:ce:54:fa:1b:4f:52:59:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Validity
Not Before: Jun 28 15:01:37 2025 GMT
Not After : Jun 29 15:01:37 2025 GMT
Subject: CN=ac009ff2f302db57da84be0bd19143eb444758fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5b:3b:b8:00:ee:c7:2c:47:3d:66:22:b0:ec:
06:a9:66:dc:7c:e7:61:0f:c9:32:74:95:5e:d3:0b:
f9:87:2c:82:da:19:dd:b1:03:11:8a:50:02:88:b3:
a7:f1:ab:d4:7d:8b:a8:87:ae:92:60:15:e2:fb:72:
7c:8d:d5:bd:e5:c7:5e:f7:68:96:8b:69:75:9f:1a:
c8:58:cc:85:53:e3:39:15:7c:84:9e:ee:01:e8:57:
c4:4b:ff:20:ec:32:ed:20:c9:ee:1d:7c:90:a0:d1:
83:09:14:bc:e0:71:62:ea:a8:60:81:e3:7c:46:13:
de:30:27:e6:2e:c8:ed:3b:10:b2:a3:a7:4e:1e:b8:
80:f0:56:9b:de:60:10:d9:9c:ca:81:6b:a5:2d:d2:
c3:27:2a:f4:2a:87:be:ff:48:f6:6d:57:5d:92:2b:
cc:dc:e0:f2:50:74:85:48:66:1d:ba:1c:92:77:58:
50:c5:d7:c3:f1:1b:8a:83:93:0c:c9:a3:d0:e0:5b:
38:b1:5e:8a:d2:8b:3c:b0:0d:b0:9b:b0:91:72:f6:
06:68:25:ff:78:46:5a:40:ce:94:2a:c8:67:b9:5e:
eb:6e:17:6f:c1:6a:94:1b:e4:f9:4f:69:c5:7d:4d:
d2:c9:88:45:48:f8:21:92:22:aa:27:1a:f3:c2:88:
f1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:00:9F:F2:F3:02:DB:57:DA:84:BE:0B:D1:91:43:EB:44:47:58:FC
X509v3 Authority Key Identifier:
keyid:CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:ce:25:98:5c:b8:6b:1d:6e:2d:54:90:4d:a8:7a:b7:f3:aa:
3f:23:a8:db:81:08:5b:f3:46:12:7c:0a:72:31:ac:25:a0:bc:
5c:2e:b2:96:a3:78:d3:9a:06:8b:a1:ed:a6:78:f9:1a:4d:f6:
66:40:a4:8a:6e:b2:b3:50:59:61:37:99:61:56:01:00:28:e9:
57:37:07:26:fb:11:50:3e:81:42:fb:de:cb:44:9b:d6:54:9f:
72:38:4e:8b:84:f1:c7:14:da:c7:78:42:28:6e:b6:97:c7:f1:
d1:ce:3b:8b:47:54:0b:87:0a:cc:fc:d4:35:84:86:c5:97:b6:
78:97:77:2c:18:fe:ee:de:50:ea:a4:f1:de:bf:09:94:e0:01:
d7:f5:23:56:3e:c5:40:d0:8b:31:8f:be:82:2a:42:76:54:d2:
13:e1:49:40:ad:c9:a4:e5:28:27:2e:39:c2:67:0d:03:7f:e7:
87:5b:b7:05:c2:16:60:98:b4:a6:4c:de:61:02:b9:8a:7e:8e:
8d:d9:2b:64:17:03:a6:4b:1c:cf:22:2e:1e:4a:cf:11:e2:4a:
4e:0b:1e:31:8e:e4:43:5a:a7:85:02:1f:63:e8:2c:cc:68:38:
56:af:c5:60:09:c9:0d:66:2b:1d:3a:cb:85:84:39:f6:78:2f:
9f:f5:13:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:36:41 2025 by rpki-client