Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft
File: yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft (raw, json)
Hash identifier: GvlRR68v1O80RuRB7BadYmV4Lphtc7bTsYceNcj0u5A=
Subject key identifier: BE:42:57:2C:06:A0:6F:60:05:01:02:19:89:1F:D1:C9:5A:3A:35:C1
Authority key identifier: CA:BF:19:34:FF:E9:BF:9C:E3:51:57:2E:D2:EB:82:07:CB:55:53:58
Certificate issuer: /CN=cabf1934ffe9bf9ce351572ed2eb8207cb555358
Certificate serial: 0197C56E9AE9E3EE387D35095618598FE734
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft
Manifest number: 0E
Signing time: Tue 01 Jul 2025 10:00:49 +0000
Manifest this update: Tue 01 Jul 2025 10:00:49 +0000
Manifest next update: Wed 02 Jul 2025 10:00:49 +0000
Files and hashes: 1: yr8ZNP_pv5zjUVcu0uuCB8tVU1g.crl (hash: OhQor4LQ+NWmfUi8QvZ979FE25NiCiCHxwaXw7Pbifk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 10:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c5:6e:9a:e9:e3:ee:38:7d:35:09:56:18:59:8f:e7:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cabf1934ffe9bf9ce351572ed2eb8207cb555358
Validity
Not Before: Jul 1 10:00:49 2025 GMT
Not After : Jul 2 10:00:49 2025 GMT
Subject: CN=be42572c06a06f6005010219891fd1c95a3a35c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cf:c6:a1:e3:05:29:f3:03:71:eb:47:52:e3:
18:7d:4c:c1:ec:be:9f:23:e1:da:08:04:1e:87:f9:
33:14:ca:48:71:d1:bf:74:38:09:41:4f:73:7b:9b:
2c:4c:6e:8e:64:44:ea:50:08:de:f2:96:ad:01:00:
54:b3:b0:24:8e:93:03:18:56:c1:a5:ac:f4:12:34:
f3:93:64:e6:33:31:78:b4:b3:eb:90:b4:f3:fb:77:
31:6d:23:f2:78:34:f1:e9:36:33:08:47:0f:f6:b8:
60:05:64:cf:19:b7:af:af:c4:ba:11:4c:be:b0:93:
a5:6a:b8:5f:d3:07:24:0b:f8:b8:9d:ad:3d:c6:84:
89:6b:67:93:22:bc:d1:b2:66:e4:f0:8e:2a:31:b1:
10:f6:6f:67:06:37:25:74:60:47:4e:f9:aa:9c:5d:
5f:33:5a:41:44:36:a6:e0:da:75:fa:33:50:84:71:
c0:e8:61:86:3a:58:21:af:e6:f0:4e:d8:15:c5:bd:
81:67:cb:5b:4d:58:01:ce:0d:c6:a3:35:cd:89:66:
63:3a:58:21:12:c2:2e:a7:2b:00:ef:bb:bb:1e:8d:
04:ce:56:44:2d:7a:7f:11:f6:4d:2a:84:03:1c:79:
e0:65:7c:54:7b:7b:d3:70:c8:67:f2:60:76:e9:18:
ea:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:42:57:2C:06:A0:6F:60:05:01:02:19:89:1F:D1:C9:5A:3A:35:C1
X509v3 Authority Key Identifier:
keyid:CA:BF:19:34:FF:E9:BF:9C:E3:51:57:2E:D2:EB:82:07:CB:55:53:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/98d6bb-0a89-48c4-b932-5b389343dbc9/1/yr8ZNP_pv5zjUVcu0uuCB8tVU1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:89:a7:bb:e8:3f:b5:6a:09:86:9c:c1:54:f3:86:9c:35:24:
0d:39:27:ad:f0:9a:6c:88:50:93:66:e6:9b:fa:c6:45:d7:bf:
33:7c:b3:31:1b:65:25:af:07:18:a6:ce:78:cb:5c:44:1c:f0:
37:7d:ce:1a:a4:12:17:67:5f:82:4f:aa:51:a3:34:27:66:28:
59:c9:5b:53:36:ca:47:f8:12:32:63:32:25:77:90:d4:c5:15:
2f:9a:ad:da:16:74:60:e8:1d:3e:73:49:35:d0:06:09:b6:4b:
f2:28:dc:6a:be:7f:10:ce:f6:ee:7b:15:7f:64:28:89:1e:36:
a9:04:35:a3:76:12:75:42:11:c1:0b:23:4c:2c:c8:c9:2f:33:
87:82:97:8c:c9:2f:2d:69:50:d6:46:87:73:8e:4d:94:db:9d:
2d:9b:8e:9a:91:9e:f2:98:5d:f9:02:7d:02:1a:90:83:a8:34:
ac:a6:2a:cd:de:91:52:d6:c9:2f:17:0e:1f:8e:65:60:54:2a:
60:e5:f2:f6:99:f8:c3:d5:09:71:bc:91:49:ee:f6:61:80:3a:
a0:19:ec:7f:6b:52:ef:cb:3e:30:69:f2:07:f0:78:04:52:3e:
8b:c2:a6:71:db:23:31:a2:4f:ae:b9:f0:56:28:17:bb:7d:db:
cd:29:81:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 18:42:16 2025 by rpki-client