Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: sZ5WYxPPj4006hw6NVi9HXgYsr5IA1W+abs4fRhbmhY=
Subject key identifier: 78:2B:58:4E:66:3E:B7:57:D0:73:A4:96:45:3B:CD:41:64:4F:07:4C
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 0197B5C4D0EF5ECF96DD5C844E29CE9A5E74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 0EDE
Signing time: Sat 28 Jun 2025 09:01:03 +0000
Manifest this update: Sat 28 Jun 2025 09:01:03 +0000
Manifest next update: Sun 29 Jun 2025 09:01:03 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: fC/o6FWAbNJvyrSN7gKaNvzSq8AqWyPj81lsyiwlrmw=)
2: pGBMbGUVmfmMQKR1-BVF--sKK7U.roa (hash: ayj/a/EtllFNMGD1HzcA6KglHzS5bxHd+NVb8RRWcAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:d0:ef:5e:cf:96:dd:5c:84:4e:29:ce:9a:5e:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: Jun 28 09:01:03 2025 GMT
Not After : Jun 29 09:01:03 2025 GMT
Subject: CN=782b584e663eb757d073a496453bcd41644f074c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fc:a5:61:37:69:8c:4b:b2:07:ea:33:e7:67:
aa:7a:0f:31:3a:dc:b0:d3:08:9b:2d:6a:f0:b2:3f:
9e:6a:07:4e:15:47:8a:a0:ce:2b:c0:8a:1b:a4:42:
14:06:58:6a:14:73:c6:b3:90:29:d7:97:75:33:fe:
25:2e:21:75:3b:ec:1a:cb:4d:25:80:69:16:6f:85:
e2:af:7d:66:ef:6a:07:c3:b9:81:8d:08:61:63:3c:
d0:41:a3:98:2c:80:e5:53:c3:8f:bf:cf:b6:5f:b2:
a0:42:8c:31:a3:da:29:7c:c7:77:d3:7a:3e:cc:3f:
d1:40:9c:9e:5b:7a:26:53:11:70:92:fa:b9:07:a0:
a4:af:db:dd:53:81:75:63:7e:e5:85:62:af:45:22:
a5:1b:72:f3:e6:34:81:07:03:8d:bb:a1:50:24:7d:
78:04:0e:94:73:81:2e:1f:36:43:38:2f:a3:4e:65:
55:d7:d9:c3:67:32:38:ee:e6:27:1e:fc:e0:9b:03:
ea:e9:6c:58:cf:7f:71:2b:e6:8a:a4:54:20:82:e9:
4d:b1:a6:ae:ea:de:7f:92:f7:b5:48:1f:4f:38:27:
af:53:65:7b:81:d3:02:50:b4:37:77:64:6d:b1:ee:
57:84:12:d6:00:73:80:cd:3a:5d:93:82:d1:ed:4b:
c3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2B:58:4E:66:3E:B7:57:D0:73:A4:96:45:3B:CD:41:64:4F:07:4C
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:ab:ec:1c:cf:27:7e:d4:d7:de:da:7f:13:9a:7c:61:01:70:
98:46:39:13:28:88:f8:44:93:41:f1:02:5f:34:ba:12:85:03:
85:27:c9:aa:d0:e3:62:6c:09:42:a0:b1:11:53:d1:b4:09:a2:
63:12:63:2a:7f:f7:0f:7d:10:40:62:fc:d0:fa:0c:8c:9f:94:
59:e0:54:1d:20:ae:b1:05:55:30:aa:13:c6:ee:51:16:74:71:
74:b6:fb:f4:1e:c4:7c:16:42:78:fe:c9:df:a3:b2:08:6e:24:
27:65:dc:be:d5:04:ff:a8:0b:f4:b0:c7:64:93:6f:cd:47:4b:
bd:64:a5:aa:d3:06:9a:69:45:a3:f6:be:ec:eb:6e:65:a9:d0:
23:2a:2a:03:06:9c:4a:bf:7d:de:ac:f9:c3:45:64:0d:61:8e:
97:5f:2e:5b:35:98:1a:46:10:26:ad:4b:c0:67:19:a9:b8:27:
92:d3:f0:f9:5c:51:0a:d6:0b:73:aa:71:43:1f:f5:98:3e:52:
ba:32:02:6a:c4:9b:89:bf:bc:31:55:cf:ab:23:b0:2a:a4:1d:
53:a8:53:4b:42:4f:80:f3:61:f1:d0:61:8c:2f:33:b4:c3:7c:
53:2e:6c:6e:0e:b8:d7:4c:4a:e2:f1:b2:ec:9b:9c:6a:dc:cb:
f3:1c:66:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:27:51 2025 by rpki-client