Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
File: YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft (raw, json)
Hash identifier: 4DF4k7Gs3j1k/h9o1lNgcmEz5O7swp2n/RGpi6dkDlU=
Subject key identifier: AA:BC:8C:96:6F:B1:81:90:46:FD:1D:A6:E3:B7:4B:63:FC:92:E5:5A
Authority key identifier: 60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C
Certificate issuer: /CN=6052e1592b12ad2cd39f5be57c058535edb12b9c
Certificate serial: 0197B70E6EC8FD92BF4F144CC6069C05F58B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
Manifest number: 0B48
Signing time: Sat 28 Jun 2025 15:01:05 +0000
Manifest this update: Sat 28 Jun 2025 15:01:05 +0000
Manifest next update: Sun 29 Jun 2025 15:01:05 +0000
Files and hashes: 1: 4ohGnWINC3iPFe6nDpOqBOx7d2s.roa (hash: 9AbJKb6HLl4DZwmq7R7PVZTsMXxo/QDCXs2EgLL85AU=)
2: YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl (hash: 63Zvw/k1VxZbbnlqGOqV7L0QgDBc229gkvY9v/jhcmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:6e:c8:fd:92:bf:4f:14:4c:c6:06:9c:05:f5:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6052e1592b12ad2cd39f5be57c058535edb12b9c
Validity
Not Before: Jun 28 15:01:05 2025 GMT
Not After : Jun 29 15:01:05 2025 GMT
Subject: CN=aabc8c966fb1819046fd1da6e3b74b63fc92e55a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:55:3f:42:c2:9d:bb:1c:36:64:aa:22:b5:bf:
08:a4:48:29:4a:d8:83:69:cd:6c:98:49:e2:18:c5:
b2:bc:3c:c7:8f:f5:52:13:6c:c3:46:d0:6e:34:dc:
ea:85:5c:f4:9a:a4:19:b7:2b:93:d4:ca:ca:b3:d9:
63:9a:1d:d1:4d:ea:7a:10:18:ff:21:a8:39:cf:b0:
de:d6:58:1f:86:e3:42:12:de:a4:fb:48:43:48:85:
fa:fe:d0:54:2e:5f:a8:54:98:b5:c0:3f:f9:b7:33:
fa:ff:e0:ee:6a:0d:30:1f:f1:ec:51:df:4b:7a:ea:
f7:e1:ab:13:98:8c:4f:93:6d:25:5b:4f:b2:46:b3:
79:58:cd:5f:be:4f:3d:df:db:41:26:eb:66:6d:38:
5a:9c:ec:8c:c0:37:de:5e:18:55:47:ee:05:5c:f1:
ca:68:0c:5c:bf:6c:86:4b:08:23:1b:c8:d5:fe:1b:
77:c1:c9:c4:84:95:3d:80:b7:eb:ae:99:81:94:59:
ad:30:9d:46:50:69:a8:e6:b9:6f:fd:ab:60:3c:9c:
62:ad:d6:43:3f:4a:79:a5:fd:ed:17:1f:b8:ce:e7:
a7:9c:8f:a8:65:0d:41:a1:ec:56:63:82:ed:ad:92:
02:f3:14:4d:0a:ee:f1:a5:b1:90:9e:90:dc:ac:d0:
e9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:BC:8C:96:6F:B1:81:90:46:FD:1D:A6:E3:B7:4B:63:FC:92:E5:5A
X509v3 Authority Key Identifier:
keyid:60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:7d:6b:db:d9:13:5e:4e:27:e1:62:3a:79:db:1c:1c:cb:86:
3e:c8:0c:2b:a5:06:51:ae:94:6f:88:ef:16:9c:3d:d5:f0:80:
58:86:c1:f0:71:6b:06:f1:e8:20:de:20:dc:d6:34:bd:4b:6f:
e4:2e:8c:19:1e:d1:db:94:f3:d0:02:52:34:36:f8:f7:58:14:
0d:64:74:14:59:30:c0:1f:6a:52:b8:95:ad:d8:f5:f5:45:ca:
1d:9a:5f:70:c6:fe:61:1e:f7:4a:2d:e4:2b:32:95:74:3e:f9:
98:0d:01:ea:b6:d1:b4:3f:84:3e:17:07:c3:e9:58:89:ef:a3:
06:5a:b4:51:81:0e:9c:6d:5d:82:bf:4e:54:e1:de:68:d7:2d:
15:be:5e:08:ad:c4:e5:2f:d8:dc:a7:ba:73:66:6c:95:af:52:
4e:88:e9:66:40:6e:31:af:f2:b1:ab:6f:0c:63:a3:df:82:53:
68:ec:24:45:c7:c4:88:8a:e2:8b:1e:95:12:d3:b2:2a:b6:57:
7b:53:74:b3:ae:a1:40:8b:1f:07:8a:14:7c:3c:82:df:d4:b8:
0f:da:6e:ae:3f:50:da:2d:37:45:eb:1e:91:e8:ab:b5:f0:3f:
bc:a9:8b:4c:65:d2:db:87:8f:3b:ca:e6:ae:7c:50:54:3b:0a:
39:1c:ce:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:38:43 2025 by rpki-client