Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
File: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft (raw, json)
Hash identifier: 8UrV1RNaumFeK2/P6lh3aVFqhXe6eLzlRyI+zWP8Tys=
Subject key identifier: 39:2A:A7:EE:B8:8E:7F:2B:12:98:33:48:A9:4F:ED:E9:20:A0:E4:73
Authority key identifier: 62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9
Certificate issuer: /CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
Certificate serial: 0197B6A0AE18F5A25A1E0E795DED38F886B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
Manifest number: 069D
Signing time: Sat 28 Jun 2025 13:01:12 +0000
Manifest this update: Sat 28 Jun 2025 13:01:12 +0000
Manifest next update: Sun 29 Jun 2025 13:01:12 +0000
Files and hashes: 1: RwKWDh9I_VhT28gEF3k9tJ9hdSk.roa (hash: CWqw/aMDA6ZuqW+g16a2LFyjcXoDj/1ZGqdzZueDSNs=)
2: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl (hash: 76TX2kguJHjyTA9oHujCgjuscpugWBXqSGz/E44MCRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:ae:18:f5:a2:5a:1e:0e:79:5d:ed:38:f8:86:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
Validity
Not Before: Jun 28 13:01:12 2025 GMT
Not After : Jun 29 13:01:12 2025 GMT
Subject: CN=392aa7eeb88e7f2b12983348a94fede920a0e473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fd:2f:0c:13:9f:1b:e7:98:d2:ab:4a:6a:63:
0b:48:0f:c5:2f:c7:12:a6:8e:10:5d:85:2b:21:1e:
c5:17:d7:76:e3:8c:1f:b9:5f:5a:4f:f4:30:6a:3e:
1c:7f:e0:4b:80:f9:c4:8b:6e:7e:67:e0:8e:13:cc:
b3:e0:9c:91:d8:14:1a:45:df:77:c7:55:14:e9:31:
09:35:93:79:73:d5:86:ff:3f:94:ba:35:f6:d9:8f:
a4:2f:20:1e:02:6c:c3:47:91:ed:37:8f:22:e7:dd:
99:78:1b:86:8b:3c:cd:8c:54:d9:34:49:a0:ef:12:
59:01:9a:78:da:dc:b2:31:43:fe:9c:34:db:a0:29:
0b:a1:d5:b1:3e:7f:c5:50:22:99:db:50:f1:e6:4a:
89:14:4f:34:0c:9e:60:cf:a3:11:08:34:c8:2d:0f:
09:b7:6a:c9:44:7a:e5:2c:e1:f9:8f:68:9d:36:5f:
dd:c3:e2:ad:4b:1c:9f:db:57:3a:6c:95:4d:95:49:
58:ca:8e:a4:82:ee:8c:b6:9d:b8:2e:0c:5a:59:ac:
15:59:29:76:0a:3d:d1:62:89:ce:67:5f:1d:b4:e1:
4a:e8:de:25:35:18:7b:f0:81:08:27:82:50:e3:bc:
3a:80:bb:96:67:22:6a:e5:87:87:9f:aa:0a:b3:2d:
19:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2A:A7:EE:B8:8E:7F:2B:12:98:33:48:A9:4F:ED:E9:20:A0:E4:73
X509v3 Authority Key Identifier:
keyid:62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:47:bf:37:6b:04:67:7c:50:65:dd:91:41:a2:e2:f4:34:6b:
9c:85:8b:a2:b1:e5:d0:00:a5:d0:bc:f5:cb:11:65:7d:8f:99:
4e:de:d8:25:a9:f5:c6:49:dc:7d:84:3f:48:23:69:d8:0b:b5:
16:38:12:4d:98:03:e0:2b:21:ca:04:7e:ba:de:a7:32:ce:0b:
f9:2c:6f:94:60:03:58:32:0a:30:ea:cc:7f:e5:e4:01:a1:08:
f5:ab:13:69:c9:32:9f:a0:dd:ee:ee:d9:52:58:ff:0c:40:5d:
b3:d3:37:ea:bb:68:f3:8e:0a:af:38:e7:71:fd:31:84:0e:44:
6c:9a:38:69:fe:f9:9f:40:ae:64:95:9d:93:28:b2:29:0a:c9:
a5:dd:e3:bb:c4:5e:0a:a8:9b:33:bb:94:67:4b:49:cd:69:43:
c2:b4:42:e8:32:88:e8:06:19:f0:4a:94:77:a4:c8:63:ce:43:
be:cb:7a:04:52:07:18:55:ec:6d:64:f3:39:26:c2:c2:27:5a:
ad:58:cf:f4:a8:6e:f1:1b:9e:bf:5c:ef:dd:f9:93:2f:96:6a:
1a:e1:0e:d7:5b:ce:03:6b:12:62:45:35:a5:6a:f7:f8:72:de:
4a:b1:6e:be:ab:3f:29:1b:af:52:1c:d3:bd:34:9e:55:5c:65:
94:ac:74:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:08:30 2025 by rpki-client