Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
File: _YmzSchPx7NBKlLWX_Jg0swomrk.mft (raw, json)
Hash identifier: kUHsdcOg17N4bss4O/oO7rxMXHqDtds4cBw9GlmUZLA=
Subject key identifier: 92:96:0C:E3:DD:9F:5C:87:B1:E8:4D:71:FD:33:07:8C:25:F5:2B:01
Authority key identifier: FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
Certificate issuer: /CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Certificate serial: 0197B6D75B26CA73D69E97F3DB01DB31F1C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
Manifest number: 0C45
Signing time: Sat 28 Jun 2025 14:00:56 +0000
Manifest this update: Sat 28 Jun 2025 14:00:56 +0000
Manifest next update: Sun 29 Jun 2025 14:00:56 +0000
Files and hashes: 1: 7voLoVZs2GImQRBCo5BKLZ-Uj7w.roa (hash: 4GwoSbNu+hRTl0Hpw8zq+LaDTkSr14kM179EFGiS8KQ=)
2: _YmzSchPx7NBKlLWX_Jg0swomrk.crl (hash: gngmuz8y9ERrhBrm1w8zhr0CbKLs1xd4oESldYzcp0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:5b:26:ca:73:d6:9e:97:f3:db:01:db:31:f1:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Validity
Not Before: Jun 28 14:00:56 2025 GMT
Not After : Jun 29 14:00:56 2025 GMT
Subject: CN=92960ce3dd9f5c87b1e84d71fd33078c25f52b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2d:76:d8:d2:01:77:49:1b:74:72:5a:d0:8c:
bb:4a:2b:6c:85:d2:b1:ae:b7:f0:e7:ae:0c:aa:ef:
e1:ea:df:6b:5c:b9:b6:5c:e0:1e:08:0d:96:3f:74:
b7:60:e9:97:38:f4:37:a9:fb:72:40:01:76:76:02:
b9:e1:76:a3:fb:aa:1e:10:20:de:26:f8:c6:f9:2e:
b2:e5:cf:92:65:db:46:68:54:15:ab:eb:ba:96:a0:
da:05:3b:c0:9b:75:42:9e:44:cb:96:8f:27:0b:b7:
2b:3f:dc:6e:74:7a:9e:c7:f9:80:02:47:b0:62:61:
a2:e6:fb:85:21:08:24:03:fb:bc:42:69:38:46:dd:
aa:b7:14:de:ee:79:56:6f:54:a1:54:c4:4f:3b:c1:
58:c0:7e:b8:91:4a:e2:ec:b4:34:5c:1f:50:9d:da:
e2:94:18:fc:ec:97:31:b8:41:05:7a:97:22:37:99:
15:a8:0e:8d:dd:84:33:6c:1c:82:f8:42:eb:e2:fe:
c9:cc:17:b8:b9:f1:9a:4d:0c:9a:9f:0c:ce:0c:a5:
c3:e3:5f:59:f9:a1:50:11:0f:34:4b:97:f1:33:c4:
e7:7a:4b:88:5d:17:eb:7a:5a:ca:93:3d:4a:91:99:
a1:16:37:3a:eb:23:00:1a:fd:26:85:42:d6:18:ef:
17:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:96:0C:E3:DD:9F:5C:87:B1:E8:4D:71:FD:33:07:8C:25:F5:2B:01
X509v3 Authority Key Identifier:
keyid:FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:20:b2:95:41:eb:39:55:96:db:ab:ad:f4:43:5e:59:ea:40:
c4:38:b0:c4:7c:2d:98:eb:af:66:77:47:15:4c:b4:dc:ed:f7:
f4:28:59:ca:31:ac:bc:18:ea:c2:f8:25:f0:73:41:75:3d:6d:
c7:09:43:91:74:de:cd:06:fb:d1:ab:10:97:a9:56:36:3b:68:
6b:7f:5c:87:70:80:cc:c4:81:2e:7b:24:4f:c6:0a:68:dd:d9:
2a:b1:9c:b1:ba:7e:f0:a5:32:bb:16:fa:f8:ef:ba:a4:2c:35:
9b:aa:31:14:81:67:d6:95:95:9f:cd:03:d4:f9:62:e7:69:51:
b9:73:3a:27:09:27:f5:13:47:8f:30:a5:72:3b:d4:a1:c8:fa:
5b:61:7a:18:1e:7a:28:cb:dc:43:42:06:bc:b7:77:08:76:b3:
3d:81:5d:27:88:65:cd:a5:e3:c1:68:24:17:81:d8:7f:3d:8c:
85:d2:cd:87:3c:b1:14:26:19:b7:69:92:41:9c:11:4c:60:a7:
25:8b:29:cc:18:5c:2f:b6:90:4f:c6:ad:75:4d:2f:40:82:6d:
db:6d:37:ae:bf:a1:72:b8:b0:08:5b:3e:d9:71:72:ea:3b:6e:
11:6a:04:e4:dd:3d:35:6a:49:67:62:93:88:de:54:02:67:f9:
d1:8c:15:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:57:21 2025 by rpki-client