Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
File: yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft (raw, json)
Hash identifier: j8V4YXcx68BhVKhUxxZRUJ4EXmt58Yw+BeupLRz2v4o=
Subject key identifier: A1:21:EA:26:7F:68:48:C9:5E:D5:04:7B:3D:28:20:81:DE:79:00:BC
Authority key identifier: CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
Certificate issuer: /CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Certificate serial: 0197B8902A9D6C84E457F6207B9B51A8A91C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
Manifest number: 033B
Signing time: Sat 28 Jun 2025 22:02:25 +0000
Manifest this update: Sat 28 Jun 2025 22:02:25 +0000
Manifest next update: Sun 29 Jun 2025 22:02:25 +0000
Files and hashes: 1: eVWj75QB5-NY5cip7EaAMqsD3_Q.roa (hash: R8SYABsszbTf/c1Z91aXqCMR7hgNS09va3LcQa+6Zyg=)
2: yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl (hash: 0eX0DAbarD8YmlwH5Pwq9avEoZMWvJBOOttWDvEzm/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:2a:9d:6c:84:e4:57:f6:20:7b:9b:51:a8:a9:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Validity
Not Before: Jun 28 22:02:25 2025 GMT
Not After : Jun 29 22:02:25 2025 GMT
Subject: CN=a121ea267f6848c95ed5047b3d282081de7900bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0e:7e:f2:7f:bf:a8:aa:01:f8:aa:34:70:4b:
4a:6b:bd:a2:6d:84:a7:f8:d9:79:c2:72:e1:82:ba:
45:59:7f:28:1d:76:c5:d4:20:63:13:17:4b:57:fa:
fb:60:b0:c8:36:96:07:84:86:f4:81:d1:bb:24:a4:
86:1d:58:b6:32:75:20:23:39:52:fa:27:46:a2:fd:
67:9f:e8:15:56:b4:ff:bb:20:5d:71:18:6c:e6:c8:
a8:ab:d1:11:54:62:3f:f1:10:90:85:8f:b6:d0:42:
28:a3:09:6d:3a:96:a2:3c:40:5e:8f:d4:99:1e:94:
6e:f1:86:20:27:30:fd:9a:ed:22:56:93:ab:1c:53:
67:34:9b:fd:4e:3e:09:7f:92:2b:12:14:3d:78:b7:
9d:c6:86:71:e0:e0:61:0f:bf:8c:14:43:40:05:e3:
2a:49:a4:f4:fe:40:4a:95:5d:ee:b8:67:e0:ad:ef:
66:5a:f0:3f:df:a4:22:ca:70:e1:33:4a:dc:ca:0b:
82:4f:03:8b:6c:15:22:e7:b6:87:24:78:96:84:84:
eb:bf:4a:98:38:71:53:5f:26:67:b8:f2:85:fe:5d:
c3:a3:91:b8:49:e9:f3:88:8a:c2:ee:58:db:88:58:
78:2d:52:b5:a5:5a:1c:c4:c6:b7:bb:1c:0a:66:bc:
1e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:21:EA:26:7F:68:48:C9:5E:D5:04:7B:3D:28:20:81:DE:79:00:BC
X509v3 Authority Key Identifier:
keyid:CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:f0:41:91:11:3c:74:b1:7a:74:43:b8:61:2a:f9:7b:89:94:
b4:e1:dd:6a:7d:17:5a:39:b1:17:6e:13:02:65:0f:86:b6:e1:
be:64:a1:56:f3:d6:23:de:47:ef:61:d3:30:c1:b7:b4:ad:21:
7a:47:8b:ec:b6:ec:d0:79:13:c9:dc:65:27:62:d6:f3:a5:fe:
75:d3:e0:d4:2c:f5:63:0c:8c:a0:73:e3:ce:44:41:32:a1:48:
91:2c:ff:e5:98:72:9c:fc:6b:c8:80:e4:d8:77:15:27:7a:b7:
28:38:1e:7f:48:6e:ec:c2:71:5d:3f:e7:7c:96:a4:9f:c3:01:
6c:ae:ab:2f:bc:00:70:69:7a:44:08:ae:0b:f0:8b:ec:61:c9:
ef:16:c0:11:ba:e2:a6:27:9a:a7:39:16:9a:26:fc:c3:66:28:
33:fb:12:49:0e:25:f7:78:5d:b7:6b:a4:b4:4b:40:0e:de:0b:
ed:24:a2:a9:a5:ae:87:2d:53:21:68:08:20:b1:a6:02:75:9f:
be:b8:75:55:23:f9:94:d0:bb:87:3a:84:06:75:4a:68:26:91:
4f:20:b4:d7:64:c4:d5:7b:e6:10:ef:e4:d7:89:3a:ab:c8:0a:
80:f2:df:da:49:0e:56:9f:a2:d9:59:ee:7b:db:8c:eb:3a:aa:
4d:2b:6e:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:07:17 2025 by rpki-client