Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
File: yoFg7-OfGjB3_dL68ipkgEtUE4I.mft (raw, json)
Hash identifier: TqSCX9auDKB68fo1S3kE74KSWCtnQhml6hXvTbW6G4s=
Subject key identifier: FD:56:FF:B0:08:3C:AD:99:F7:BF:C9:3F:CD:2F:1A:8B:DB:38:3F:00
Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Certificate serial: 0197B933A753F366EE2D3A69D11B31B18B82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
Manifest number: 1256
Signing time: Sun 29 Jun 2025 01:00:59 +0000
Manifest this update: Sun 29 Jun 2025 01:00:59 +0000
Manifest next update: Mon 30 Jun 2025 01:00:59 +0000
Files and hashes: 1: h-rZd3ShfaYedaYA6tLbzrX_MkU.roa (hash: 6iJffUIazxHr4GTAEcidCyRV9SNB9d9va8nX06PMskE=)
2: yoFg7-OfGjB3_dL68ipkgEtUE4I.crl (hash: s+LUzJiLZvRQjPWK1PlzLSvLU76oNPX94WU6gLfyvxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 01:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:a7:53:f3:66:ee:2d:3a:69:d1:1b:31:b1:8b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Validity
Not Before: Jun 29 01:00:59 2025 GMT
Not After : Jun 30 01:00:59 2025 GMT
Subject: CN=fd56ffb0083cad99f7bfc93fcd2f1a8bdb383f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:72:f2:83:fd:e8:62:17:d5:76:58:72:6c:85:
f4:c9:f9:37:50:c9:a9:41:01:b7:6f:52:61:a8:93:
28:9d:80:5d:8c:9d:ca:f7:01:33:cb:f4:91:02:ea:
81:ad:b0:28:cb:8c:6e:a0:f5:93:d1:97:12:8f:0e:
29:c6:8f:0b:86:45:4d:cd:b5:97:80:14:c9:da:50:
42:25:17:6c:aa:bb:e5:99:d0:6a:19:66:f1:b2:bb:
1d:99:4c:a6:30:41:80:8d:66:f0:f8:54:22:52:4a:
f2:cf:32:e3:c4:cb:52:71:48:b0:b8:43:8c:be:ec:
cb:07:d7:32:f6:84:14:f3:49:45:46:cf:9d:9f:f6:
33:e2:62:a6:5b:1f:16:54:e2:28:11:bf:12:fc:ed:
2d:23:c5:54:4e:e0:5a:df:3b:a8:69:43:d8:ad:a6:
f6:87:ad:d9:d2:f0:ac:f2:6a:65:bc:0f:1b:28:28:
cc:e3:8e:05:44:21:e9:ca:4b:bf:0b:7f:25:1f:d5:
b6:9c:53:c0:86:b7:bf:64:27:ba:e3:48:15:d9:d2:
41:a5:52:7b:10:e2:d3:d7:90:2f:84:53:e4:fd:05:
0f:ca:c2:02:99:43:15:61:da:1a:58:5b:fd:4f:e4:
ed:dd:b5:2a:ac:ff:66:92:85:fe:11:1f:1a:d4:75:
18:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:56:FF:B0:08:3C:AD:99:F7:BF:C9:3F:CD:2F:1A:8B:DB:38:3F:00
X509v3 Authority Key Identifier:
keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:08:78:67:57:3c:2d:ea:ad:c1:78:41:1c:88:6e:6b:f6:d6:
0e:70:81:87:64:f8:45:dc:12:f9:11:ed:64:7d:06:a5:2e:77:
65:31:08:13:73:79:f1:c6:f3:d3:c7:40:bf:40:a7:0f:e6:21:
77:21:74:6c:fd:52:e6:ea:0f:74:b5:c1:6a:1a:06:8a:4c:78:
f0:a2:63:f4:22:5e:bf:5d:0f:1b:ab:bb:da:81:32:c2:2c:f3:
7f:d9:12:7e:8a:5e:6e:d0:3d:8d:59:79:be:b1:dc:ce:d7:1f:
e7:9a:72:d8:c9:e3:03:f9:20:98:e3:9a:ce:be:67:19:ba:78:
44:06:05:e2:28:0f:f7:59:0e:09:48:3a:4a:84:26:48:6e:e6:
19:cd:29:89:5d:00:fb:8e:df:76:55:df:f7:7b:72:d1:f6:68:
1f:ac:65:8e:9e:29:b0:39:ff:e9:af:86:12:f6:76:8f:37:1b:
d3:57:4d:a0:d2:6b:de:c8:00:29:46:28:d1:99:28:bd:3a:9c:
26:9e:ab:3a:4a:87:0f:0b:e4:10:ec:e3:30:e1:53:45:44:f6:
0e:04:cf:56:a0:c8:30:51:9a:e4:b3:8e:b3:19:38:59:46:6c:
be:83:f7:85:23:9b:47:01:ed:e6:1a:af:40:b8:da:f0:b9:f8:
2f:3f:b6:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 10:15:52 2025 by rpki-client