Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
File: Y3A8pQxDKs1_HLunwH2iICKZymM.mft (raw, json)
Hash identifier: S6ZzsgYmnpNHstBzWfEcbgtuHXUwYKluRE/2jThFp7M=
Subject key identifier: 3F:96:05:55:95:EC:E4:D2:66:CE:19:F4:6B:F5:61:4F:22:4F:B0:73
Authority key identifier: 63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
Certificate issuer: /CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Certificate serial: 0197B820E13D569E1482762F5D02289B9E20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
Manifest number: 12BA
Signing time: Sat 28 Jun 2025 20:00:51 +0000
Manifest this update: Sat 28 Jun 2025 20:00:51 +0000
Manifest next update: Sun 29 Jun 2025 20:00:51 +0000
Files and hashes: 1: Y3A8pQxDKs1_HLunwH2iICKZymM.crl (hash: bhQs8xYpEYYycH1S4xK1hpBbGGt9az73uDsY+XdlgPM=)
2: uKlqiwtoXkp9xjLftlQ9vTMqqrs.roa (hash: EwwfvCJkfqVqVmU0gYHOqumHmaTFzwTDUQGR86XAOZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:e1:3d:56:9e:14:82:76:2f:5d:02:28:9b:9e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Validity
Not Before: Jun 28 20:00:51 2025 GMT
Not After : Jun 29 20:00:51 2025 GMT
Subject: CN=3f96055595ece4d266ce19f46bf5614f224fb073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c2:b7:d8:8a:5d:d5:5a:e2:88:e2:7c:1f:50:
5a:56:66:d7:a3:75:d8:6b:ce:2f:2b:e9:6d:56:46:
b7:21:6a:c0:f7:b9:7e:05:90:3e:7e:5b:11:98:0c:
bb:89:60:c4:eb:dc:ad:7e:ca:57:1e:cd:6a:27:ae:
67:62:d2:a1:1a:05:73:e6:d2:40:14:34:70:42:81:
78:b6:1b:21:ca:06:13:80:45:9b:77:df:06:8b:97:
bb:c9:4b:50:f3:2c:40:86:82:72:4c:cf:4d:60:20:
3c:fd:1d:5d:3a:a0:07:86:e6:3b:21:32:8a:f1:c9:
ab:4a:d3:40:20:e1:c7:2d:dc:8d:14:63:bc:f4:a6:
63:3c:90:b3:ab:af:87:53:c2:87:60:4f:48:e8:a7:
55:80:e1:17:ba:92:2c:51:80:02:a6:a8:08:f0:0d:
59:b7:11:d7:1b:6e:a9:65:25:10:38:07:7a:00:c3:
68:f5:ce:9c:66:76:65:9f:16:68:b5:8e:0e:01:87:
95:7b:71:b5:d4:af:0b:b9:c3:dc:43:6d:fd:4b:01:
cf:e0:44:d3:7d:28:39:c0:82:fc:06:8c:16:ec:99:
f6:f4:67:4c:82:b5:a6:e8:8c:6e:60:3f:91:6a:7f:
ea:a9:6c:ef:da:88:cf:4c:25:2d:a0:76:ad:28:57:
8a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:96:05:55:95:EC:E4:D2:66:CE:19:F4:6B:F5:61:4F:22:4F:B0:73
X509v3 Authority Key Identifier:
keyid:63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:a3:38:df:7e:73:53:fe:32:e4:2d:1c:70:fe:29:be:b6:b8:
43:dd:f6:45:68:8c:d3:a5:2a:b4:b4:53:00:d0:8f:60:8a:1c:
55:38:41:e4:07:70:db:50:11:cc:b4:24:c0:cb:e8:25:11:13:
13:88:c7:3c:38:0a:1d:a5:6c:3c:91:bd:a5:1f:3b:35:1a:dd:
29:83:fd:fc:93:7c:88:ac:c1:7b:4c:b5:71:9d:91:9d:31:52:
66:ab:d6:15:a0:c0:4c:5f:29:e6:40:51:55:3d:61:ba:60:d5:
fb:17:68:a2:5e:0e:79:bb:31:e4:6a:c6:a5:19:34:be:27:c0:
e8:c4:c1:61:21:98:7c:b1:b2:d3:22:44:56:9c:2f:78:82:a8:
42:de:05:b6:13:68:78:e1:8c:fa:bd:b9:44:5c:f3:63:02:ef:
7c:11:52:5b:d0:ac:14:28:79:c9:47:b1:d7:13:e9:02:a5:16:
41:93:ca:86:10:aa:82:db:71:b9:cd:c7:d3:87:59:1c:ef:15:
bb:a0:c7:4c:b9:1e:0b:ee:39:1a:20:6b:af:87:1e:de:c2:41:
a9:0a:32:11:e9:b9:06:3d:72:93:dd:51:c7:86:59:94:eb:f3:
f3:08:32:ca:ba:59:43:ca:42:b6:47:42:fc:1c:45:bf:55:68:
0c:3e:9d:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:43:00 2025 by rpki-client