Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: JI+mTx+tZxuMtnYUPLEHD15YHl9nq63cNOth35MWUdQ=
Subject key identifier: C8:6F:34:D6:5D:69:84:D2:8E:54:9D:BD:76:4C:20:5C:15:B3:29:2D
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 0197B745AF558885153DA12D85A88AD975AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 1332
Signing time: Sat 28 Jun 2025 16:01:26 +0000
Manifest this update: Sat 28 Jun 2025 16:01:26 +0000
Manifest next update: Sun 29 Jun 2025 16:01:26 +0000
Files and hashes: 1: cpaYv-AQ-t9zhgKKXsvKBzFcSaQ.roa (hash: QH8X2hDISDdQVFPt9W1N705nATkeCHCrQhlKJMRWx8A=)
2: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: a1rAeFRcw+jdgYsfC9VNcSREs2vMVBgKBwf9zU3oahY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:af:55:88:85:15:3d:a1:2d:85:a8:8a:d9:75:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Jun 28 16:01:26 2025 GMT
Not After : Jun 29 16:01:26 2025 GMT
Subject: CN=c86f34d65d6984d28e549dbd764c205c15b3292d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:91:b7:04:a7:81:57:bf:84:f8:6a:e0:24:7a:
48:83:f2:50:90:ba:ad:51:b4:fe:cd:fa:c5:1a:5f:
c6:7b:61:dd:4b:bc:75:c2:9f:6d:fb:c9:65:24:0a:
fd:9e:cd:e0:ac:db:82:02:eb:6b:93:e0:0e:5f:88:
0f:09:90:f6:31:1e:3b:65:ae:5d:65:6f:0b:ac:38:
99:0b:1f:2f:ad:b2:6d:de:4d:db:8e:3e:78:16:09:
92:c2:31:8b:0e:c2:63:ac:06:24:81:34:30:3c:cb:
41:7d:18:ba:2d:f4:82:45:f4:e7:f7:32:76:e2:ea:
bb:8d:a0:e1:5e:25:3f:ce:71:4a:65:da:0e:30:fa:
9f:3f:e0:6c:fd:fc:df:22:bd:ba:16:3d:b8:14:e6:
c0:42:c1:64:c8:f2:ac:1a:89:b1:cf:dc:cb:a8:6f:
c4:73:8f:3a:02:7b:bf:ea:60:8e:ef:17:93:b6:ee:
0f:1b:fd:d8:b2:91:4c:52:ab:5d:cc:10:bb:46:f0:
63:c5:e5:8a:af:50:b5:8f:5a:7d:ae:e2:33:ff:65:
c9:a5:75:f1:33:1b:3c:e7:88:1f:5d:ea:d4:f0:f6:
2d:7e:f6:5e:1b:5b:65:6f:54:df:d2:00:7f:70:e5:
2e:a7:0f:82:33:98:c6:41:7f:84:e8:de:ed:8f:ee:
d6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6F:34:D6:5D:69:84:D2:8E:54:9D:BD:76:4C:20:5C:15:B3:29:2D
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:d8:60:cf:85:b0:c8:e5:43:8e:66:d2:68:3d:b8:1f:3e:62:
a5:8a:ba:5e:bd:d8:02:81:67:7b:e3:48:e2:78:c8:c0:d6:bf:
90:83:2a:51:9f:f1:c3:8a:5b:e9:6a:a6:8e:02:25:58:dc:c3:
c8:cc:00:9b:46:b6:72:06:45:f2:af:e9:a2:65:ac:d1:dc:ce:
5b:a2:66:b6:25:63:44:a5:27:60:9c:d0:a2:64:ba:ba:7b:27:
97:b2:f3:49:2d:1d:93:30:75:b3:99:da:83:72:c1:6a:3d:61:
91:33:b8:c7:26:7e:44:99:81:7d:66:6b:4e:08:58:30:f4:cd:
c6:e1:98:8a:c5:08:bd:d9:2b:25:a0:0e:54:97:b4:ee:bb:c2:
82:2d:a7:d3:f9:48:ff:43:ac:93:6b:b0:8b:04:2b:05:bb:87:
75:87:fe:eb:da:9a:fc:35:08:96:09:a1:b9:38:85:d9:2c:f4:
68:f7:2e:a9:5a:bc:dc:ef:2b:00:e5:9c:84:16:e0:c4:5d:c7:
b3:ec:d8:c1:09:61:a4:1a:09:ec:eb:6a:39:2e:cf:93:60:47:
0f:4e:ba:df:77:90:3d:1f:c8:a8:49:fb:d0:b7:33:dd:7a:f8:
51:76:53:a2:f5:b1:f3:83:93:71:88:76:10:78:9d:85:0a:76:
0d:df:b3:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:35:36 2025 by rpki-client