Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
File: YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft (raw, json)
Hash identifier: iX26iTroapFwViTQ1q+489+Uk5AdL9npPqpP2vwugAo=
Subject key identifier: DE:FC:60:53:EE:DE:6B:42:B2:37:23:E7:39:15:6D:71:55:F3:0D:E0
Authority key identifier: 60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F
Certificate issuer: /CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f
Certificate serial: 0197B7EA3B21DE1EFAD054020175CB2C305C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
Manifest number: 074F
Signing time: Sat 28 Jun 2025 19:01:10 +0000
Manifest this update: Sat 28 Jun 2025 19:01:10 +0000
Manifest next update: Sun 29 Jun 2025 19:01:10 +0000
Files and hashes: 1: YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl (hash: aTDksnqQhc3HmCwn7/+oych5x9ogURuUajW7ptXjWdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:3b:21:de:1e:fa:d0:54:02:01:75:cb:2c:30:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f
Validity
Not Before: Jun 28 19:01:10 2025 GMT
Not After : Jun 29 19:01:10 2025 GMT
Subject: CN=defc6053eede6b42b23723e739156d7155f30de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7f:71:54:c9:27:15:0a:b9:6b:e3:95:be:e7:
96:c0:f8:a7:a6:3b:15:fc:1e:10:31:f2:ce:f8:37:
08:5e:cc:a0:14:92:dd:60:6d:ad:d2:de:19:e5:8f:
ff:8c:cc:ff:9d:8b:6f:0d:e6:53:5e:07:56:a1:47:
b1:9d:27:53:fb:be:c6:de:38:05:52:83:da:cc:71:
1d:67:f5:91:6a:8d:31:56:e0:20:2c:65:44:81:eb:
bb:85:eb:ac:06:1b:26:45:61:27:b4:da:0b:9e:25:
fa:b1:53:84:bb:50:3e:3e:23:a4:32:75:c5:48:b3:
b9:cb:56:09:8c:3c:0b:dd:c9:83:b9:73:42:f5:19:
f6:ba:75:09:0c:fa:a7:99:aa:db:e2:bb:90:28:dc:
cd:26:41:c5:fe:55:51:35:ee:68:a8:b9:e1:6b:59:
96:e4:c4:9c:30:e6:93:b8:f0:53:6d:40:1b:43:0c:
2c:90:cf:0a:1c:ff:fb:28:eb:ee:9b:cc:94:34:69:
78:2b:8d:1d:49:ea:76:f0:bc:f3:38:99:65:f2:1b:
57:e1:6f:e3:98:80:b6:11:ec:c2:ef:1a:59:6b:46:
c9:d8:74:74:10:33:05:ba:5a:44:69:f2:b1:df:18:
ba:c5:c5:fe:72:dd:8f:52:fb:58:f7:51:40:c7:5c:
a1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FC:60:53:EE:DE:6B:42:B2:37:23:E7:39:15:6D:71:55:F3:0D:E0
X509v3 Authority Key Identifier:
keyid:60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:1d:fe:ba:62:9e:32:96:e1:69:bf:3c:f5:3d:d4:6e:0e:c2:
30:01:a2:42:af:d5:fd:70:a1:a6:c6:ec:47:3a:6d:3c:10:80:
2b:6c:16:90:78:8a:04:cf:3b:94:c4:b3:3e:a7:2c:39:51:fd:
cf:11:56:b4:6a:82:70:5e:28:0f:98:0a:3b:ea:e0:f0:5b:81:
5a:4f:6e:99:53:c5:84:79:5a:c5:4c:10:ad:e3:80:71:d4:46:
0a:85:5c:d2:c5:79:08:96:2a:67:3c:66:96:64:7b:80:4c:61:
96:3b:d6:9e:85:02:f2:5b:5d:10:41:8e:cf:d0:11:69:00:b1:
8e:da:1b:d5:42:5a:aa:1a:59:39:4f:6b:cf:c1:b4:8c:4b:d6:
92:1d:66:1d:17:70:ea:d2:b5:f1:d8:df:af:b3:58:c4:43:b6:
73:e4:8a:b6:32:32:29:2f:6f:81:04:a2:e7:98:00:5d:4f:b9:
5a:4a:94:4e:e4:80:ec:9e:96:c3:9e:9d:5c:ba:b5:72:2c:fa:
ef:f7:5a:c3:50:7f:a2:27:07:23:40:10:8a:e6:31:75:68:ab:
5f:da:d0:66:e0:50:f4:da:a1:9b:85:f5:d9:fe:cc:33:a2:58:
e7:ac:37:3b:1f:ae:ff:df:a2:12:27:e3:cc:11:a3:04:01:97:
a8:17:98:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:26:35 2025 by rpki-client