Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: bzdYIsn7xmC/RKptoEwEbqHCYYD82XahI1mD9Z2+mGA=
Subject key identifier: FB:57:01:3B:C5:56:D5:EC:54:7A:D1:13:09:AB:67:44:DB:C0:01:EA
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 0197B6D73CFD278DECC5F13B7395ED495BD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 9A
Signing time: Sat 28 Jun 2025 14:00:48 +0000
Manifest this update: Sat 28 Jun 2025 14:00:48 +0000
Manifest next update: Sun 29 Jun 2025 14:00:48 +0000
Files and hashes: 1: WJ8mDGp2R9SerzYw88vehn3HSik.roa (hash: h5SXKLsi4QXI6eIjbslnIuS0eoxKGY5pZRrkhG82mKM=)
2: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: m/tvfUg+hVC2FWpkYggJLKZXWpH3T/v4Ukls6rApkFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:3c:fd:27:8d:ec:c5:f1:3b:73:95:ed:49:5b:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: Jun 28 14:00:48 2025 GMT
Not After : Jun 29 14:00:48 2025 GMT
Subject: CN=fb57013bc556d5ec547ad11309ab6744dbc001ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fa:b6:18:32:52:49:1c:de:ad:e0:e2:00:dc:
55:96:8c:eb:2d:6b:4e:cb:ff:46:3d:7c:53:2b:6e:
1c:9f:0c:5e:11:4a:f2:4c:4b:80:81:35:26:92:46:
66:5e:8d:70:e0:22:f6:82:b9:dd:ea:ca:43:32:d5:
4b:65:25:1d:1f:0a:bb:0e:a0:8c:a3:af:11:17:a7:
f0:7a:b6:60:ba:6b:41:22:41:d7:6a:7c:12:11:39:
37:4e:1e:88:6e:51:1a:76:3a:cf:4a:88:48:04:e1:
38:79:0f:48:ac:98:2f:b9:ae:64:4c:cf:09:6a:22:
84:18:42:49:af:f3:7e:7e:59:97:8c:70:a0:f1:50:
f7:38:81:b1:60:99:09:dc:ad:69:d1:11:f4:18:e9:
f9:1d:54:52:d9:ee:63:f6:07:59:ac:b2:54:62:c7:
0a:11:05:9d:7d:4d:78:0e:a9:7d:63:6a:7d:cb:20:
d4:fd:60:5f:ac:66:9e:d6:07:ff:26:ac:cc:eb:52:
60:b1:bf:73:0d:11:7c:5d:9e:5a:42:31:9c:5c:a7:
30:9b:bd:4a:1c:9d:5e:bb:6d:70:e5:6b:70:1e:f4:
99:4a:5e:4e:01:a0:89:27:f6:25:39:e0:fa:ae:62:
08:58:2b:8b:0f:f9:ee:3d:fe:d7:89:9f:11:b8:f9:
06:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:57:01:3B:C5:56:D5:EC:54:7A:D1:13:09:AB:67:44:DB:C0:01:EA
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:2f:b4:04:27:4d:c9:2d:3d:75:42:0b:02:7c:e9:46:f3:3d:
da:87:ce:60:e6:47:44:e4:8b:d6:e6:71:4d:b9:bd:a7:43:48:
1e:ca:76:67:ec:06:43:67:7a:c8:4e:db:c8:b1:e8:dd:d7:ff:
2d:b7:33:9f:e0:87:2c:bd:38:89:5c:08:85:02:35:da:6a:7d:
3c:4f:e5:65:ec:8b:92:40:95:f8:95:2d:4c:52:c7:13:51:05:
8b:4f:2c:47:1e:e6:d0:01:bd:c2:ce:07:ec:48:7d:c5:01:32:
5b:5e:b8:70:78:68:cc:86:a1:96:72:1c:7d:02:ed:aa:0c:16:
63:6f:57:39:e4:d2:f5:f4:1a:ea:16:01:df:82:b4:c8:78:ff:
01:c9:e9:c9:76:43:92:e5:78:2b:3c:33:9f:33:f6:79:89:a3:
a7:7a:cf:13:00:e1:f7:0e:c5:6c:5d:cb:d1:8e:77:28:a7:15:
11:15:40:0e:b1:6f:50:a0:fc:42:c6:f0:74:ec:97:b8:92:b0:
a9:c6:4f:fb:64:32:49:c7:f8:61:20:ca:49:ee:a1:75:a4:34:
62:7c:d8:10:3a:aa:aa:ea:26:78:7b:39:67:85:c4:bc:04:0e:
2c:4a:98:09:31:f0:b7:4f:25:0f:6e:b2:77:1e:90:f8:d1:07:
15:65:6c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:52:37 2025 by rpki-client