Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft
File: ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft (raw, json)
Hash identifier: 6nZjL7sJhFpdTM4qP7ibRZnHS2tALCTFbh9G1ZnLXPI=
Subject key identifier: C2:F3:7F:6B:8D:8F:F5:09:70:62:70:CB:D9:8B:F3:17:C3:1E:25:FC
Authority key identifier: AF:21:DD:2F:77:2A:5B:B4:79:25:C2:8B:B5:D1:6C:D9:30:F2:06:B1
Certificate issuer: /CN=af21dd2f772a5bb47925c28bb5d16cd930f206b1
Certificate serial: 0197B9A1D234B51BE3EA8CE6CAACD52E481E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft
Manifest number: 09C4
Signing time: Sun 29 Jun 2025 03:01:19 +0000
Manifest this update: Sun 29 Jun 2025 03:01:19 +0000
Manifest next update: Mon 30 Jun 2025 03:01:19 +0000
Files and hashes: 1: 6f9DfsZDUzdPo3_6eNoeG4QK_-I.roa (hash: 4tclq8R1V/fdbnM4AvEGc3ZJVkHqia0uVMOBrni8yPk=)
2: ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl (hash: r6ud+E9Y3+Q17IUIxwr30Df36M4PFIvDPtOPolSN0f8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 03:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:d2:34:b5:1b:e3:ea:8c:e6:ca:ac:d5:2e:48:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af21dd2f772a5bb47925c28bb5d16cd930f206b1
Validity
Not Before: Jun 29 03:01:19 2025 GMT
Not After : Jun 30 03:01:19 2025 GMT
Subject: CN=c2f37f6b8d8ff509706270cbd98bf317c31e25fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:31:38:73:f5:e5:f2:ce:6a:dd:1a:96:30:81:
5e:3f:1d:e7:d9:7d:65:8f:3b:87:8f:11:47:1d:a9:
46:e5:14:f9:88:be:5c:5e:3e:91:5d:de:4a:5f:71:
01:d8:b9:2f:62:7f:95:05:8f:76:cc:cb:98:e8:31:
4d:0f:cd:20:72:a2:9f:7c:8b:63:d2:f8:ab:2d:76:
fe:3b:5d:5c:d9:aa:27:57:32:19:b4:a5:42:21:a2:
aa:58:b6:eb:69:e9:cd:ac:f6:51:74:26:65:e9:16:
b5:7f:05:e8:98:5f:c0:24:08:8c:3f:26:30:05:8f:
1c:99:73:44:8d:e9:8c:30:af:bc:e7:8b:45:98:3d:
d1:6c:76:b9:d5:b5:1b:60:2a:ee:e9:31:ae:02:24:
03:71:be:81:7b:36:7e:eb:45:b5:76:86:f9:a0:7e:
d0:c3:35:14:38:78:18:33:cd:3e:45:b1:cb:d4:48:
b2:05:7a:7b:7e:03:c7:a7:55:63:45:c4:38:4c:96:
32:64:fc:64:ac:0b:a0:5d:bc:05:ad:bf:41:89:71:
fe:15:57:63:3c:e6:27:e1:1c:8f:39:b2:59:3c:20:
87:30:3d:ed:22:68:3e:9c:eb:e1:77:0c:94:39:34:
b7:77:49:02:b3:46:63:ff:ac:f6:73:b1:f7:46:df:
3f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F3:7F:6B:8D:8F:F5:09:70:62:70:CB:D9:8B:F3:17:C3:1E:25:FC
X509v3 Authority Key Identifier:
keyid:AF:21:DD:2F:77:2A:5B:B4:79:25:C2:8B:B5:D1:6C:D9:30:F2:06:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:c6:47:82:20:58:94:b0:bd:f3:2f:1e:51:d9:f1:0e:86:80:
db:ec:54:52:04:60:1f:a8:6b:e9:ca:57:0d:e1:0a:9a:f2:e5:
35:de:9b:29:93:b1:37:74:2f:da:ff:52:d7:89:f9:22:1d:78:
60:69:c7:8b:58:b3:22:07:9f:06:4e:55:e0:ee:f0:df:0c:0c:
0d:43:99:ca:65:42:6b:69:e8:2a:64:e3:4b:05:a0:ec:be:fa:
75:db:f1:05:33:cc:50:92:a6:69:17:c2:25:04:0f:73:64:de:
38:35:8a:0d:a8:6e:35:ac:6e:df:5f:d1:49:31:16:ad:67:2e:
59:15:a1:91:53:f2:22:8a:dd:d0:76:4f:a5:6f:86:d0:30:52:
86:b1:60:d4:47:fd:08:61:f9:77:24:7f:a0:45:6e:97:e8:a9:
15:db:52:cf:8d:ee:08:a4:e1:b2:da:6c:8f:55:cc:d1:36:13:
8d:55:3b:b3:0b:81:82:25:5d:f2:82:9a:a1:76:dd:dd:8d:c3:
ab:5a:e6:59:9f:77:20:07:e0:ed:bb:a5:80:de:a6:31:62:c6:
40:65:06:08:e3:47:a1:67:21:99:f1:f9:7f:3c:fe:42:18:24:
c5:75:3e:bb:87:da:35:46:ba:b9:b7:dd:34:99:7b:ce:0b:fb:
87:80:1b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 11:25:01 2025 by rpki-client