Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
File: YKzX2WuVbeXbA2c80dHjo3uN2d0.mft (raw, json)
Hash identifier: bFPCq1Fpg0X0BPXFSdsS6TYnCpsNiaWnpn4gLAUI8eY=
Subject key identifier: 16:70:D6:8F:B3:45:79:2A:A4:A9:82:F0:AB:4D:DE:AD:FA:53:39:EA
Authority key identifier: 60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD
Certificate issuer: /CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd
Certificate serial: 0197B632C6EC2F189E448CE6F910FB81C9BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
Manifest number: 0506
Signing time: Sat 28 Jun 2025 11:01:10 +0000
Manifest this update: Sat 28 Jun 2025 11:01:10 +0000
Manifest next update: Sun 29 Jun 2025 11:01:10 +0000
Files and hashes: 1: WR90m5DgvTuhngQTVt_A_5zUod0.roa (hash: FY/boCiP1n6kQ8OnKj08oNsixb1HE3QlDcsMak5j0Lc=)
2: YKzX2WuVbeXbA2c80dHjo3uN2d0.crl (hash: EjT8QK50BPvIXnoV64Sb/LRkUQ8xO5UlRaPnifgqJvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:c6:ec:2f:18:9e:44:8c:e6:f9:10:fb:81:c9:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd
Validity
Not Before: Jun 28 11:01:10 2025 GMT
Not After : Jun 29 11:01:10 2025 GMT
Subject: CN=1670d68fb345792aa4a982f0ab4ddeadfa5339ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:0c:6b:af:8a:3d:28:b2:3d:38:3f:db:da:a1:
b1:bd:d6:2f:55:cc:59:62:04:44:ad:51:c8:58:1f:
7f:9a:d1:2f:fd:20:03:1e:83:40:ec:90:80:6a:12:
a5:65:9d:56:4c:5e:45:2c:06:5f:c9:1b:1f:a4:02:
42:18:3f:3b:33:42:05:b8:1b:a0:86:e1:2f:44:7c:
ae:d8:3c:2a:14:ad:ab:65:05:40:9e:9b:f0:fa:f5:
31:2e:3e:0d:48:0e:35:76:33:bb:9d:d7:21:43:97:
85:28:e3:bd:ce:ca:66:c3:a8:9d:da:77:ce:26:a4:
7c:bb:93:3d:7b:bc:7b:25:d8:e8:e7:00:41:77:0a:
c3:9d:65:d2:08:eb:a5:ce:3b:82:43:79:05:26:24:
c7:31:f2:46:c7:b8:bf:ab:a4:19:bc:f6:9c:57:d8:
53:99:b7:90:63:b1:07:2f:66:2d:48:6b:d4:97:e5:
ce:06:b5:82:58:29:47:7c:ff:4a:53:bc:f3:21:8d:
07:12:4a:91:53:53:95:1b:9e:33:8a:ed:ec:4f:ae:
3e:d5:b5:cf:07:02:b4:5e:c4:51:c4:75:6b:ef:3c:
a4:0c:67:f8:b4:72:f6:da:89:63:b2:85:0f:15:c0:
7d:f8:87:fb:15:9c:30:46:ef:12:26:d3:9c:06:15:
37:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:70:D6:8F:B3:45:79:2A:A4:A9:82:F0:AB:4D:DE:AD:FA:53:39:EA
X509v3 Authority Key Identifier:
keyid:60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:4d:44:ba:c2:2f:47:e2:3f:e1:f5:f4:66:13:80:e1:59:5e:
23:45:7b:30:14:7c:a6:bb:1d:ea:c9:53:36:e5:18:75:5b:62:
48:b7:9e:7d:d8:ea:10:4b:68:a9:8b:a2:a2:12:5f:b2:ac:72:
cb:fd:e1:85:f0:83:31:cf:65:59:c1:a9:70:a3:29:8e:ef:1e:
ba:48:54:91:95:51:a9:ff:c8:d4:dc:16:3c:2d:78:a4:cf:a9:
b9:77:e0:6b:e6:76:03:1f:9a:f7:01:53:b6:e1:03:f0:77:a4:
73:94:c9:cd:f1:a6:79:0f:a6:4d:ae:5c:12:f8:33:9e:31:74:
6b:f6:dd:ac:2d:7e:97:00:96:f1:d7:e3:44:7c:f7:a1:92:67:
9d:86:ed:1a:8f:3b:ed:be:37:de:41:00:d4:f7:f6:7b:5c:8b:
22:a6:5e:af:05:a6:6f:fa:08:3a:5d:40:4e:df:a5:c4:1a:17:
10:6c:7f:ef:90:6d:36:6c:ed:1a:83:2a:dc:67:54:f6:a3:15:
bd:9c:61:96:17:d5:1e:49:2a:fe:cf:16:f9:d9:34:47:cb:95:
10:24:c5:b7:56:5f:d1:c6:ad:bf:9a:9d:b9:aa:45:eb:36:8e:
02:d7:14:ad:bd:2b:63:9d:22:40:39:80:4f:bc:6e:4e:2d:02:
8c:9c:9e:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:24:22 2025 by rpki-client