Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
File: yWncvDPoAQQ4EpKC03rU6L-EuB8.mft (raw, json)
Hash identifier: lACroD8fMcH6ZyvRd+VjPFJ5V1KX0XeksfoitXSiH0k=
Subject key identifier: 91:53:F3:B9:02:B1:B0:F6:BC:5F:84:48:F6:23:67:AE:A6:26:BE:FC
Authority key identifier: C9:69:DC:BC:33:E8:01:04:38:12:92:82:D3:7A:D4:E8:BF:84:B8:1F
Certificate issuer: /CN=c969dcbc33e8010438129282d37ad4e8bf84b81f
Certificate serial: 0197B9340D250F28DC340F70F27C5DB85146
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
Manifest number: 14E1
Signing time: Sun 29 Jun 2025 01:01:25 +0000
Manifest this update: Sun 29 Jun 2025 01:01:25 +0000
Manifest next update: Mon 30 Jun 2025 01:01:25 +0000
Files and hashes: 1: FU1o4K68ASMHjxslt5agTXMw1Z4.roa (hash: cFpnMXx4SNy55YthuxgRWkF2I8U6u41jmzS8UiT8Yts=)
2: yWncvDPoAQQ4EpKC03rU6L-EuB8.crl (hash: FGdFuzxCJKJbMq1s+Htp0OF6tX8pFnkYo2TNgzolVtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:34:0d:25:0f:28:dc:34:0f:70:f2:7c:5d:b8:51:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c969dcbc33e8010438129282d37ad4e8bf84b81f
Validity
Not Before: Jun 29 01:01:25 2025 GMT
Not After : Jun 30 01:01:25 2025 GMT
Subject: CN=9153f3b902b1b0f6bc5f8448f62367aea626befc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7d:38:39:84:62:53:fa:66:b5:63:76:56:2e:
7f:93:f4:d6:84:d5:10:02:0c:5c:cf:bf:37:e2:fa:
f7:e9:f7:8b:77:62:fe:d1:2a:41:69:02:2e:5b:65:
7f:3a:10:81:ea:70:d2:2c:11:67:de:75:c9:ba:5b:
1f:da:12:a5:d0:54:5b:f3:52:b4:8b:46:1f:fc:73:
5a:b5:9b:64:83:88:6b:00:56:68:cc:27:1a:17:30:
5e:8e:23:8a:84:e5:ad:13:11:b6:cd:d9:26:5d:58:
9c:4e:99:fc:49:c3:3c:45:73:c0:d0:14:84:80:9c:
bd:76:16:78:38:5c:52:ce:bd:23:af:92:5d:35:0f:
e5:b8:9c:07:2c:65:1d:f5:7a:1d:ed:3c:35:57:ba:
a5:c1:49:a0:cf:10:04:16:8a:5d:6f:d6:b3:da:43:
ad:b1:14:52:08:73:15:3c:ff:5e:f7:f3:e9:b9:f2:
da:c0:0d:a1:5f:1f:29:a7:96:ad:b3:d6:a0:0f:22:
64:9e:fb:d1:77:e8:aa:23:01:ce:63:47:f9:90:15:
99:ed:d5:d4:2a:df:dd:18:7f:cf:e4:97:d8:af:ee:
04:eb:64:81:d7:ce:7b:ef:49:fe:57:22:94:5b:91:
a0:11:ba:20:9d:f1:cd:8b:c7:70:74:5c:43:2f:e6:
1f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:53:F3:B9:02:B1:B0:F6:BC:5F:84:48:F6:23:67:AE:A6:26:BE:FC
X509v3 Authority Key Identifier:
keyid:C9:69:DC:BC:33:E8:01:04:38:12:92:82:D3:7A:D4:E8:BF:84:B8:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:87:aa:6a:c8:a5:86:9e:9a:3b:18:05:76:31:9e:70:60:84:
9c:f9:ae:a6:33:08:6e:b2:33:28:1a:cb:4b:a7:13:dc:8e:2f:
c7:66:64:58:6b:27:7d:0d:3d:47:a4:03:40:ce:8c:4a:dc:9d:
74:0b:19:b9:48:98:d3:2b:61:b8:59:ae:83:26:7f:97:a4:fb:
3d:f5:5a:40:c2:ff:90:a7:f6:c9:6e:ae:97:7f:a4:b9:7e:d8:
a8:08:6d:7a:3b:7a:31:6b:1b:30:55:f0:c6:18:40:d1:6c:2d:
16:93:66:cd:48:5d:1f:1b:88:24:4b:3e:17:56:c2:76:6c:d8:
ff:0b:a3:81:3b:b5:5b:47:04:6a:55:a0:e6:77:e9:23:9b:48:
43:53:d5:52:15:a3:61:f1:83:93:27:23:42:eb:14:a1:28:80:
30:80:65:04:75:67:fa:43:8a:83:84:4d:37:c0:03:41:c8:67:
82:4d:ab:74:76:d6:40:78:15:fc:d4:5d:90:23:4b:f7:a1:00:
2f:f4:bc:20:ec:ce:97:64:07:b2:52:62:f3:19:28:17:d4:34:
a8:ee:e9:30:36:0c:bb:ab:92:e5:0d:b0:d3:94:9b:18:d8:a0:
77:a1:8a:18:34:f4:51:7e:41:65:bb:f0:27:54:52:0e:a9:5b:
4c:b6:58:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:27:33 2025 by rpki-client