Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json)
Hash identifier: gsNa6dhIcIvqORmQonjQyPqgH+/e/xFpHwxMmQ3KD0A=
Subject key identifier: 99:82:91:99:48:74:B3:AC:31:A1:99:C2:E0:AA:86:CE:CE:6C:DB:3A
Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Certificate serial: 0197B934100EF86530F8AD8DA80A84B21913
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
Manifest number: 15B7
Signing time: Sun 29 Jun 2025 01:01:26 +0000
Manifest this update: Sun 29 Jun 2025 01:01:26 +0000
Manifest next update: Mon 30 Jun 2025 01:01:26 +0000
Files and hashes: 1: UvHXXFoVL7W8kRf_CmjRtC48uH4.roa (hash: E8q/i3b6Anio6852XqG98vgAFVWa9Xn560kQh/u0aSY=)
2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: 1piM3tw6TyYS3MWHd0V7zs3SHroQ5bC3axQXM/6NWt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 01:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:34:10:0e:f8:65:30:f8:ad:8d:a8:0a:84:b2:19:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Validity
Not Before: Jun 29 01:01:26 2025 GMT
Not After : Jun 30 01:01:26 2025 GMT
Subject: CN=998291994874b3ac31a199c2e0aa86cece6cdb3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0b:4b:e0:f4:ac:a6:c7:b1:36:da:92:2d:2b:
a7:a1:22:3a:e5:18:73:7e:d8:00:3b:e3:e3:d8:75:
f1:9b:82:61:c2:f0:ae:87:e4:0b:8b:5e:7f:43:a8:
a1:39:2e:24:8b:65:56:d2:40:7e:47:a1:e0:24:44:
e9:36:de:52:43:ce:08:ed:7e:c0:e8:e1:a7:15:28:
a3:f9:36:75:66:82:0a:a5:e1:94:55:d0:26:ec:df:
b8:82:29:b1:48:00:c9:12:14:e2:45:0d:91:cb:7f:
d9:9d:37:98:d8:a0:6a:39:8f:46:32:27:2e:07:9f:
09:cc:2d:36:70:d3:8f:1d:f0:1c:a1:b6:67:89:d7:
63:9d:f0:fe:08:e6:3b:be:a1:09:e4:1c:2f:65:17:
63:a1:49:09:e3:5a:8b:58:43:2d:b3:f4:e2:4c:92:
0a:48:cf:72:54:ee:61:71:2a:f3:db:fe:c7:6c:d2:
a2:0c:03:63:b1:2b:22:b8:ac:ea:c6:f9:dc:83:3d:
5b:c2:9a:6a:76:44:f7:c7:86:86:e3:2a:ca:c9:52:
d8:e8:1c:dd:19:70:70:08:e9:cb:c9:c7:f0:74:43:
5b:2c:6f:d0:ee:3c:62:78:93:ae:f2:e2:13:99:1a:
19:ea:a8:95:1f:bd:46:72:c5:0b:28:55:09:fe:1d:
c2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:82:91:99:48:74:B3:AC:31:A1:99:C2:E0:AA:86:CE:CE:6C:DB:3A
X509v3 Authority Key Identifier:
keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:8b:b8:58:d1:4d:4e:74:24:94:ff:c4:61:76:55:ab:0c:9f:
41:9d:ff:fc:c1:cf:9d:2d:18:d1:88:57:ce:2c:03:51:c5:dd:
cb:a5:5f:81:72:f0:19:f3:14:31:2d:3b:e3:33:1a:f5:21:56:
2f:37:10:aa:59:21:b1:f7:7c:c2:b4:23:f2:79:e1:09:f9:ea:
4e:77:3a:09:82:17:fd:71:26:40:07:c4:16:de:de:91:0b:da:
a7:56:4f:db:3b:af:4c:4b:df:42:72:67:d5:15:c2:0c:dd:43:
94:ca:24:78:ec:d8:bf:c2:d8:67:62:a9:31:69:c6:7b:aa:a5:
3e:66:8b:8c:7c:33:19:ca:51:b9:02:1d:ec:dd:0e:95:b6:12:
16:49:ee:d7:0c:8b:9c:74:0c:65:1c:9a:a2:0c:7a:04:a4:43:
51:2e:ca:bb:89:40:22:04:8f:77:6a:14:af:3a:f5:d9:a7:39:
ac:2c:4b:de:88:b9:19:e7:2e:e7:09:e2:08:bd:07:5d:00:3e:
fc:bf:96:de:6d:d3:2d:e9:4e:c2:7a:17:bd:f4:7c:fd:bf:3f:
f5:0b:90:ee:a5:16:c1:8f:24:98:30:33:99:eb:4b:40:4d:70:
c6:f0:39:bb:10:4a:9b:3a:97:84:59:bb:30:da:52:83:75:ec:
a7:e2:3a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 11:14:50 2025 by rpki-client