Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: JnYoQ0brhCtHB2SxmX3dx5xse/p0jEXJlzxCjk1iALA=
Subject key identifier: A1:25:57:97:9A:73:F7:9E:8A:78:F9:0C:85:0A:6F:15:0E:75:09:FE
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 0197C0499DCE5D16D2DCC651330575518425
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 1163
Signing time: Mon 30 Jun 2025 10:02:19 +0000
Manifest this update: Mon 30 Jun 2025 10:02:19 +0000
Manifest next update: Tue 01 Jul 2025 10:02:19 +0000
Files and hashes: 1: M5OG91JsCAL60eSIC9Ad8J1tKCQ.roa (hash: 1YIYjfLNUonn/y5DvRwWqNtN3UGauHay3fPvlHRKB78=)
2: NLZJeEG7B459T5HRjzbaryRo4U4.roa (hash: D+Zc3p+KtPQCrkhD8NK/RsRz3Ozk8j3l3fx+in8YU8k=)
3: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=)
4: g3mWLx3QHER7jvUWO9_K86XjFvg.roa (hash: CQjC54kUHdxygPOZtU3D7Ni2Q4FQ2f8Z6SwCWy0D9f0=)
5: hvqfOijr6dDuZ5bH5DmTLJBSNC0.roa (hash: wnrweN82zW3L/i2kjShP1DGJ6lX6f745nj23KDLcERg=)
6: pkTSWC0kyyJmikpwefrKy0hYNBc.roa (hash: uJAe5aUPI71DUshehwa1+fSKLZdP9CODCdcESePQJgY=)
7: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: c+yG5XC/bZtNojZBZ5TaONoKMgrjJVNwIlKWewDgsBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 10:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:49:9d:ce:5d:16:d2:dc:c6:51:33:05:75:51:84:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Jun 30 10:02:19 2025 GMT
Not After : Jul 1 10:02:19 2025 GMT
Subject: CN=a12557979a73f79e8a78f90c850a6f150e7509fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:52:11:bc:88:4b:e6:6d:a1:04:1a:d1:58:b0:
58:0f:16:8a:41:3a:3d:0c:2e:76:5d:07:f8:11:13:
f7:74:2e:9f:ba:2c:4b:ae:6b:1d:d1:00:1d:7e:58:
5f:91:24:fa:67:40:45:e4:c3:7a:77:bd:79:6e:85:
cb:17:f5:97:04:d9:2f:fe:1b:64:cd:b8:b7:70:c1:
ab:b9:47:40:f7:26:b5:4c:67:34:4a:50:9f:9a:f9:
c6:00:d2:fe:bd:f2:7a:14:86:75:80:f7:e3:1a:74:
12:da:5d:49:0e:f0:c9:47:2b:ba:8d:e2:a0:eb:de:
f8:e3:90:d4:d1:57:b1:20:cd:b3:f5:61:8c:c9:7f:
64:8e:a2:55:79:10:33:f7:0c:04:a3:71:84:89:3a:
f2:2e:17:c7:d7:98:8a:d0:66:9b:fd:b3:86:c0:e8:
1e:2f:3b:12:ac:75:47:b1:20:ef:47:55:70:ab:5a:
e5:aa:8e:71:86:29:8e:a8:d1:7e:ec:08:0b:cc:d9:
28:a1:cc:84:2d:22:5e:3d:59:2b:bd:0b:8c:a2:57:
0c:72:6c:9d:f9:2e:4f:77:44:5b:ab:6e:a5:43:53:
60:9b:06:ac:7f:d3:94:06:c7:42:5a:f9:0b:05:d8:
dc:a6:c4:27:0e:3a:0e:25:a0:31:f8:62:61:63:56:
8b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:25:57:97:9A:73:F7:9E:8A:78:F9:0C:85:0A:6F:15:0E:75:09:FE
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:3b:b8:fa:0b:5a:42:41:68:0d:3a:2d:ba:16:20:14:61:5a:
5c:c5:67:47:16:d8:e3:8a:dc:79:b4:26:ca:fe:84:57:33:c5:
66:32:a2:2e:9e:2e:f2:05:83:22:67:4e:e0:fa:52:d3:55:2a:
7e:2f:3d:96:6a:23:0e:78:18:29:c9:93:02:1f:74:d3:9b:8e:
8d:ee:fd:ef:c5:38:43:0a:2b:de:f0:9d:91:44:6f:e1:e9:c0:
81:1f:62:00:9e:ce:68:96:72:b1:2b:4d:e7:48:b3:6e:66:34:
12:06:15:81:91:88:54:aa:7f:11:30:d6:0c:7d:85:8f:7e:57:
6d:53:eb:b7:49:66:f7:fc:41:bc:22:70:a8:95:7c:40:97:f8:
5c:62:b3:f0:d6:80:20:24:ac:3c:aa:f7:b6:0f:e9:12:d6:20:
a9:b0:95:4a:ed:dd:f7:ec:2d:63:3a:35:55:c1:bd:cc:36:03:
f4:ee:b2:2b:a2:db:4d:a2:f7:5d:a1:e8:75:c5:bb:24:65:7a:
3a:d5:17:b7:98:fd:71:88:6b:03:6c:f3:f3:79:58:96:43:4c:
40:60:c6:2d:7b:af:56:58:7e:f3:58:9c:46:16:2d:22:4c:33:
f3:c4:f5:c2:d0:9d:fd:86:81:14:74:74:40:c8:1c:b2:b2:8d:
64:fb:68:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 17:22:02 2025 by rpki-client