Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json)
Hash identifier: BaoRZ4ocZKF8O5L6E3OMkYIewCk5PPbuTutiqoZrg/A=
Subject key identifier: 38:B6:6C:0B:21:41:8B:18:41:8B:8A:DF:22:00:E8:3B:EC:3E:BE:11
Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Certificate serial: 0197B8FD4E53C330E46C621CB974160AB8DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
Manifest number: 016E
Signing time: Sun 29 Jun 2025 00:01:37 +0000
Manifest this update: Sun 29 Jun 2025 00:01:37 +0000
Manifest next update: Mon 30 Jun 2025 00:01:37 +0000
Files and hashes: 1: knggMszGXslbbJ2_Oh2Jaifz1gc.roa (hash: 1NY+pqUYlKwDvhTu3JTqY8SDs7jlakZ17fJjnTdwI9Y=)
2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: 7MnLwTkOm+vxqCaoXlNxMQPZpHsq5Cn0L3x0Ib83XNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:4e:53:c3:30:e4:6c:62:1c:b9:74:16:0a:b8:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Validity
Not Before: Jun 29 00:01:37 2025 GMT
Not After : Jun 30 00:01:37 2025 GMT
Subject: CN=38b66c0b21418b18418b8adf2200e83bec3ebe11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:87:62:59:e2:70:4c:6e:82:9f:e6:a7:b2:6d:
d1:32:8b:fe:c6:bc:aa:0b:76:bb:41:a5:5b:ec:f6:
a7:df:43:df:7f:8e:3f:8e:5d:44:1c:38:c8:1f:6f:
62:06:ea:1c:a1:2e:f5:b7:fb:f4:9e:ff:f1:f4:94:
cb:6e:02:69:c1:41:8d:22:1f:eb:5b:2e:5b:b4:b4:
0b:c1:c5:30:a0:e4:ce:f2:ae:88:ab:6f:96:6d:06:
3c:f8:15:d3:20:16:2a:c4:3c:19:74:8e:b0:59:e2:
51:48:25:f0:64:52:b0:fa:f5:e8:03:9d:fd:f8:da:
43:83:16:24:71:11:8a:8d:9e:78:c8:37:31:13:b5:
1d:b7:8c:e4:c8:55:a2:e2:f1:fa:45:08:c1:c6:2c:
04:6d:ae:04:68:9b:f8:a9:81:27:a2:c8:02:42:85:
08:ae:af:b7:cb:cb:25:62:8d:ba:4b:3a:41:1c:09:
a7:f4:5f:b1:9d:19:92:42:c0:33:e4:e4:62:2e:ba:
57:ae:98:05:4c:e3:73:6b:76:a7:9d:a7:e0:fe:bc:
f6:2c:c8:f2:c4:7e:c7:5e:75:47:3a:54:99:9d:38:
38:dd:ec:7a:c0:ce:b8:33:34:0a:fb:93:3f:b3:ef:
2c:97:70:4f:1e:33:a4:78:92:22:4e:cb:c7:32:d2:
ac:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B6:6C:0B:21:41:8B:18:41:8B:8A:DF:22:00:E8:3B:EC:3E:BE:11
X509v3 Authority Key Identifier:
keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:75:a6:30:a6:99:22:40:3a:fb:7d:a7:7e:b5:6b:18:d9:46:
6f:b3:94:5b:c4:05:2a:c3:f6:7a:03:16:ac:8b:0b:cf:f9:b8:
1f:e4:9e:68:0a:5c:94:3a:73:7b:dc:0c:d4:29:5c:28:d6:a5:
24:0f:c7:c0:29:61:4f:82:5f:ac:3a:17:e4:d0:5a:70:d9:21:
44:4f:11:6a:86:ae:79:8c:27:37:aa:46:ba:c3:ac:e8:b2:9b:
1a:27:19:77:fb:a1:a1:12:e2:95:28:53:cf:f6:2e:e9:48:de:
ff:92:0b:95:81:db:d5:de:c7:af:e1:fb:ae:fc:d0:23:8c:db:
7c:93:db:a3:30:be:8b:43:57:67:61:be:db:10:5e:97:e6:21:
84:c9:43:6f:ea:ac:be:be:60:c1:50:36:65:a6:37:99:c0:e2:
69:46:bb:08:4f:2d:9d:f0:07:45:9c:2b:1f:a2:c6:53:21:dc:
e0:7a:9d:41:73:0d:83:d3:bd:4b:45:63:a1:18:56:2f:d6:d2:
78:7c:a5:34:67:53:4e:b3:76:8e:a5:60:66:2b:f4:c9:9d:c8:
49:99:e6:2e:b8:45:5b:3a:88:fb:db:7f:31:0e:e3:20:aa:2d:
5a:5f:03:d3:9f:2c:73:76:4e:22:47:38:37:9e:a4:61:2a:69:
62:5a:94:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:38:31 2025 by rpki-client