Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: jOQmUeHCnG1KIV9J2WfslQIAi9XC+IYhQhJZIfXaAYI=
Subject key identifier: 8C:29:BC:CB:BF:92:C2:E6:6F:4E:FD:E4:E5:72:D7:4E:3D:6E:9F:EC
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 0197B77C786E061915BDA30795406380D263
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 03DD
Signing time: Sat 28 Jun 2025 17:01:17 +0000
Manifest this update: Sat 28 Jun 2025 17:01:17 +0000
Manifest next update: Sun 29 Jun 2025 17:01:17 +0000
Files and hashes: 1: 8tq6vUxikXVafkdQNOumeQjFfpc.roa (hash: UpmsMokgr2OHdk8MVVsUZdaiVZYh5g21JKYfdCc4ZA8=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: RbDrKjIIyKTGq4ZYAz5OiGeFRYXrwA4Vt+eTNz0qXUw=)
3: j89ASOslTb0sA8qPaNCnvdarbHI.roa (hash: pTH6+0WVaBMdNBqgh83yrPXmlHTEaPDbAotvSzt0CT4=)
4: vSrVfCiFhwuThaFge_HlQGTrHjk.roa (hash: Bc63krCzWLaf7LOD/k916HgQOiH2H7M6asbeefYBGos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:78:6e:06:19:15:bd:a3:07:95:40:63:80:d2:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: Jun 28 17:01:17 2025 GMT
Not After : Jun 29 17:01:17 2025 GMT
Subject: CN=8c29bccbbf92c2e66f4efde4e572d74e3d6e9fec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:44:7c:c1:90:bc:67:01:4d:b8:e4:c8:dc:fb:
18:b1:78:44:13:36:65:63:fa:23:19:52:e2:db:a8:
f6:38:bd:0b:9f:ea:da:f9:02:1c:4d:5b:98:5b:11:
d8:ac:72:62:f7:65:f5:f6:84:42:16:80:ae:aa:34:
63:14:e7:c3:29:9c:a3:7b:62:55:b1:dc:b5:5e:75:
ea:65:06:9b:f4:f8:bf:56:d6:93:f4:ff:35:13:2f:
b8:f3:c9:7c:c8:ae:c7:6a:76:5c:c4:0f:d5:a7:5f:
74:d3:15:d2:81:62:34:d0:16:2e:20:1d:4b:48:18:
aa:7b:8f:74:9c:e9:2b:05:e1:f2:d5:96:33:55:1d:
5c:8a:7b:dd:f2:ef:c4:25:86:aa:83:68:13:33:e0:
af:9e:35:a9:8b:30:e3:77:86:94:36:34:e3:ed:26:
0c:71:00:f2:6a:a4:7d:a5:98:da:87:c5:2f:eb:46:
97:c2:b6:c2:f9:27:f6:b7:7b:a4:d6:af:83:8d:1e:
d9:de:b8:88:b6:b7:e5:48:d3:21:b6:88:3e:d0:63:
33:7c:f3:a6:f5:fc:a0:0a:ad:4d:f7:cd:e5:c3:3d:
3b:97:91:cf:93:61:94:9a:0f:a8:91:f2:b0:46:b2:
85:62:d2:9c:9e:88:ad:11:db:eb:4d:3e:4b:ab:0e:
11:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:29:BC:CB:BF:92:C2:E6:6F:4E:FD:E4:E5:72:D7:4E:3D:6E:9F:EC
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:fa:c4:82:25:ac:03:a7:39:e8:db:84:d5:54:bd:2c:a3:80:
7d:3a:54:fd:12:a9:a6:2d:3a:79:8c:a7:79:a5:a9:69:92:0e:
89:c0:db:32:3d:46:d5:6a:d4:28:c1:6c:60:fd:44:fa:fc:5e:
c3:c9:f1:0c:d7:5c:da:20:2e:b1:25:11:26:83:0d:c7:b1:4d:
5b:be:ac:d0:b3:15:66:b2:79:ed:2a:97:a6:02:54:13:9f:37:
dd:e2:75:02:62:aa:e8:b3:5d:71:f3:a7:9e:99:32:bd:8c:21:
85:cd:7d:af:06:ea:32:dc:92:12:7d:c9:59:d0:86:76:d2:a0:
2a:39:a4:2f:4b:45:16:dd:c8:6d:05:46:24:da:de:d4:86:5b:
af:5c:d7:b5:ac:ab:72:e4:58:21:56:34:34:18:06:3e:cd:75:
34:cb:9a:7b:94:98:a2:79:13:84:6a:b8:43:b9:e7:97:7a:21:
b0:bd:de:0a:cb:0a:e2:ec:b9:85:21:8e:10:36:f6:a6:5c:80:
b2:84:02:d1:14:51:6a:3b:96:36:bf:fd:3a:9f:02:2f:6c:90:
38:f7:5f:7e:40:27:94:af:58:e7:65:60:c4:47:a4:b8:bd:27:
d0:76:fe:34:26:28:bc:49:92:ef:bb:3c:e4:07:fe:fd:7a:5b:
51:0f:7f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:38:46 2025 by rpki-client