Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: UzhJdizmvucUui68iBmUBQ+YsTT8eMUIvlnOl+zUL3Y=
Subject key identifier: 52:36:17:79:9C:19:93:5B:AD:64:58:DE:05:4B:9C:76:E7:49:5F:11
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 01965BDE7E6D50BD001FA9224208BCEB152B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 10F1
Signing time: Tue 22 Apr 2025 05:00:30 +0000
Manifest this update: Tue 22 Apr 2025 05:00:30 +0000
Manifest next update: Wed 23 Apr 2025 05:00:30 +0000
Files and hashes: 1: Q9vdhvNHwOEEPnjfpoIoeq4pq_E.roa (hash: AjW64DrutKx53AvwTAQKpO/FJMGHUcE1ZDsQqqfuNRE=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: rFMdhCs2mMIk1dcW9l3/5hktpLJ/LnF7HSQ1HRo5Jgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:de:7e:6d:50:bd:00:1f:a9:22:42:08:bc:eb:15:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Apr 22 05:00:30 2025 GMT
Not After : Apr 23 05:00:30 2025 GMT
Subject: CN=523617799c19935bad6458de054b9c76e7495f11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:82:39:8f:56:e3:53:4b:5f:a1:39:a2:10:54:
a1:f2:72:15:da:93:00:f2:e2:d3:0a:ac:e0:f2:90:
58:bb:0d:99:c4:ba:8b:9c:04:54:6f:76:91:c3:29:
62:d7:42:8c:8b:f4:b3:cd:aa:ea:93:e9:f9:8e:bf:
82:f6:7b:bd:b7:41:7c:1f:bd:43:40:2a:7d:66:78:
84:aa:dc:15:b3:51:1f:ef:f9:cc:a5:11:be:1b:df:
51:d6:8a:60:45:9a:10:93:a6:84:b2:84:8a:33:f7:
b8:2e:1d:27:d8:f3:ce:76:b8:24:04:90:56:d6:10:
22:1e:03:14:89:02:79:00:39:f0:10:91:00:73:da:
22:8b:0b:41:46:e4:3a:92:72:28:3e:9e:0c:c6:6c:
c8:8e:4d:33:59:07:34:a4:0d:f5:97:74:14:33:c7:
62:02:9f:19:d5:b6:dc:76:ca:06:a2:66:43:34:dd:
3a:15:fc:87:62:f1:5d:b4:e9:13:17:06:dc:0a:ed:
93:b2:27:70:91:e1:2a:9f:56:0d:4b:7c:d7:bf:e5:
61:0b:85:bd:3b:09:d3:e2:3d:7b:66:63:e7:fa:dc:
6d:45:30:a8:21:19:a9:8e:2d:ae:3a:b4:d0:2d:fd:
36:b0:95:fa:8d:8c:fb:b6:40:b9:a3:cc:8f:e6:e4:
2e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:36:17:79:9C:19:93:5B:AD:64:58:DE:05:4B:9C:76:E7:49:5F:11
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:cc:d6:6d:af:65:06:12:fe:dd:6a:3b:1b:91:43:64:66:a5:
69:bd:9d:38:b7:c1:24:08:37:11:76:75:9f:02:49:c1:cc:28:
44:0b:58:15:94:4a:47:3e:6a:ca:01:91:b8:01:5a:38:de:37:
27:cd:12:2c:03:f8:27:5c:61:47:f4:4e:00:3e:0c:31:c8:ab:
dc:bb:19:fc:b4:55:65:c6:1d:e1:2b:57:a3:6b:a8:ab:2c:cd:
8c:1e:a9:8d:a3:b0:99:d8:c3:bf:9f:71:3d:5f:c5:21:cf:01:
68:bb:ef:b7:f2:54:44:76:de:a2:d8:de:8b:7a:87:95:2d:58:
4f:82:a5:95:49:d9:cb:99:ab:08:3b:21:5f:2e:8b:8d:31:d6:
20:9d:2f:8d:01:db:90:d7:8f:c4:cb:7b:a3:47:7e:75:b5:2f:
c0:c1:be:6a:bf:ae:51:92:d3:5b:2e:b7:73:0d:73:0c:a9:76:
f6:b0:f7:6b:2e:79:0c:89:25:8d:4b:97:af:7b:ba:a9:55:b0:
20:b2:63:87:1a:32:a2:3e:b3:56:76:18:7a:6a:4f:3d:d5:51:
b2:e0:ac:f9:ae:88:ee:31:e8:9a:75:27:f0:79:3e:01:7d:09:
f2:02:7f:00:3b:8e:1f:0e:99:9b:10:09:87:d9:d7:f3:fb:46:
11:85:df:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:14:21 2025 by rpki-client