Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
File: Y31k1HJWO36HP1t5-RydP__D2_k.mft (raw, json)
Hash identifier: zvF+w8mJjoWbtBqe+Z8xGgesTf9F+OYW/QO+Wua7Ppw=
Subject key identifier: AF:19:0A:21:87:07:C4:6D:89:21:B9:21:AE:78:AF:D1:ED:A6:EF:42
Authority key identifier: 63:7D:64:D4:72:56:3B:7E:87:3F:5B:79:F9:1C:9D:3F:FF:C3:DB:F9
Certificate issuer: /CN=637d64d472563b7e873f5b79f91c9d3fffc3dbf9
Certificate serial: 01964DEC22309CEDC169AA742FE6D951682B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
Manifest number: 0DB5
Signing time: Sat 19 Apr 2025 12:00:42 +0000
Manifest this update: Sat 19 Apr 2025 12:00:42 +0000
Manifest next update: Sun 20 Apr 2025 12:00:42 +0000
Files and hashes: 1: Y31k1HJWO36HP1t5-RydP__D2_k.crl (hash: C1Nx3yxPylVr9kkUJ4+EYdhn1sHzrhDVUv7LrcOPAGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:22:30:9c:ed:c1:69:aa:74:2f:e6:d9:51:68:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637d64d472563b7e873f5b79f91c9d3fffc3dbf9
Validity
Not Before: Apr 19 12:00:42 2025 GMT
Not After : Apr 20 12:00:42 2025 GMT
Subject: CN=af190a218707c46d8921b921ae78afd1eda6ef42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:53:d1:b0:ad:d6:77:fb:ff:f4:fa:1e:43:53:
47:e5:a8:83:3b:26:15:dc:d5:78:c1:fd:94:e8:ca:
fb:79:7e:44:5d:64:33:b2:e6:90:73:3a:ba:60:63:
e2:b6:0b:44:7d:2d:10:6d:e8:90:4c:f9:20:b7:3c:
af:0f:02:95:b7:61:7b:ed:21:dd:a8:1d:a3:3a:fd:
69:54:ce:d3:11:55:64:d0:f3:8f:04:a3:79:15:99:
90:57:10:27:9e:c1:4a:3f:7c:40:76:9c:80:b9:9a:
b6:3b:bd:a4:e1:39:97:28:e5:24:c7:2e:23:3b:5e:
43:a6:b1:cb:d4:16:6e:99:b4:3c:d3:e6:44:1b:c5:
9e:30:8a:d0:0d:61:cb:e7:b0:52:7f:15:54:75:44:
7c:01:ba:a4:53:ef:1a:d1:7a:ac:45:e1:63:32:72:
c6:48:3b:d9:92:35:26:72:a2:75:6b:9f:05:60:8a:
ab:b7:1f:ce:92:f1:c0:5b:f5:ec:b2:9e:64:db:d4:
65:78:02:ed:db:71:85:b8:ae:2a:8b:c9:38:2f:3a:
20:ad:e0:c1:28:3f:12:a8:ce:b6:06:67:13:2d:a7:
a0:e2:3a:68:fb:77:74:ef:09:3c:13:05:b0:29:bb:
ba:98:4e:8c:84:b4:3c:0c:92:e1:81:cd:6c:39:73:
4c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:19:0A:21:87:07:C4:6D:89:21:B9:21:AE:78:AF:D1:ED:A6:EF:42
X509v3 Authority Key Identifier:
keyid:63:7D:64:D4:72:56:3B:7E:87:3F:5B:79:F9:1C:9D:3F:FF:C3:DB:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:8f:90:10:79:35:06:80:a8:bc:b9:14:47:f0:55:73:aa:33:
80:ba:e9:28:32:26:b8:e6:32:55:83:23:4a:a8:f7:4b:af:54:
65:b9:76:ec:f9:45:31:80:dd:3d:ca:36:72:90:98:11:71:f5:
08:f4:24:e4:bf:c6:02:75:84:38:d7:27:69:a7:1e:6e:dd:fb:
7c:79:74:2d:78:0e:c3:42:23:7d:ee:f3:b9:8b:1b:e5:ed:03:
57:65:3a:cd:bb:47:6f:7b:65:59:34:c1:71:dc:ab:27:de:03:
76:d6:8f:44:d7:69:45:88:e4:67:34:7c:76:61:62:92:01:18:
03:92:1b:94:aa:34:eb:6b:3b:8d:6b:10:d4:6d:be:a8:d6:0b:
d2:6e:20:4f:bd:49:d4:a4:d1:b8:71:00:c1:ac:dc:97:61:56:
08:6c:41:2a:25:c7:b3:4b:c9:66:87:6d:01:dc:3f:91:17:ca:
2f:ec:6a:5a:df:5d:92:88:da:cf:41:af:a6:cb:f5:5c:34:d0:
12:d4:4c:f7:12:c7:78:ee:d8:79:ff:3d:3c:0a:b9:3a:f3:77:
5b:1c:16:8b:4f:ee:9a:01:2b:7e:11:9e:01:34:11:a8:45:8a:
c9:74:48:1b:d9:0f:3c:56:31:0b:8e:ba:b9:cc:63:1b:69:70:
85:85:23:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:13:22 2025 by rpki-client