Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/3e4f6b-2235-432e-a69a-07dac7b92d44/1/yYfQn9P8K3BMZhELsCUu4Maxuko.mft
File: yYfQn9P8K3BMZhELsCUu4Maxuko.mft (raw, json)
Hash identifier: 3ouyW9KEEkxYrAPmgdc8VLwkhdNY2pX8mzAZ5leOFys=
Subject key identifier: 85:C2:60:D3:E0:B7:4D:D0:B1:4C:8A:55:D1:F5:42:54:94:AA:5D:E2
Authority key identifier: C9:87:D0:9F:D3:FC:2B:70:4C:66:11:0B:B0:25:2E:E0:C6:B1:BA:4A
Certificate issuer: /CN=c987d09fd3fc2b704c66110bb0252ee0c6b1ba4a
Certificate serial: 0196575CC39456138A4957855AFC769692A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYfQn9P8K3BMZhELsCUu4Maxuko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/3e4f6b-2235-432e-a69a-07dac7b92d44/1/yYfQn9P8K3BMZhELsCUu4Maxuko.mft
Manifest number: 0BDF
Signing time: Mon 21 Apr 2025 08:00:19 +0000
Manifest this update: Mon 21 Apr 2025 08:00:19 +0000
Manifest next update: Tue 22 Apr 2025 08:00:19 +0000
Files and hashes: 1: jZJbW0BsVFzwOis1-qgAs4YgHTo.roa (hash: Sk/yWlF7AwtnMT+QuY5wwjFpUnvnxIEukFPcttfDcVM=)
2: yYfQn9P8K3BMZhELsCUu4Maxuko.crl (hash: ELw6f/lWrHZSs4HwfBQBgVz+8YeDD7IlxdurtkgmNRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/3e4f6b-2235-432e-a69a-07dac7b92d44/1/yYfQn9P8K3BMZhELsCUu4Maxuko.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/3e4f6b-2235-432e-a69a-07dac7b92d44/1/yYfQn9P8K3BMZhELsCUu4Maxuko.mft
rsync://rpki.ripe.net/repository/DEFAULT/yYfQn9P8K3BMZhELsCUu4Maxuko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 08:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:5c:c3:94:56:13:8a:49:57:85:5a:fc:76:96:92:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c987d09fd3fc2b704c66110bb0252ee0c6b1ba4a
Validity
Not Before: Apr 21 08:00:19 2025 GMT
Not After : Apr 22 08:00:19 2025 GMT
Subject: CN=85c260d3e0b74dd0b14c8a55d1f5425494aa5de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:21:79:92:dc:6d:df:1c:f0:fd:4a:ba:8f:0d:
fa:98:34:64:86:9a:a9:6f:f2:81:81:70:bd:08:7a:
3c:68:7a:fe:d5:ce:06:81:b9:97:35:ea:0f:ef:a7:
35:80:7d:45:d7:ae:52:6f:63:5f:a8:0c:3b:f9:c0:
0b:cf:4a:6f:88:b6:71:68:6e:f9:82:0c:66:32:d6:
3a:15:19:f3:f3:19:d1:62:63:ed:90:ac:bb:41:ed:
9b:ec:c3:7a:b5:d1:1b:8c:eb:0b:a1:38:56:93:4e:
90:ac:c1:99:76:ca:83:c6:95:a6:98:18:c5:19:5f:
79:78:c8:87:17:87:fa:37:c2:5f:36:00:8a:de:00:
de:66:b9:e1:8a:8a:b8:f8:bf:f0:d0:de:7c:42:d6:
0f:bf:b6:cb:e4:5e:e3:e7:94:c1:ce:12:5e:03:d1:
50:a4:cb:ff:4c:44:b3:d4:c1:32:8c:04:98:05:ad:
41:f6:15:c1:17:36:bc:d9:c6:ea:a4:70:d4:c3:52:
1b:cf:4f:14:5d:83:b7:15:58:14:de:c4:78:74:93:
57:4c:b6:8e:93:c7:9a:37:c4:79:68:88:b6:c2:bd:
98:8d:53:9f:58:f6:eb:1d:df:ae:f0:6c:8b:e6:c7:
12:e7:4c:57:2c:c4:ec:89:a9:99:3d:61:bf:51:53:
52:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C2:60:D3:E0:B7:4D:D0:B1:4C:8A:55:D1:F5:42:54:94:AA:5D:E2
X509v3 Authority Key Identifier:
keyid:C9:87:D0:9F:D3:FC:2B:70:4C:66:11:0B:B0:25:2E:E0:C6:B1:BA:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYfQn9P8K3BMZhELsCUu4Maxuko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3e4f6b-2235-432e-a69a-07dac7b92d44/1/yYfQn9P8K3BMZhELsCUu4Maxuko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3e4f6b-2235-432e-a69a-07dac7b92d44/1/yYfQn9P8K3BMZhELsCUu4Maxuko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:a4:3e:6e:4f:ca:6b:a7:43:27:b4:97:0e:92:37:63:be:de:
e0:01:03:d0:50:5b:ca:19:cf:13:44:38:87:5e:4c:42:d5:b9:
a3:99:79:12:02:b5:4f:43:17:e2:45:00:e8:82:ed:96:76:90:
01:07:b4:ef:d8:fb:3c:62:20:32:2d:14:84:34:c3:f8:71:df:
44:fe:03:70:43:7e:4f:4f:91:32:80:17:bd:f0:19:4a:74:22:
64:e3:ce:61:c4:aa:e8:9b:7b:de:27:40:b8:f4:00:0c:41:ae:
09:e3:05:16:a5:28:5d:b4:23:70:9f:59:1a:a1:60:9d:10:49:
46:27:a3:10:c9:d3:06:e1:fa:30:ea:19:72:3a:c7:96:fe:bb:
56:73:b6:26:01:dc:30:6f:f4:ad:ce:4f:42:e7:63:33:07:7c:
a3:17:dc:b1:a5:67:08:51:c0:db:ee:4a:d0:f2:5c:2b:fa:9e:
1e:43:b4:34:9b:2f:e9:d6:88:8c:34:00:03:fd:c3:96:99:30:
e2:1b:95:59:f4:8f:b1:1b:4c:30:ed:13:4b:4f:ef:4e:37:ba:
4d:8e:16:37:d6:75:ff:5f:e2:20:da:01:7a:97:aa:8a:e9:e4:
4c:c3:0a:23:b0:6c:a7:ed:af:19:00:6d:d6:64:2b:33:12:3f:
84:d8:29:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:03:24 2025 by rpki-client