Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
File: YB3AD5pIG0FQhrFDp91M2h_7JHA.mft (raw, json)
Hash identifier: a2KCVx/ajrBy1JuB23yr3DndBExkbSD32ND7BD5onnQ=
Subject key identifier: 06:5A:DB:A6:D8:F8:82:58:B4:EA:33:F6:48:3F:00:AD:FE:9C:5D:4F
Authority key identifier: 60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
Certificate issuer: /CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Certificate serial: 019659B975C7C41550FAB8E4CAC58147E27E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 19:00:48 +0000
Manifest this update: Mon 21 Apr 2025 19:00:48 +0000
Manifest next update: Tue 22 Apr 2025 19:00:48 +0000
Files and hashes: 1: 4mIaRiVfusRCW_nZ919kue73VcU.roa (hash: KAlnZdYdnEt6W3Qh7SxuikxG/eJq1ZmaN4m/5vXa+us=)
2: YB3AD5pIG0FQhrFDp91M2h_7JHA.crl (hash: 4qMi9ni38a7gXIwmbB2HAmsyQfWlqH3uDYU0xEN8G2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:b9:75:c7:c4:15:50:fa:b8:e4:ca:c5:81:47:e2:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Validity
Not Before: Apr 21 19:00:48 2025 GMT
Not After : Apr 22 19:00:48 2025 GMT
Subject: CN=065adba6d8f88258b4ea33f6483f00adfe9c5d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:28:c9:44:65:69:87:62:fa:ca:29:8b:61:bb:
1a:40:c3:b0:86:b2:8a:31:e6:cd:c6:59:29:7b:05:
66:91:53:d5:ca:12:4e:9c:c7:cd:85:83:b5:08:47:
44:53:31:5d:1d:33:68:9f:d6:63:51:db:0a:6b:de:
28:07:cc:5e:e1:8e:1a:8f:14:31:7d:a2:0d:6f:b6:
90:4c:a9:b0:93:cf:42:f2:b6:e6:f2:aa:64:cf:13:
b2:30:12:f5:20:27:33:79:bf:03:50:9b:8f:8a:31:
b0:51:19:08:26:91:5c:4d:17:58:74:05:47:ee:59:
fe:75:f5:f4:7c:12:d0:c0:d7:07:41:47:b9:ec:f1:
03:ce:10:ca:64:42:02:d4:61:b4:74:9e:fa:bf:96:
58:35:49:f9:8b:4c:e0:48:94:bd:9b:99:cc:88:88:
ba:cc:35:66:47:f2:c1:6e:b6:39:fe:1f:88:eb:32:
a3:73:07:0d:d0:5f:71:bd:8e:4f:e4:31:08:e6:d6:
b7:dd:b8:27:b5:44:7a:c1:34:50:b5:d1:35:c6:6a:
3b:cf:9e:66:d5:22:f9:39:07:df:6e:1b:e2:4e:c6:
44:65:51:d6:9a:7e:c8:ca:bc:89:98:dd:ce:31:c0:
57:13:5b:61:9a:aa:b5:6c:b6:47:65:48:a8:3a:68:
d5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5A:DB:A6:D8:F8:82:58:B4:EA:33:F6:48:3F:00:AD:FE:9C:5D:4F
X509v3 Authority Key Identifier:
keyid:60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:6f:6c:ed:ad:b6:24:47:bc:45:63:0f:b5:9f:b4:ca:75:44:
f4:f6:92:61:5e:37:b4:73:9c:eb:c1:f8:6f:19:41:a2:b9:b7:
dd:b2:96:03:90:a6:a8:78:1b:7f:51:a9:a0:6f:fc:90:a0:87:
9f:ec:c5:a3:e3:c5:55:7d:1b:20:c6:f1:6b:6e:ac:85:87:88:
33:ce:20:dc:2a:86:51:aa:8b:e8:a8:bf:7b:b5:9d:4e:dc:ab:
55:63:45:32:28:03:ca:c0:5e:0f:ec:1d:cb:b8:80:f1:5e:ba:
95:c1:74:a7:44:ce:bc:9e:63:83:c0:26:ae:06:c3:b5:24:68:
74:05:28:04:50:63:b1:27:d8:95:06:ca:ed:0c:eb:dd:b3:d4:
61:c9:89:7f:06:b5:f1:61:08:37:34:20:75:d7:dc:dc:8e:0b:
61:a3:aa:b3:a0:70:e4:6f:8b:53:04:ee:a9:70:c3:fc:81:1e:
2a:a4:38:f9:1d:86:7d:f8:09:b7:86:34:1b:9e:72:c1:3e:89:
24:8d:81:0c:5e:a0:04:0f:2d:2f:dd:2e:68:8e:41:58:52:19:
4f:18:b7:37:98:d3:bd:cf:ed:ec:01:4b:65:a8:2b:ac:45:67:
d6:ca:23:4e:73:40:e7:5b:c5:4b:76:c6:6a:49:b1:8a:0a:a4:
4f:ec:ae:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:32:16 2025 by rpki-client