Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json)
Hash identifier: vbBi0Y7GV4G8OcsBjPndsgDT2Ls2Z6sknkskMPxl9Z0=
Subject key identifier: B5:99:AE:9C:0E:F3:92:C3:24:2C:3E:77:AA:80:42:92:94:1F:E7:A4
Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb
Certificate serial: 0196553814AB39DA09611ED018EEBF2351B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 22:01:00 +0000
Manifest this update: Sun 20 Apr 2025 22:01:00 +0000
Manifest next update: Mon 21 Apr 2025 22:01:00 +0000
Files and hashes: 1: KXik7lH7rXobKNDojQJvsYz5RkY.roa (hash: OmHOyyMTUBadMMSlHfFTN/cjiEKBhDbZve1q3aoF8Wg=)
2: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: Ol4w547TAmh7TNAStO9ZPFvRyh5qjnh2mxSyWbWo5Xg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:14:ab:39:da:09:61:1e:d0:18:ee:bf:23:51:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb
Validity
Not Before: Apr 20 22:01:00 2025 GMT
Not After : Apr 21 22:01:00 2025 GMT
Subject: CN=b599ae9c0ef392c3242c3e77aa804292941fe7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7d:e5:2f:07:78:d7:b5:a7:e8:48:60:a6:76:
96:84:dc:54:bc:74:1c:81:9f:a8:ed:f5:91:09:3f:
83:66:18:89:0c:f0:6c:59:b9:91:ab:b7:90:f5:ad:
e5:1a:61:54:df:cc:5e:1e:77:3d:dd:0d:ba:5c:4b:
09:37:79:df:59:21:05:77:a0:cc:c2:f8:f3:57:15:
7d:84:1f:e5:13:43:e3:82:82:c5:12:e4:82:d4:0c:
b0:c8:fd:36:cc:6d:c3:49:70:a1:55:43:d4:35:c1:
f3:26:6e:57:e6:e4:22:d1:97:32:57:55:c2:b4:79:
16:27:e3:b5:76:01:14:de:6b:84:8b:76:55:12:89:
50:50:19:ae:00:64:13:31:2a:33:43:83:60:0a:e7:
57:6e:61:e1:c6:26:a0:77:d5:6a:87:c4:9e:ff:ae:
81:c9:8e:df:9c:fa:14:52:5e:d6:f2:40:1c:19:5d:
28:96:3a:25:c3:fb:c5:8f:ed:16:b1:8d:37:a7:de:
71:7e:48:31:da:cc:25:98:cc:ed:d4:6a:c3:6c:79:
1f:31:5a:46:bb:43:5e:40:dd:c7:26:2c:01:a2:6a:
77:88:90:ab:30:fc:39:0a:7d:b5:31:59:a2:5f:22:
e5:29:1b:98:e5:21:98:56:39:8c:a1:c8:92:c0:33:
a0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:99:AE:9C:0E:F3:92:C3:24:2C:3E:77:AA:80:42:92:94:1F:E7:A4
X509v3 Authority Key Identifier:
keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:bf:e7:2d:f3:83:fe:a9:8c:e9:aa:8f:9c:97:24:64:ed:ef:
7c:9a:23:1a:d0:e2:46:7d:20:63:03:e4:c7:2f:c6:e0:59:7d:
7d:df:db:80:22:50:2e:52:15:42:c2:48:b7:da:f9:3b:33:1c:
b4:28:9c:89:12:88:53:c0:d7:a0:c8:26:ad:84:6e:fd:2d:b3:
0c:cc:0a:d9:70:6a:6c:76:d6:04:86:bf:bd:d0:22:81:99:29:
9d:41:27:22:a4:dc:ba:7b:2b:6f:80:87:c8:fc:2a:2e:14:24:
4e:89:ec:2e:78:32:2d:a1:66:81:87:84:3e:c2:4e:52:ef:e0:
ca:40:3c:fd:10:69:96:6f:2e:ce:a5:1c:15:67:f5:2a:58:aa:
e2:95:85:83:0d:1d:d8:2e:75:f4:b6:0b:af:d2:a5:5d:6f:ac:
97:57:84:05:6b:68:88:3c:f1:92:a5:98:b6:48:ca:43:5d:91:
fd:2d:9a:4a:2c:c7:da:c2:a6:7b:22:fb:0a:d8:7f:51:a1:da:
fb:5e:95:7c:95:da:84:d2:5a:c3:a2:94:eb:4a:bf:0c:de:fd:
1b:ab:21:2a:30:42:b6:9d:a6:b6:05:62:c7:6b:b7:7e:04:de:
b5:30:01:c8:4a:78:47:60:66:39:b2:e3:1b:e0:a7:14:dc:86:
b9:f2:d8:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:37:09 2025 by rpki-client