Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
File: Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft (raw, json)
Hash identifier: O6obn6BdA55j7NwdrWas5+JZi2m8Tk3gs99lvqG2GlI=
Subject key identifier: C5:17:B4:5E:B0:97:26:FA:E0:7A:87:A2:21:B9:C3:FB:DA:2B:B3:A5
Authority key identifier: 63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7
Certificate issuer: /CN=6359a649b036103e80a3ce8f3d1b0138a60581d7
Certificate serial: 01964DEC85B6CC1C8FD6761A2C9F24525B73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
Manifest number: 090A
Signing time: Sat 19 Apr 2025 12:01:08 +0000
Manifest this update: Sat 19 Apr 2025 12:01:08 +0000
Manifest next update: Sun 20 Apr 2025 12:01:08 +0000
Files and hashes: 1: X6ZYSC-zk_X-vkVmhmsDz5ImQYg.roa (hash: ejdwRSw1lilKiCxqAuj8PMfvm39/1GCNMitYFT+EINw=)
2: Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl (hash: qjYOE2gxqOjLWA7XUs3Ni6aUtdo/pCIY7Eu4oI/foTE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:85:b6:cc:1c:8f:d6:76:1a:2c:9f:24:52:5b:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6359a649b036103e80a3ce8f3d1b0138a60581d7
Validity
Not Before: Apr 19 12:01:08 2025 GMT
Not After : Apr 20 12:01:08 2025 GMT
Subject: CN=c517b45eb09726fae07a87a221b9c3fbda2bb3a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7d:e6:80:be:61:a4:e5:81:47:c7:ed:c0:d7:
7a:62:c9:f0:8d:dc:82:80:d2:66:9e:e4:d6:f8:34:
c3:0a:e8:64:de:e0:b1:ab:1b:38:87:ed:a1:51:0e:
ff:7f:7e:50:01:34:91:d5:a7:53:19:f3:50:31:cb:
d2:70:de:35:ad:b0:98:9f:31:24:6a:c0:ae:36:db:
84:e6:fa:8b:1c:69:11:3e:ce:fd:2d:a6:79:bb:9e:
fa:c1:29:ea:f0:dc:34:7f:a0:b9:cf:82:af:05:9e:
20:20:4f:0f:69:ca:db:20:b1:27:35:58:5e:ee:05:
c6:12:a6:9a:2a:b5:ed:ad:22:9a:df:5e:60:aa:9d:
3b:e5:76:43:33:e7:b4:79:40:f5:a2:54:62:3e:fa:
97:89:da:64:d1:70:b3:4e:12:3c:85:95:e7:68:12:
91:f4:04:1a:0c:5e:b5:d1:b2:ed:bb:6b:6e:71:3d:
e7:2e:80:49:04:74:05:03:79:8a:ad:ec:14:f8:6b:
f4:3b:7c:fa:05:f8:59:61:bb:86:f8:a7:fb:42:f4:
bc:c2:15:8c:2d:b9:5d:0f:4f:04:92:0e:ad:5c:7d:
0f:86:77:cb:bb:2b:98:5c:6f:68:81:8b:f2:8c:f1:
72:2e:ae:e6:f5:93:fe:e9:cc:4e:5d:3d:a7:2a:bf:
3a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:17:B4:5E:B0:97:26:FA:E0:7A:87:A2:21:B9:C3:FB:DA:2B:B3:A5
X509v3 Authority Key Identifier:
keyid:63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:8f:4a:f4:ee:ff:4b:7f:16:34:a1:8d:8a:dc:7a:c9:b4:04:
d3:cf:30:96:18:08:37:a7:d6:98:67:97:be:e7:10:db:16:42:
bf:5b:9e:73:43:c3:89:1a:5f:9a:67:bd:15:c8:2e:2e:f7:35:
eb:18:7c:7b:9c:8d:a0:7b:6a:cf:fc:c8:01:9c:91:e8:bc:a9:
c1:a0:29:c7:d5:00:07:73:b0:fc:aa:5e:1a:db:7b:f6:b5:55:
1b:81:1c:9a:ff:38:8f:f3:35:10:6f:b9:28:d1:f8:89:be:e5:
5c:87:0d:9b:8d:fb:eb:4a:35:ed:e2:60:de:19:6e:e2:be:a7:
34:5e:9f:80:b1:98:fd:4d:ec:98:50:04:c4:04:58:9b:65:d6:
97:d2:c1:a9:6d:1f:0a:4d:39:c2:b6:6c:1a:9d:4f:12:d4:14:
43:2f:1d:4b:d4:1c:8d:33:b0:cb:0f:57:49:54:2c:6f:ab:17:
7c:3c:ec:c5:c6:00:4f:94:9d:9d:50:08:2f:7b:20:54:cc:22:
95:ec:d8:0f:ba:fe:45:62:ed:f3:3b:53:df:55:68:cd:63:c9:
c4:5f:c3:28:54:34:bf:fd:16:38:f4:0b:aa:26:e3:eb:1d:14:
2a:8c:ba:45:3a:5d:cc:03:e8:98:11:4a:ed:78:d1:da:97:ab:
79:4f:c7:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:23:17 2025 by rpki-client