Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft
File: YWFHDTm-S6LdXfj6R7FjlieOZwo.mft (raw, json)
Hash identifier: 5WseRV28C7fqXtruAABl1oW2kOXbIS1QSwyuPHRkrg4=
Subject key identifier: A3:7D:DE:D3:10:BE:56:DF:75:88:94:7E:B0:FF:A2:00:0D:74:0E:1D
Authority key identifier: 61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
Certificate issuer: /CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Certificate serial: 0196556E755C4EEDF72D6C0EE14758D4EC49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft
Manifest number: 10AF
Signing time: Sun 20 Apr 2025 23:00:24 +0000
Manifest this update: Sun 20 Apr 2025 23:00:24 +0000
Manifest next update: Mon 21 Apr 2025 23:00:24 +0000
Files and hashes: 1: AbbCpXYiPra6RxhQTvg6tXGKv2M.roa (hash: FNfTwP/KDnV+ro4Bwjh1vRofBv3ZvkWsRE+40NBNKuk=)
2: FGboOzE5w8Avx6zvXiGJurlcXzU.roa (hash: ME54k9XxSNDAp5P0H67LsrOuZ6Ebe7/DSYtgtZypMoY=)
3: W1GVGEMQmJZkj465u10DUFmM0KI.roa (hash: SvcIJss6manfJOWH/uw6Tbf8OZqbPtgZ1EqIPOzfeqk=)
4: Wbf3TpGPW6_mWaG66XxtMUTmb5k.roa (hash: Kx6Oc/JjYSTEsN+RCZ0T24iZupA82iqVacFfzuICYqY=)
5: YWFHDTm-S6LdXfj6R7FjlieOZwo.crl (hash: wvKiUbppYVDx7L7M112ySgJjPWqQA4a3JBda8a7cKNI=)
6: hqDxB-Ir5z3Y_G6a9rOSto5ZH88.roa (hash: 2802mZRHrPPS6iUejTLOubgUc+cQnwe3PYotooKVAJk=)
7: mgBEW9fLd9B30lim7JhebaWqLyY.roa (hash: big/pWPQvuLyweD/jE8UZEB5DjVYIyMIrt8cymTv+Sk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:75:5c:4e:ed:f7:2d:6c:0e:e1:47:58:d4:ec:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Validity
Not Before: Apr 20 23:00:24 2025 GMT
Not After : Apr 21 23:00:24 2025 GMT
Subject: CN=a37dded310be56df7588947eb0ffa2000d740e1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:52:5c:8d:bd:7a:7d:ba:43:f3:b2:ea:28:b4:
a0:4b:96:c2:bb:bb:72:8c:5f:03:e1:ac:da:aa:46:
a3:99:39:ac:e3:73:33:61:f1:27:3f:e4:0b:eb:fd:
18:36:d3:a6:37:6b:91:09:af:03:c4:30:97:2b:7a:
5b:70:1a:b4:00:8f:89:db:4a:21:89:e0:86:35:3c:
4c:1b:8d:eb:42:bd:d0:f6:2c:b3:3f:ac:c9:ac:a1:
61:d9:ed:8f:93:97:07:be:e2:74:50:07:f0:de:9b:
c9:26:a9:a6:fe:c3:fe:77:c8:1c:85:b2:b2:13:26:
57:2c:9c:0e:48:35:df:e5:d7:60:a7:a2:5b:8a:c4:
81:4e:4f:5c:7c:b6:09:68:27:d2:78:21:48:ee:72:
bb:18:cb:4d:35:5f:c1:bd:c7:a1:71:20:a2:74:d9:
ff:82:d4:f1:04:b4:80:63:65:94:fb:7f:e8:3c:93:
09:68:f5:06:64:fd:2e:42:18:9e:83:94:40:74:78:
e2:bf:d9:8c:73:46:36:15:0f:a4:81:11:39:37:57:
bb:c2:de:e7:5c:a7:aa:22:ee:01:2d:ce:5f:c8:9e:
f0:dd:42:23:4f:1b:19:3b:de:63:44:a7:4b:2c:26:
8a:f7:56:75:ee:4c:78:45:8e:06:2c:d9:09:3e:95:
72:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:7D:DE:D3:10:BE:56:DF:75:88:94:7E:B0:FF:A2:00:0D:74:0E:1D
X509v3 Authority Key Identifier:
keyid:61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:90:04:33:fa:bf:34:a0:b7:1c:ba:0b:6d:cf:90:39:e0:c1:
b3:a5:df:e5:65:cb:d6:57:57:0c:68:8f:d9:2d:58:f7:5e:6c:
df:55:1d:ae:86:25:9a:cd:8a:25:d2:2c:86:f5:b4:4a:77:44:
2f:3c:db:74:cb:5a:17:2e:34:cb:f7:bb:77:1d:93:90:de:fd:
37:a0:b0:9c:8c:8e:28:32:0a:59:79:a2:4b:1e:0d:4e:3b:01:
26:d5:3a:48:7e:26:94:ca:59:26:2f:c0:c3:f3:64:f5:3b:88:
b5:4f:79:12:7c:56:80:e5:c1:31:af:0c:ca:ad:ea:78:f7:bc:
e4:69:8c:8d:42:db:ff:cf:0f:97:67:a2:bb:f4:fd:e1:28:42:
7a:c6:fb:8b:d3:56:a2:88:73:8f:5c:ee:ba:b9:09:28:2e:98:
6c:78:d2:d6:bf:d9:b7:74:24:d9:45:c3:40:3c:bb:cf:a0:95:
01:9f:20:d3:9c:1b:4f:2c:c7:71:10:9a:dd:47:3b:5d:c4:a4:
e7:36:8e:2c:75:32:a5:d6:fd:72:35:2d:1f:b3:32:5d:fb:36:
03:fc:23:a3:29:ac:05:08:3a:07:8e:b8:32:c6:c4:a1:d8:8f:
f1:41:a9:bf:aa:f4:aa:93:51:54:65:21:d2:6d:3a:8c:c6:bf:
f1:8b:7d:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:35:49 2025 by rpki-client