Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: dpqs8GwWns3roRDBBqVwmQ2MOtJFAWo24ztqZO4Gpss=
Subject key identifier: D8:CB:A9:8C:21:AB:B5:79:85:98:CA:36:DE:EC:E6:1B:D8:F2:F4:8A
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019652A4BDCEF775492AAAE09FFD4E87A952
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 10:00:50 +0000
Manifest this update: Sun 20 Apr 2025 10:00:50 +0000
Manifest next update: Mon 21 Apr 2025 10:00:50 +0000
Files and hashes: 1: NA5mgzoDK6jbbKh48XeliWtbDYM.roa (hash: 9nIV3wU01lTdftDhSQVjEb+D2h3DXok24aEDQGNAM3o=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: Pou/t6wqqSaaTVd1NY8xuXywCmiSOEAqEilLSuGDziQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:bd:ce:f7:75:49:2a:aa:e0:9f:fd:4e:87:a9:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Apr 20 10:00:50 2025 GMT
Not After : Apr 21 10:00:50 2025 GMT
Subject: CN=d8cba98c21abb5798598ca36deece61bd8f2f48a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3b:43:1a:c7:5f:e2:95:02:ac:71:42:ac:3a:
2b:bb:79:4f:36:55:ad:ca:fc:0c:43:01:2d:25:d3:
49:98:37:62:43:3d:3d:4a:6d:27:3b:c8:ce:9c:48:
0c:90:23:f7:91:8b:57:da:a3:56:0b:c9:2e:fa:25:
53:cd:33:07:95:ed:1a:a4:23:26:bb:e9:dc:0f:3c:
62:a6:ba:7c:7e:79:f2:49:98:56:7e:fa:51:f4:74:
f4:53:cf:05:e1:8d:3a:f6:60:d1:8f:aa:b6:1f:ea:
16:1d:4c:f2:09:b1:f5:c1:d7:cd:d7:4e:d3:36:dd:
92:9b:12:0f:61:b7:ab:63:f6:08:12:bd:23:2c:94:
c4:f5:45:c4:a6:b4:8f:5e:bf:0e:b3:5c:90:53:84:
84:c4:b6:90:76:92:eb:fe:45:45:44:a9:b2:49:50:
61:27:7b:b6:10:7f:8c:65:8c:7b:95:a1:c3:45:a1:
df:7c:a7:a6:76:67:a1:6e:54:82:d8:3f:74:34:55:
38:91:b7:5b:24:af:4a:85:7b:53:ca:0e:46:b7:56:
ff:11:03:b8:de:7e:3d:00:f6:45:d7:43:9c:1d:6d:
9a:4e:31:44:2a:86:c1:8f:2f:20:6c:b0:e1:64:d4:
a5:a0:89:34:ae:a8:28:e7:b7:6e:d9:24:f7:47:77:
8d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:CB:A9:8C:21:AB:B5:79:85:98:CA:36:DE:EC:E6:1B:D8:F2:F4:8A
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:a4:de:0a:c7:2a:ea:43:92:39:d2:01:d3:32:17:f0:42:81:
4b:8a:33:d4:48:08:00:7d:a3:48:f6:3e:3e:3f:b0:1d:99:76:
80:36:fb:0b:a4:2a:06:03:30:1a:e3:88:5a:56:c7:4d:ff:f4:
c6:bc:d1:28:0d:47:44:0d:c3:47:bf:f3:a5:ca:70:ca:15:45:
0d:41:de:b8:e1:40:ea:8b:8e:cb:51:12:75:24:38:5f:27:44:
5e:2d:0b:d4:aa:6d:b8:48:92:2e:20:99:46:bc:35:80:d2:a6:
7f:b4:4b:b1:c9:7f:44:04:eb:df:35:2e:51:4f:8f:bb:4e:56:
a4:8c:f5:cf:30:b1:97:3e:1a:ce:0c:da:06:39:1e:b1:de:6e:
c0:65:4c:49:78:f8:64:84:e2:c8:8b:2d:28:ba:77:2f:d2:82:
60:86:89:1a:9e:79:5a:73:44:17:ab:62:61:d2:26:98:be:a3:
36:25:e4:f8:b6:60:71:55:1c:36:8b:41:f9:c0:49:fe:29:35:
59:66:5d:61:46:b6:f3:c6:a6:84:d4:fc:5e:04:64:ca:83:56:
61:af:71:5e:fa:1c:a9:06:3c:ff:d8:f5:b8:dd:fe:2f:18:f3:
c8:f1:67:e7:5a:19:be:12:69:99:68:b8:90:66:85:c3:12:ad:
f1:0d:e5:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:53:53 2025 by rpki-client