Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json)
Hash identifier: qQ6c+L9+6adKPgAUwLCKYdDYqFvJSSGIghPn5SB81hk=
Subject key identifier: 4B:68:FA:C8:05:65:75:FC:A0:BE:83:57:AE:2C:A3:EA:2A:B0:E6:33
Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c
Certificate serial: 019657269C6297E00E9906A0DC2F18113DE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
Manifest number: 0F8D
Signing time: Mon 21 Apr 2025 07:01:10 +0000
Manifest this update: Mon 21 Apr 2025 07:01:10 +0000
Manifest next update: Tue 22 Apr 2025 07:01:10 +0000
Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: uYyDo+mB1KHsnTkDUUo6dOPizAH9uTZegSHDxSIJKkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:9c:62:97:e0:0e:99:06:a0:dc:2f:18:11:3d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6117d6158043150b0ad224a0648df0185706019c
Validity
Not Before: Apr 21 07:01:10 2025 GMT
Not After : Apr 22 07:01:10 2025 GMT
Subject: CN=4b68fac8056575fca0be8357ae2ca3ea2ab0e633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:65:36:37:80:56:c9:8a:6d:59:0b:ba:2d:10:
64:db:45:08:36:92:49:f2:ea:e9:b7:a4:0d:dc:28:
cd:96:f0:71:2e:70:d4:b1:42:7d:4e:01:d4:d5:0d:
61:ac:86:f0:8f:65:ae:12:2a:31:c7:86:ca:cd:bf:
51:7a:d7:f3:19:4b:80:b4:5a:d1:ba:33:8b:5e:a4:
d4:0d:a0:f5:98:d7:66:cb:87:01:10:e5:74:ae:2d:
45:d9:8d:65:0a:3e:ed:ba:59:90:46:fd:87:25:0d:
f3:6f:d8:d1:19:54:80:a4:41:a5:f2:54:1f:b3:8a:
c4:9f:5f:00:01:26:4c:19:83:e0:fd:a1:43:98:5b:
1a:55:71:ac:00:67:da:9d:c0:e3:cc:ce:99:d3:5a:
34:5f:16:46:55:84:fd:30:30:69:24:fb:50:e1:3a:
95:96:d0:f6:d7:bf:80:6e:e0:eb:bc:c0:90:69:dd:
4b:63:c9:5e:20:c0:8f:16:85:b5:17:e7:03:da:10:
56:b6:4a:18:43:f7:47:1a:75:f4:64:2a:6a:30:0e:
59:53:b2:9b:5f:cd:b0:83:71:7c:95:05:97:fc:22:
45:35:45:c6:43:1d:7f:53:cf:a0:41:74:99:d2:62:
5d:fd:39:43:69:18:0a:97:30:25:4d:de:75:93:21:
f1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:68:FA:C8:05:65:75:FC:A0:BE:83:57:AE:2C:A3:EA:2A:B0:E6:33
X509v3 Authority Key Identifier:
keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:46:cf:ee:b6:f6:d5:63:b4:fe:b5:9e:54:f1:45:0c:23:fa:
5b:a4:57:6a:94:f6:15:17:5d:df:e3:4d:2f:aa:2a:9d:65:50:
50:23:c8:01:c6:af:62:13:93:d3:22:60:6b:b9:a5:38:f5:b3:
f8:9c:72:d7:37:0f:71:79:ac:9e:bd:6f:a9:c9:f1:be:03:04:
ca:76:28:d4:7e:4d:00:52:81:51:69:13:56:f1:c6:13:bf:27:
6d:56:c3:56:5a:a7:27:47:59:c8:53:0d:25:fc:b1:7e:fd:1b:
ce:e6:10:62:b9:fe:5c:1d:c1:54:41:50:43:a8:fb:15:1b:7a:
09:5f:e3:b9:26:fc:b0:5c:bd:1f:12:a1:83:ec:b7:1e:de:d0:
6f:e6:ea:cd:bb:f1:01:2f:3d:3b:b6:c0:83:e3:53:ef:c2:73:
3c:dc:15:39:eb:be:5f:4a:8c:b7:f7:18:d1:ef:f6:0d:40:80:
12:bf:36:c7:b4:d3:e6:65:d9:f8:83:d7:e0:6b:21:a6:53:0e:
74:a3:14:1f:0f:dd:37:95:a3:fc:30:34:f6:86:ea:ba:55:39:
cd:63:a5:9b:b6:e8:ec:6f:50:25:0b:75:7f:0d:d9:a7:da:6b:
c9:40:f9:80:7b:21:81:af:c6:fe:fc:87:e4:d9:a8:0f:3d:6a:
ec:51:9a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 11:34:16 2025 by rpki-client