Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: 1SC58G5yI0KZYTnIiLVBBQFPPWXT/NORDbIZMrq+p5s=
Subject key identifier: 2F:49:FF:13:1B:F6:4A:33:1A:75:B1:33:97:B4:DC:7A:00:43:42:37
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 0196523654F059FA4ABE10EDF2733DF2FA91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 07A1
Signing time: Sun 20 Apr 2025 08:00:14 +0000
Manifest this update: Sun 20 Apr 2025 08:00:14 +0000
Manifest next update: Mon 21 Apr 2025 08:00:14 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: +IU/sDYTtfYgFmo1ndflw85teb0LgMhbS1yI+rz6p4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:54:f0:59:fa:4a:be:10:ed:f2:73:3d:f2:fa:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Apr 20 08:00:14 2025 GMT
Not After : Apr 21 08:00:14 2025 GMT
Subject: CN=2f49ff131bf64a331a75b13397b4dc7a00434237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a4:e9:3f:df:21:12:64:ae:b8:1b:47:e8:7b:
85:e7:8d:af:cf:07:b7:39:10:d4:40:7f:26:31:b7:
be:f1:08:88:fd:72:3d:cb:2a:c2:7f:90:d9:3d:83:
0a:57:38:cb:f6:9c:bb:f5:81:b4:71:c7:91:39:80:
be:8f:54:d2:a9:6b:97:d4:3e:d9:1b:f2:45:2e:19:
72:1f:b9:d2:6c:eb:5f:e3:95:9f:62:1f:d0:ce:6a:
84:34:f9:13:3a:00:c5:0a:42:33:36:0f:f0:31:8e:
b1:99:d6:e9:a1:24:16:93:5e:ed:b5:a2:d5:60:fe:
3a:b4:fc:be:22:31:53:a5:b5:1f:77:13:3d:d4:c3:
d1:ba:3d:13:56:d0:04:94:89:a8:a2:30:61:34:00:
52:d7:f7:c7:cc:4a:2d:d1:44:0b:20:3a:7c:98:f1:
c2:9a:d9:6c:6f:66:30:ee:fc:c6:87:0c:9e:3a:03:
4b:4c:d5:f0:4b:1f:fb:6f:31:a6:c4:82:b8:44:22:
b6:35:b0:a6:b2:8c:4e:8d:ee:ec:36:7e:47:49:ed:
6b:ab:c1:71:7d:5b:99:fb:18:57:a6:94:c5:80:88:
16:74:c7:28:be:2a:af:9e:fc:79:28:6b:8e:2a:5f:
04:78:7d:f9:26:3d:84:2f:65:e7:a8:0d:3a:a0:f3:
26:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:49:FF:13:1B:F6:4A:33:1A:75:B1:33:97:B4:DC:7A:00:43:42:37
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:55:94:a8:e7:70:12:89:54:62:58:70:6f:64:f6:2d:8f:e1:
44:c6:6f:56:8c:9f:20:8d:32:97:f0:cb:52:b7:af:20:b4:db:
7c:88:50:d8:86:a2:6d:2d:be:dd:1f:be:0e:29:f5:0a:2a:a0:
d6:5c:f4:a8:3b:c2:bc:60:81:a8:4a:5e:79:3c:cf:29:c9:de:
6f:65:3c:ab:d4:a0:99:86:44:04:68:84:5f:f5:6c:64:3a:c3:
3f:af:2d:8f:75:4d:37:72:d6:21:ec:d7:be:8c:87:12:ce:f0:
9b:b6:28:8e:08:d8:cd:42:c9:85:c9:3d:03:ad:80:bb:7f:76:
1e:85:78:b2:9a:40:4a:89:1b:12:95:f5:a0:8f:00:ab:3b:d0:
32:7f:b3:84:4d:4b:5e:aa:a3:9c:16:5b:a2:01:ad:bf:7a:5c:
b6:ef:48:49:1e:67:11:30:4d:21:f8:f1:76:18:4c:2a:16:cd:
0a:cb:a2:6a:12:ba:e6:2e:fd:83:4f:a3:c8:a3:91:74:b8:6a:
42:3c:e5:b0:ae:18:24:04:a9:db:8d:24:6b:2c:ad:7f:18:7b:
95:29:a6:25:33:70:68:2e:88:74:1e:54:91:3c:83:a2:8b:0d:
19:18:5b:bf:f4:c0:7f:8e:4b:f6:53:aa:c0:da:9c:03:bb:19:
8d:6d:af:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:18:04 2025 by rpki-client