Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
File: YIYxT4djXnk7wuPbvtZkBbisZ3E.mft (raw, json)
Hash identifier: ycysE0UufJl0OMtwu4c+qgrnIC44VYNdkNB6TRe9tCU=
Subject key identifier: D8:77:76:BC:71:75:DC:0E:5D:E9:D8:F5:41:4A:1B:B9:35:B5:BF:98
Authority key identifier: 60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
Certificate issuer: /CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Certificate serial: 019590AB5E3832058E35EB46187E1ACC3C89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
Manifest number: 1497
Signing time: Thu 13 Mar 2025 18:01:44 +0000
Manifest this update: Thu 13 Mar 2025 18:01:44 +0000
Manifest next update: Fri 14 Mar 2025 18:01:44 +0000
Files and hashes: 1: YIYxT4djXnk7wuPbvtZkBbisZ3E.crl (hash: lXq8kqPf0V1FhtxxfN9VPAeCGIbEPlJ6N618MFMJbyQ=)
2: ul5EPC9Jg-xhzDe3-EnpTxgh7Dw.roa (hash: pDodgoORM1hTtwe+JSl0g3mWRdcfDqaXlT1wiKFyqck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:ab:5e:38:32:05:8e:35:eb:46:18:7e:1a:cc:3c:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Validity
Not Before: Mar 13 18:01:44 2025 GMT
Not After : Mar 14 18:01:44 2025 GMT
Subject: CN=d87776bc7175dc0e5de9d8f5414a1bb935b5bf98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fc:e4:31:02:35:da:b8:c5:bd:f3:40:25:55:
7f:63:46:74:02:10:bd:d9:ae:11:7a:97:94:7c:7f:
8a:14:69:03:37:16:5d:90:10:ad:74:38:da:1a:b8:
12:39:44:bb:71:6d:1a:47:5e:b7:47:12:72:27:e2:
ed:99:71:69:c8:2f:cc:75:cb:9a:f2:9a:f8:72:89:
80:2a:a2:62:b4:46:fd:33:f7:86:bc:47:0b:43:21:
70:6c:3a:2e:84:de:df:ba:e4:5e:c5:7a:eb:df:7e:
cf:6a:52:43:11:02:63:fb:30:0c:e6:47:27:6e:88:
6c:1d:a1:73:40:92:03:76:df:9c:31:df:23:f4:c9:
02:ab:8c:18:84:48:e4:53:c8:60:5b:28:f1:17:db:
5a:ca:15:ab:4a:a0:1f:4d:54:87:67:ca:f5:f7:7b:
d1:3d:82:d4:16:4c:56:4f:31:d0:89:58:d6:6b:47:
1b:da:63:8b:9d:40:6c:33:fd:df:22:f3:3f:bf:39:
48:6a:99:54:4f:5e:6b:bb:bb:2f:83:34:5a:00:89:
06:ca:5f:60:b9:18:54:f6:c5:21:0c:43:c7:d5:2c:
b3:99:41:77:3e:1d:17:60:68:27:26:41:c3:a2:86:
1b:e4:3a:7d:64:b6:72:41:4e:e8:ba:eb:fa:4f:d6:
b4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:77:76:BC:71:75:DC:0E:5D:E9:D8:F5:41:4A:1B:B9:35:B5:BF:98
X509v3 Authority Key Identifier:
keyid:60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:a4:76:61:04:11:09:48:1e:9f:c5:96:fe:43:1d:d3:b5:94:
bc:4f:7e:bd:3a:84:90:c2:4a:87:b3:f3:00:06:4f:64:29:77:
96:47:81:17:78:4c:50:d9:86:2c:a5:18:a0:2d:7a:41:53:bd:
af:5e:2a:65:ef:06:b8:27:4b:86:3a:02:d6:15:21:36:b4:b8:
22:19:b3:52:b8:2e:7b:5f:26:ea:86:0a:cf:b9:61:30:67:e2:
7b:b8:0b:fc:91:d6:05:f0:1c:42:cc:31:ad:99:4b:33:be:30:
a5:e5:d5:ad:26:5c:f3:d6:e2:cf:6c:06:39:33:f2:69:b0:1e:
d0:d3:90:1c:b6:75:d7:8f:ca:ae:62:5d:59:40:69:b8:32:f5:
58:69:97:29:99:66:00:f8:59:63:53:67:8a:b4:d3:51:f6:42:
ce:72:aa:42:db:95:78:bd:6f:9d:e2:b8:be:4c:18:53:97:6e:
1c:1e:18:97:d4:31:e7:04:13:3a:8c:18:ef:69:3b:6c:60:14:
63:10:ff:5e:62:35:df:05:ba:7d:0d:dc:3d:2c:a7:f4:84:b3:
95:d9:f3:0a:c3:b4:6e:1f:71:96:bb:f0:5c:a0:6e:ec:e7:a7:
72:ad:67:ac:48:5e:24:fd:d8:54:c3:f6:ab:e1:12:f5:0c:ff:
0a:22:68:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:18:30 2025 by rpki-client