Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
File: YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft (raw, json)
Hash identifier: BU9KKVbSyPF6AfS1cK5zfLRZNNTi0I+btgPiRhZwqak=
Subject key identifier: 16:75:48:B7:EC:02:42:4E:77:03:E6:5F:3F:EB:E0:DA:C0:5F:66:25
Authority key identifier: 60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
Certificate issuer: /CN=60f31d820c32400dec0c60496178994d57752acc
Certificate serial: 01963E0C2BD94FEF0F5B65B4B0E3B8116274
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
Manifest number: 14EE
Signing time: Wed 16 Apr 2025 10:01:47 +0000
Manifest this update: Wed 16 Apr 2025 10:01:47 +0000
Manifest next update: Thu 17 Apr 2025 10:01:47 +0000
Files and hashes: 1: YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl (hash: q8o58n4ZB+G2B/tOdfMC/gST+fhBPM6eLXCB7INMnIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 10:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:0c:2b:d9:4f:ef:0f:5b:65:b4:b0:e3:b8:11:62:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f31d820c32400dec0c60496178994d57752acc
Validity
Not Before: Apr 16 10:01:47 2025 GMT
Not After : Apr 17 10:01:47 2025 GMT
Subject: CN=167548b7ec02424e7703e65f3febe0dac05f6625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f4:c8:76:e7:c1:af:e3:a0:94:95:73:1e:77:
82:78:fe:15:60:2c:7a:d8:4a:46:9a:fd:9f:d2:d4:
0f:58:ae:95:7a:4d:74:67:55:2a:c5:c4:98:83:dc:
d0:1b:b8:eb:2e:2f:02:2e:ad:81:b4:c9:06:aa:64:
1b:a6:f8:d8:6b:15:86:33:00:ed:7f:ef:cf:c5:4f:
d7:6f:a6:e5:9e:ce:15:b2:6e:60:22:3e:b2:9f:3f:
43:f3:1a:24:32:a7:f4:40:f9:e2:74:84:c7:db:dc:
75:19:01:fe:fd:f4:23:e3:7a:74:fe:14:4a:19:19:
cb:36:f7:49:10:5c:21:cc:fc:f9:70:f4:34:d5:8f:
3c:d8:67:2b:65:74:af:d8:4c:84:96:96:b9:2d:eb:
a9:fc:c8:da:21:88:2d:00:e9:9a:2e:be:b9:be:b1:
25:54:4a:4f:78:0f:27:1a:69:be:41:30:18:7c:4b:
13:07:7c:a9:1c:8a:3d:e8:d8:db:98:65:91:ad:39:
db:21:1d:fd:0f:bc:3f:c0:23:f5:dd:c5:cf:5a:04:
62:68:32:a1:58:29:e6:fb:fc:1d:16:45:59:12:a1:
7a:a1:39:28:8a:55:65:38:c8:f0:ab:49:d1:5d:9e:
56:e3:c3:94:82:e5:92:e8:90:24:de:76:b9:3b:8b:
a1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:75:48:B7:EC:02:42:4E:77:03:E6:5F:3F:EB:E0:DA:C0:5F:66:25
X509v3 Authority Key Identifier:
keyid:60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:d4:e9:46:1f:e8:2e:ec:89:13:4e:b5:f5:27:22:99:41:17:
81:97:46:7d:12:8d:9d:29:5b:d4:54:f0:67:77:dd:66:43:d2:
31:3e:49:d8:4d:f0:77:41:b0:cb:1c:d0:8b:cd:ae:c0:3a:d8:
c2:f3:7e:2a:05:99:b2:1d:e3:34:61:47:24:cb:08:a5:ea:4a:
22:dc:e1:83:dd:89:32:a9:67:af:3c:4d:80:92:85:53:a1:ac:
23:5d:a3:fa:48:86:f5:b1:01:56:a1:ad:ac:99:4f:87:35:86:
9c:94:6a:2c:f5:79:3a:b3:9f:49:c7:69:6c:52:75:6d:ad:13:
44:b9:47:72:e4:79:42:38:b9:9d:58:75:d9:32:50:a2:dd:99:
f1:d1:41:44:bf:03:12:11:ae:07:26:e2:32:ef:db:41:c7:50:
5f:5b:08:b0:96:54:9a:01:b3:db:5f:c1:10:1c:4a:9f:38:9a:
2f:aa:5e:e2:6f:a5:99:6b:de:5e:4f:34:57:e0:a2:54:d8:2d:
55:e2:22:3f:5f:a3:f1:1e:11:29:29:14:a9:c9:dd:76:d5:49:
4e:14:bc:59:07:7a:ab:c3:9c:6f:1b:32:16:51:2b:da:b8:d5:
0f:49:5f:d8:24:98:f4:26:14:22:6f:fa:99:06:31:3a:49:b8:
cc:8c:1a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 14:37:22 2025 by rpki-client