Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
File: YPa89uKxCboqFKc7l1rZVEhLS6U.mft (raw, json)
Hash identifier: 1/vLpNZJWc25ebhdg6w1EaDouSRLUPCdDCvSStEs2IA=
Subject key identifier: A8:32:1F:83:88:A6:03:93:1D:8B:F7:A6:D2:BA:DA:97:4C:B1:11:6C
Authority key identifier: 60:F6:BC:F6:E2:B1:09:BA:2A:14:A7:3B:97:5A:D9:54:48:4B:4B:A5
Certificate issuer: /CN=60f6bcf6e2b109ba2a14a73b975ad954484b4ba5
Certificate serial: 01964A463B1D4A1364FA06B56323D7DDF11B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
Manifest number: 097A
Signing time: Fri 18 Apr 2025 19:00:38 +0000
Manifest this update: Fri 18 Apr 2025 19:00:38 +0000
Manifest next update: Sat 19 Apr 2025 19:00:38 +0000
Files and hashes: 1: YPa89uKxCboqFKc7l1rZVEhLS6U.crl (hash: DvP9RqELWS7wYXz/YTy2O0iCWVCKyLO00ar9IC5Vhdg=)
2: oNp64lcp-PwrYsQaBw1j30tzyNw.roa (hash: FzeHCqPb/tC2Vmdnn3r7gfGFiDclam5dSTVPZrLAWO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:46:3b:1d:4a:13:64:fa:06:b5:63:23:d7:dd:f1:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f6bcf6e2b109ba2a14a73b975ad954484b4ba5
Validity
Not Before: Apr 18 19:00:38 2025 GMT
Not After : Apr 19 19:00:38 2025 GMT
Subject: CN=a8321f8388a603931d8bf7a6d2bada974cb1116c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ed:8d:6d:97:ff:aa:ff:4c:4a:d4:a3:72:00:
d3:3b:b2:f6:1f:ff:8e:15:ed:a9:0b:b1:bb:e1:dc:
5c:f5:ae:29:7a:ca:26:dc:ee:2b:de:1d:2a:4a:7b:
98:46:0e:d3:cf:28:48:b3:0f:6a:e8:a6:3e:be:a7:
10:59:75:11:43:fc:64:a6:a2:cf:41:f2:db:8e:34:
59:a3:8e:58:ea:d4:28:dc:89:c1:14:11:56:ca:27:
c4:0f:41:f2:85:71:2f:0a:d6:ce:38:64:e5:1c:4f:
8c:38:d0:80:cd:b5:15:41:4f:10:22:34:73:7b:da:
3f:86:e3:a8:68:eb:cc:8a:57:b2:0a:0a:b7:c0:76:
a3:27:5f:36:75:02:1e:20:2c:4f:fb:51:83:0b:a7:
e1:a5:97:be:af:ef:bf:21:4c:9e:39:c1:f2:9c:1b:
c8:71:40:96:f5:cd:78:11:9b:a5:0b:8e:10:aa:d1:
d3:3b:6a:0e:7a:bf:1e:9a:28:a7:f0:e6:33:9e:2b:
30:40:a6:68:7c:c5:69:10:c3:2c:ee:2e:3f:c5:5a:
c5:c7:b5:61:96:a2:fd:3e:3d:70:72:d8:71:91:ae:
1e:b5:b4:ca:07:a7:0f:00:43:83:ad:4d:0e:30:c6:
9b:a6:6f:4f:9f:30:7d:36:7d:15:a9:86:f8:e5:64:
84:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:32:1F:83:88:A6:03:93:1D:8B:F7:A6:D2:BA:DA:97:4C:B1:11:6C
X509v3 Authority Key Identifier:
keyid:60:F6:BC:F6:E2:B1:09:BA:2A:14:A7:3B:97:5A:D9:54:48:4B:4B:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:28:70:5f:2d:a5:13:cc:2d:22:31:29:26:f4:9a:08:89:77:
f7:04:40:ef:e2:89:ec:32:f9:55:07:0d:c3:17:ee:3a:1a:78:
4c:b4:0d:62:15:25:25:eb:52:dc:83:e6:46:3c:d6:87:a0:07:
bd:cc:42:8c:b1:ab:24:1c:d0:a8:3a:7d:1a:60:7c:4b:30:2a:
05:db:c7:0a:6e:6a:66:cf:3a:ee:b2:e4:e8:d1:81:81:d8:0b:
5b:69:7d:0a:82:0a:11:eb:45:f6:46:11:e0:fe:7f:76:e8:ba:
bb:f7:17:4b:d8:65:25:db:07:5a:ce:53:5a:1a:6d:d7:c7:11:
8f:15:ec:9b:2e:ef:2b:44:9a:9a:89:f4:3a:55:e0:7a:0d:8d:
02:57:4d:ea:02:ec:3a:56:1a:f4:6f:90:e1:9b:39:b8:9b:db:
9c:8b:fd:eb:17:48:dd:5b:a7:99:29:d4:50:7e:fb:05:ef:a4:
9a:66:c7:19:fa:4d:c9:38:51:68:2f:bc:29:8b:28:39:62:89:
02:de:b8:0c:ec:8d:10:1b:49:2f:0a:3e:e9:25:37:75:b7:24:
56:a7:42:e8:9f:49:32:5d:11:94:24:f7:ab:27:40:2d:c1:6c:
68:d8:4d:fb:d7:30:71:3f:f8:7a:ed:a4:f7:34:f2:be:c5:91:
05:65:5c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:13:17 2025 by rpki-client