Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
File: YFvAEwOQWABiCsJsFGixQfgHRRQ.mft (raw, json)
Hash identifier: T5cygf99gh82xGoGatjT5XZI9hXZ/g5Z9DMM6NHpXzQ=
Subject key identifier: 45:0B:B8:F6:27:CC:71:6B:8B:5E:97:7B:9B:65:CC:8F:6F:B5:55:27
Authority key identifier: 60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
Certificate issuer: /CN=605bc01303905800620ac26c1468b141f8074514
Certificate serial: 01964C3504CFEB89C17DEA667F9D58193171
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
Manifest number: 0BCF
Signing time: Sat 19 Apr 2025 04:01:04 +0000
Manifest this update: Sat 19 Apr 2025 04:01:04 +0000
Manifest next update: Sun 20 Apr 2025 04:01:04 +0000
Files and hashes: 1: 9c99e7OOCoSsqv05bamuZvrBRAg.roa (hash: gcQqAYS/2mIfyTda9lezITlbdeVA2P8mDvlHBkdo3p0=)
2: YFvAEwOQWABiCsJsFGixQfgHRRQ.crl (hash: R7iKQJ6giTEMyi3gCEgfLhasYtvJF3naeJ7PlQeiprc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:35:04:cf:eb:89:c1:7d:ea:66:7f:9d:58:19:31:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605bc01303905800620ac26c1468b141f8074514
Validity
Not Before: Apr 19 04:01:04 2025 GMT
Not After : Apr 20 04:01:04 2025 GMT
Subject: CN=450bb8f627cc716b8b5e977b9b65cc8f6fb55527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:43:cc:99:09:71:33:da:83:01:61:6b:48:7e:
59:c1:e9:d0:04:a2:52:ec:55:35:aa:81:7d:3b:91:
f4:c6:68:cc:12:56:2d:ed:aa:7c:7c:a0:ac:60:3d:
74:71:78:21:b4:3c:e4:85:93:dc:3c:ba:f9:84:2f:
54:35:63:ef:60:8c:19:4a:ba:18:8e:8b:75:5e:bc:
39:3e:91:c5:1f:eb:53:81:f4:26:9f:bb:08:37:80:
92:13:47:9b:50:e4:16:92:8e:d4:ad:a7:c3:1c:25:
54:fe:13:f0:60:fa:7d:02:25:9e:a8:b5:7e:b6:15:
b4:4b:34:5a:0c:18:07:b4:2c:df:17:6e:f9:34:22:
ec:b8:8f:be:e1:10:db:55:3a:56:8f:48:dd:63:27:
67:e7:85:f9:e6:b4:cf:d4:26:57:59:76:fd:61:18:
80:8d:ec:fe:9a:29:49:06:18:54:02:2c:6e:63:ef:
13:1d:3f:4a:e1:78:05:24:ae:cd:e1:74:8b:2d:34:
85:14:e2:77:88:ca:be:fa:f9:85:d6:ac:55:61:47:
6b:18:74:c5:6b:1c:92:90:a4:a6:48:63:27:0e:4f:
36:6e:e7:19:bf:80:1a:9f:12:e6:06:75:5b:66:b3:
b4:7a:b8:8e:ad:0a:15:ae:80:81:d6:9c:b6:ea:e6:
d9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:0B:B8:F6:27:CC:71:6B:8B:5E:97:7B:9B:65:CC:8F:6F:B5:55:27
X509v3 Authority Key Identifier:
keyid:60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:67:1f:ae:02:90:2d:f9:b9:8f:2d:ec:02:4a:56:40:6c:63:
b4:22:b0:c8:3b:01:fa:1d:20:f1:e9:e1:e3:1f:39:43:f3:26:
8e:0d:04:c1:68:49:a2:11:ad:02:51:d2:e1:3c:19:dd:40:74:
71:bb:2d:4b:60:78:cc:f8:85:8c:86:e7:cb:33:a9:ba:27:b5:
fa:d6:12:3c:4e:19:25:e3:13:3e:36:2c:fe:fd:dd:65:dc:14:
84:79:fc:85:47:df:28:38:f6:8f:a9:26:50:9b:ac:26:52:47:
be:5f:50:98:0c:b9:68:65:88:67:5f:9f:fc:a0:1d:e2:04:29:
a8:ad:88:c2:84:19:6b:1f:4f:c8:11:55:e3:bc:f5:b5:57:8a:
8b:b1:64:ac:75:e9:af:bf:a0:06:80:24:c8:a5:37:bb:fd:b3:
02:f3:23:b7:e7:69:b7:e8:6e:ad:6c:e4:e0:b0:9e:c2:4d:20:
8c:50:13:fc:b0:4c:f2:fd:83:99:fd:2a:78:94:73:57:d3:48:
aa:47:fb:ed:c7:2c:86:8d:8b:38:b8:3b:6d:a3:79:cf:04:9f:
43:dd:56:c7:b1:39:99:71:2b:15:68:41:2a:53:da:3f:16:66:
e1:e1:d9:1f:b4:db:f6:dd:b6:75:75:18:5f:91:96:b1:47:39:
b1:f5:20:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:05:33 2025 by rpki-client