Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
File: YaXSF3WehhaW_HftmqY7lO2zvn0.mft (raw, json)
Hash identifier: VUnT/pGAyw5Tyil+JaFnVlmYlwtkDf7eb4bCQvvjK3Q=
Subject key identifier: FC:F1:8E:98:6C:8C:12:FB:4D:14:8C:B2:8F:2C:48:60:1F:2F:20:49
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 019655388346D11F6331E7B5C58DB7C361EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
Manifest number: 148E
Signing time: Sun 20 Apr 2025 22:01:28 +0000
Manifest this update: Sun 20 Apr 2025 22:01:28 +0000
Manifest next update: Mon 21 Apr 2025 22:01:28 +0000
Files and hashes: 1: 5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa (hash: Wdi/0+eUolZTOBljIE3hewam0WUu332lXIc8cs32Fgk=)
2: 925S4SchOi83vL3V68Y_AUuJSD8.roa (hash: 6EULq2ShinRvQFwY+uALe+ivLl2vWfr/F3fyELn3cug=)
3: PGmGsgYp4SpOgDQPzfkm2Kp84ms.roa (hash: QvQzg0nCw1e7QpH5gXcvQpoprtCI6UOH6zwCxDuFkv0=)
4: YaXSF3WehhaW_HftmqY7lO2zvn0.crl (hash: kefVCgp3D87ww6MfJgbsNowjYI0DWU8S6VCyY7VwSuw=)
5: z3s2kSvc4H2ywLCnLljgXCeMKHc.roa (hash: pgMrP+tE9sQxVvQRywnzdq3UOn28MH01XXGUWXVHask=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:83:46:d1:1f:63:31:e7:b5:c5:8d:b7:c3:61:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Apr 20 22:01:28 2025 GMT
Not After : Apr 21 22:01:28 2025 GMT
Subject: CN=fcf18e986c8c12fb4d148cb28f2c48601f2f2049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:98:ed:08:70:1f:10:9d:70:0f:3f:85:ca:68:
b9:d2:62:d2:10:c2:1f:cf:46:49:86:55:93:7a:d3:
84:fa:85:57:64:84:e3:8a:b4:73:41:36:01:20:97:
f0:b8:97:36:e2:20:76:83:33:f3:38:d8:4b:e1:e8:
0f:0a:72:a5:c4:ee:dc:27:37:ec:b6:3c:d4:99:f6:
09:52:28:2e:1d:aa:16:b5:de:7e:fe:db:21:25:fe:
0e:b1:a4:2b:ec:40:13:72:53:0e:f7:b4:77:c4:cb:
69:59:60:44:05:16:7d:5b:d2:92:52:b6:28:bb:ad:
8f:8d:ef:eb:21:c9:82:f8:cf:4f:dd:61:96:95:48:
d4:6a:12:1d:44:ae:e3:f4:d6:e2:b0:32:d8:88:1f:
60:8d:7a:be:01:9d:86:d4:c4:6e:50:1d:88:91:e0:
95:86:28:15:3b:a4:56:1c:b5:fe:1e:90:f5:7f:d4:
df:5d:21:10:95:b5:21:03:95:e4:23:91:db:cf:94:
cb:79:49:e6:d6:29:88:1b:56:58:87:62:27:85:a1:
41:5b:d6:fe:d7:7c:84:9e:ec:f5:fb:42:80:0e:cf:
90:9b:0e:06:cd:be:9a:c1:c2:1e:bc:4f:de:ac:cc:
88:58:a2:e1:bd:ca:51:f0:0e:c6:e1:99:c6:39:75:
9e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F1:8E:98:6C:8C:12:FB:4D:14:8C:B2:8F:2C:48:60:1F:2F:20:49
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:4a:63:16:ae:ac:d8:5b:a5:6f:fc:ef:ce:e3:39:a4:8b:6d:
55:39:eb:10:c0:a4:4f:7b:1c:35:b8:ec:d0:fc:df:21:f8:43:
2e:83:ad:d4:ab:3b:bb:36:b1:6d:6a:52:e5:ee:c0:b5:dc:ef:
96:48:0b:a5:f3:43:31:eb:d6:26:12:fd:63:18:a2:55:80:ab:
ec:9e:61:ca:99:3c:ed:cd:6e:e7:99:5e:c6:80:ff:17:07:1c:
d1:70:c0:59:00:16:6d:97:da:d7:41:57:7d:17:e9:2b:b6:1e:
ac:24:4a:66:77:5e:d2:ca:b7:26:80:44:28:ee:2a:d9:f2:3d:
e5:bb:66:27:0a:f3:04:d7:66:15:a9:9c:fc:d0:5b:cf:7e:0b:
7c:fb:fe:01:00:f5:a3:09:b3:0a:70:5d:ad:08:c7:e0:d3:c8:
08:6a:11:87:10:75:ca:8c:4d:a2:a7:d5:cb:38:c8:58:f7:0c:
09:0f:3b:ec:51:23:31:bb:d0:f6:21:f9:23:02:b1:59:73:e5:
d4:c5:5a:00:87:83:d7:6f:05:5c:7f:af:90:8f:67:af:d6:ae:
3b:38:0e:b1:8a:27:ff:83:98:de:55:45:89:57:72:02:2c:34:
56:23:8b:10:5f:60:a1:4d:72:47:cf:9b:bd:34:f3:f4:83:ca:
36:b7:ad:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:51:07 2025 by rpki-client