Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json)
Hash identifier: xkXP1IRAkQkCzo5achslemox+gLPsg2xai84N64v2rw=
Subject key identifier: C9:71:F0:D0:F2:BF:D0:8E:A6:A8:76:DC:E0:90:86:45:C9:65:D5:DC
Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Certificate serial: 01964D7DC7807FEB6A37D1C0D571F80319C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 10:00:10 +0000
Manifest this update: Sat 19 Apr 2025 10:00:10 +0000
Manifest next update: Sun 20 Apr 2025 10:00:10 +0000
Files and hashes: 1: FcPpw1IibzSy4BenkulclpDum4U.roa (hash: HSUDUncC0CCpqaUKBhWSJTD0GmSsEAzCocsfF6H1tqA=)
2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: h2lgIyZQLtZGyoTwEjX/aVmfV7ogSCdUHqO6EdM/QPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7d:c7:80:7f:eb:6a:37:d1:c0:d5:71:f8:03:19:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Validity
Not Before: Apr 19 10:00:10 2025 GMT
Not After : Apr 20 10:00:10 2025 GMT
Subject: CN=c971f0d0f2bfd08ea6a876dce0908645c965d5dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ea:4e:00:9e:21:fa:23:9a:15:0e:08:2e:c6:
c0:cb:18:38:e7:45:dc:fc:16:eb:fc:d4:1a:91:09:
02:f0:0f:07:eb:9b:e1:1a:41:ee:89:21:12:89:0e:
56:97:74:bf:15:c2:ea:48:d1:9a:04:13:f2:18:80:
87:3c:01:d4:85:f9:fd:f4:f7:0d:0a:46:05:9a:0f:
6c:c3:86:4c:02:3d:56:58:45:c9:ff:51:c4:48:4f:
0d:fc:8a:75:fa:22:d5:2e:eb:65:d6:36:6d:0b:9a:
7c:d0:0b:e4:68:5d:0f:72:cc:e4:3b:74:9d:66:73:
1a:ad:94:38:91:1a:0d:ea:46:f0:b4:08:a0:4f:81:
e1:21:3d:f3:88:f4:93:55:6c:66:1c:68:6a:e9:7d:
1a:c6:b3:9c:45:6f:49:70:10:25:cb:86:43:07:31:
54:17:5c:20:52:c0:8c:10:d4:44:a6:cc:4b:43:62:
35:89:19:28:b3:a1:24:0e:b1:fe:3a:7d:30:d9:6c:
ed:a5:6a:91:a0:b4:10:26:e5:7a:be:d5:a6:9c:45:
44:a0:2f:0a:22:fa:00:bd:0b:5c:e8:0c:68:22:50:
0e:c2:1d:b7:a6:06:e8:3a:e8:8e:37:5e:01:c2:ec:
57:6b:4e:23:6b:e2:e7:75:8b:d8:20:ff:0a:0e:74:
64:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:71:F0:D0:F2:BF:D0:8E:A6:A8:76:DC:E0:90:86:45:C9:65:D5:DC
X509v3 Authority Key Identifier:
keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:2d:45:8d:59:03:30:c9:a6:6a:1d:80:f1:fb:6a:f0:7e:86:
dd:42:60:76:45:64:f4:ef:d2:67:5d:9b:83:b4:6c:f5:a1:1f:
4d:1f:95:2b:6c:79:c0:46:7a:18:ac:14:ef:d4:be:a6:06:da:
ce:1a:71:66:5d:a0:78:1d:9d:92:70:d9:bb:ef:a4:ed:18:bf:
e3:9c:70:92:a3:aa:c6:80:67:3b:23:60:51:f2:7b:f3:7b:c1:
fa:fd:fb:73:9b:61:dc:82:92:fd:71:f3:4b:91:c0:9f:2e:35:
9f:0d:aa:ad:b9:d9:4a:cf:5e:45:5f:2e:d8:14:7b:cb:5c:52:
a9:9d:27:94:a7:f8:71:2e:0d:0f:69:37:49:34:d2:82:36:69:
38:3d:8d:26:98:6e:a8:d9:ac:3f:60:b6:4a:1e:7e:a3:7f:d0:
16:43:21:e9:fd:7f:4f:16:dc:ff:1d:20:e0:92:2c:bf:39:24:
b9:4a:36:3d:6d:ee:d6:87:01:ef:58:12:01:18:ab:74:94:4e:
c8:b3:09:20:82:36:c6:c5:7a:44:91:13:e4:46:d1:cf:74:9e:
28:5f:ef:d1:a5:b7:1b:0b:5e:d5:2d:c2:71:00:6f:40:18:49:
82:31:5e:b9:7b:8e:a1:73:98:e1:54:9a:dc:ba:28:fc:68:be:
75:71:c9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:33:07 2025 by rpki-client