Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft
File: yQDj7qi7474R-IxoK9E4wmUH99w.mft (raw, json)
Hash identifier: Iu/bK3tHikZOOOk3xoa5cJHdZPSKL9ZMmW/WKG5y6gE=
Subject key identifier: F5:AD:5E:FB:A0:4E:17:45:9A:AA:B8:2E:16:3C:E0:6A:75:E9:A2:58
Authority key identifier: C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC
Certificate issuer: /CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc
Certificate serial: 019647B353920332B23365833CA3368C5760
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft
Manifest number: 0BDC
Signing time: Fri 18 Apr 2025 07:00:56 +0000
Manifest this update: Fri 18 Apr 2025 07:00:56 +0000
Manifest next update: Sat 19 Apr 2025 07:00:56 +0000
Files and hashes: 1: yQDj7qi7474R-IxoK9E4wmUH99w.crl (hash: FrDupjn4gSISIrHW6/tdpbxThN+4wuK317B1vXzgz+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:b3:53:92:03:32:b2:33:65:83:3c:a3:36:8c:57:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc
Validity
Not Before: Apr 18 07:00:56 2025 GMT
Not After : Apr 19 07:00:56 2025 GMT
Subject: CN=f5ad5efba04e17459aaab82e163ce06a75e9a258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:54:e6:7f:9c:e7:d1:6a:24:06:1a:6b:2e:fc:
93:90:51:b4:c1:71:7c:56:18:7e:37:b1:31:6f:61:
30:b6:a5:a9:7b:9f:5a:22:0f:b0:88:bd:66:d6:dc:
3a:c8:55:6c:a8:82:80:c0:af:4e:43:cd:b7:29:ee:
b7:ef:06:3b:cd:5e:25:05:19:08:63:fe:0d:5f:4e:
6d:44:28:3c:91:b9:f7:ba:ad:bf:3d:1a:69:ce:f5:
11:b6:05:05:c5:36:08:e6:8f:0a:71:98:6a:b7:1a:
79:c1:18:2e:cf:dc:1a:69:6a:34:17:5f:8a:05:cb:
99:ab:6b:a9:5d:36:58:c4:51:7f:c2:1d:f5:54:ea:
33:1f:19:c2:33:f5:b2:e4:b1:d5:6a:f4:a7:c8:23:
f7:31:cd:15:77:9f:68:29:b5:f6:fa:53:79:57:de:
4f:35:c1:83:69:fb:68:bc:51:cd:53:af:cb:9d:6d:
51:5d:d3:75:48:41:cd:0b:40:4b:40:6e:14:58:04:
f0:cb:f6:62:c9:17:3d:e7:ea:f2:bd:80:7a:d1:e3:
58:0c:1b:0f:a9:e2:84:f7:c0:71:ad:78:b1:23:50:
17:da:e4:d2:a9:d6:a1:06:ed:00:3c:d0:9f:ea:b3:
1e:d3:cb:8f:d0:1a:f0:36:6e:57:33:31:0f:6c:ba:
01:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:AD:5E:FB:A0:4E:17:45:9A:AA:B8:2E:16:3C:E0:6A:75:E9:A2:58
X509v3 Authority Key Identifier:
keyid:C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:a9:0d:86:49:e3:cb:d5:05:68:96:83:7d:5e:67:90:49:86:
40:27:da:03:1d:ef:08:27:ac:5d:d9:94:1c:cf:a5:59:ec:d1:
2c:17:33:ab:57:fb:89:06:30:58:35:bb:e6:9c:31:99:99:8f:
87:07:6b:5f:c8:7f:4e:7d:ba:59:af:ea:3c:9d:1b:0f:3b:ed:
15:c3:b4:af:6c:b0:3d:91:0f:9f:c2:76:53:68:24:c5:06:7b:
c3:e4:09:0a:43:60:3b:da:6f:5f:57:e9:4f:1b:fb:0d:43:ef:
ae:6c:6e:ae:f7:f0:05:1e:fe:11:90:c9:6e:a4:95:1b:fb:88:
ac:a3:31:b7:25:f9:01:ed:2d:77:59:2d:79:83:f7:c2:0d:50:
ec:0c:77:0b:5a:3a:65:0f:b4:e2:13:0f:ba:14:0e:f6:ed:0a:
a6:5a:d2:87:e8:03:1d:8c:5a:29:c9:57:0c:2d:50:21:7f:d4:
df:93:3e:f6:55:da:5b:99:8b:a4:dd:6b:bb:56:dc:92:25:53:
f5:72:c5:a0:4f:fa:e7:a0:9e:42:d8:5e:24:86:4c:38:9b:97:
04:ba:2b:00:ba:4b:f1:14:f4:d8:ae:d8:14:ba:80:3d:8a:b6:
73:b9:5d:9b:62:c0:06:3f:62:db:a1:bc:bd:94:77:1a:d5:68:
7b:eb:91:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 08:58:59 2025 by rpki-client