Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
File: YbGV0TBQ_zxGihSXeHELU1giUdk.mft (raw, json)
Hash identifier: 4GvJL2+TFEstcwK0GKL7fcwNGDKlYAiLG4Fg69nnI1o=
Subject key identifier: 79:D5:F9:2C:3E:6D:59:E6:FA:70:F3:09:D6:34:F7:F7:2C:11:A8:FB
Authority key identifier: 61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
Certificate issuer: /CN=61b195d13050ff3c468a149778710b53582251d9
Certificate serial: 01958EBC622023F722A03EC5B87FE62B83CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
Manifest number: 149B
Signing time: Thu 13 Mar 2025 09:01:05 +0000
Manifest this update: Thu 13 Mar 2025 09:01:05 +0000
Manifest next update: Fri 14 Mar 2025 09:01:05 +0000
Files and hashes: 1: Wt3X3B6NcZ-mxrNPh2fG99PqrRE.roa (hash: q1LYdMsfXSEFkYw+v/2PtBLKm0CXtMVR1H0DEe1ErnY=)
2: YbGV0TBQ_zxGihSXeHELU1giUdk.crl (hash: i9tn5ECwvghTwpQS3ERmRZbx2p7Zcr0YA79At7bFA+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:bc:62:20:23:f7:22:a0:3e:c5:b8:7f:e6:2b:83:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b195d13050ff3c468a149778710b53582251d9
Validity
Not Before: Mar 13 09:01:05 2025 GMT
Not After : Mar 14 09:01:05 2025 GMT
Subject: CN=79d5f92c3e6d59e6fa70f309d634f7f72c11a8fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a9:c0:ab:22:42:30:2a:be:a8:c1:0c:6c:0e:
b5:ad:c5:6c:b5:bf:03:12:04:0f:44:55:65:52:91:
ae:c8:74:44:0c:65:19:e1:ca:1c:27:6c:95:14:68:
ac:88:bc:80:ae:07:0d:92:4b:fa:01:bf:b0:f3:ae:
9b:13:c1:47:b3:4d:77:50:24:64:dc:7b:57:a9:97:
00:87:e0:e4:6e:4d:9b:01:4b:42:b5:d9:55:54:6f:
40:f7:58:d4:27:70:8d:b3:5c:ed:43:f8:07:f3:9e:
39:89:90:58:bb:4a:80:e2:b9:fd:d8:27:ec:2c:31:
46:b1:af:8e:d0:13:2f:fa:a1:a5:01:ec:f7:16:8a:
ff:f2:e1:75:c4:8a:da:0f:3d:b4:f1:c8:84:67:1c:
ff:bd:7f:c6:33:db:bd:f2:5d:ab:18:3b:70:1e:79:
72:ff:84:32:f9:f6:5b:b4:9c:1f:a2:b5:7c:1f:1a:
df:18:83:b7:c0:9e:e8:14:be:6d:f9:d7:56:44:12:
89:37:a0:9a:ab:8d:a5:58:37:f2:9f:34:57:27:e8:
26:c3:5a:12:c4:c2:5c:9b:35:ef:e6:4a:c3:13:7d:
0e:70:5f:5a:62:be:04:06:96:ec:b2:ff:ba:6b:3d:
e2:2e:10:e1:69:4e:06:7e:bb:12:27:6a:0e:44:2c:
26:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D5:F9:2C:3E:6D:59:E6:FA:70:F3:09:D6:34:F7:F7:2C:11:A8:FB
X509v3 Authority Key Identifier:
keyid:61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:7e:a8:34:31:25:2a:ef:10:42:37:30:c6:d2:96:2d:6c:57:
b4:a0:0a:09:5a:da:b2:bd:13:16:dc:03:c5:29:71:76:51:2f:
1f:65:af:c5:44:c9:a6:ef:a5:d5:23:9f:d0:37:ba:60:0d:d4:
10:71:d8:6d:42:49:55:f4:69:31:24:09:4e:41:40:5d:9a:d2:
41:0f:7e:fe:5b:e3:fd:d9:10:22:92:ed:1b:ac:48:2d:7c:cb:
9a:dd:4b:8a:39:03:57:3c:d3:b1:3d:74:62:59:78:e9:5d:31:
5a:37:b8:af:93:11:6a:07:8a:8e:92:d0:e6:f7:1f:ae:8e:e0:
36:22:8c:ed:82:d3:0f:cf:2a:1a:49:b7:b5:89:98:9a:a3:41:
3f:4c:49:b7:ec:85:b0:7d:24:3a:19:b4:cc:e8:99:2f:fb:b3:
a0:53:4f:8b:6f:50:9b:98:93:90:51:14:59:d2:8f:ab:ce:af:
10:93:8e:65:3d:79:67:17:8f:2e:ca:f5:9f:dd:68:6c:4f:38:
d9:6f:aa:e7:b4:ea:9d:bc:39:6c:7c:dd:11:c5:89:02:b1:6d:
eb:1e:62:44:6a:cb:61:58:a9:f1:f5:ef:ec:a7:60:fa:2a:4b:
a2:0a:74:ae:d6:25:3c:81:93:c6:e3:dd:38:81:33:91:49:7f:
3b:a5:a0:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:41:55 2025 by rpki-client