Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
File: YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft (raw, json)
Hash identifier: XBELyBcms12TH1Fdlw+Y7kYaIqTzXFvepWRG+6RyoTs=
Subject key identifier: 2A:47:FF:BC:83:74:4E:CA:C8:9A:7F:59:95:97:32:09:27:1D:62:04
Authority key identifier: 62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
Certificate issuer: /CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Certificate serial: 01964443BC759BC6DADB71CB32FE2D3D6420
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
Manifest number: 14F3
Signing time: Thu 17 Apr 2025 15:00:11 +0000
Manifest this update: Thu 17 Apr 2025 15:00:11 +0000
Manifest next update: Fri 18 Apr 2025 15:00:11 +0000
Files and hashes: 1: Fd7jj4UgNX8KUEunLGyTOECk2zM.roa (hash: 4ykrgJNWkElQuXhdhPDtDMLnIYLOev4Sm6TYtDwClXU=)
2: YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl (hash: JZgOJTdZ5DCnJFVmqgEakxhAXrxtktRLNcOBzbkaXAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 15:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:43:bc:75:9b:c6:da:db:71:cb:32:fe:2d:3d:64:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Validity
Not Before: Apr 17 15:00:11 2025 GMT
Not After : Apr 18 15:00:11 2025 GMT
Subject: CN=2a47ffbc83744ecac89a7f5995973209271d6204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ce:3b:20:6e:bf:17:74:40:e9:2d:ce:09:06:
77:8c:41:13:36:0c:c1:97:6a:c0:51:f1:f2:29:f3:
1f:6b:cb:a0:1e:a4:b7:72:81:b5:70:06:18:18:d0:
bc:69:16:dc:6d:25:2c:a2:13:34:57:20:2e:00:2a:
d9:8a:36:5e:6b:9d:4d:37:d7:b1:2a:3b:6e:ca:56:
63:71:6f:4a:1e:e3:7b:c8:a7:b7:a9:94:c0:c2:ab:
16:50:f3:32:ab:e5:04:66:7d:16:e0:f0:ae:43:79:
32:1c:31:e2:4c:ef:37:bf:c4:fb:2d:74:51:14:ad:
36:b0:c6:5f:ca:5d:31:28:82:c8:c7:79:c4:d6:c5:
8c:fb:c9:82:cf:e4:fa:ab:77:1e:fe:c2:e9:bd:db:
2f:38:0c:3a:9a:73:30:07:12:9e:2d:c0:e2:3e:90:
1f:88:2f:ac:6a:4f:4d:01:60:ab:80:37:8d:bf:eb:
35:b3:6c:a8:ec:5a:67:87:5c:fc:d2:88:8a:b9:5f:
29:b9:b4:2b:0b:cd:82:17:03:11:0f:7f:ff:70:27:
05:f1:4e:a7:e2:4c:62:50:33:0a:95:64:70:d4:16:
ec:e4:bf:07:a6:ba:45:a4:c6:a6:e0:9a:89:03:18:
8a:8e:58:52:69:c4:03:7a:58:c9:f3:71:d6:b2:6c:
5b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:47:FF:BC:83:74:4E:CA:C8:9A:7F:59:95:97:32:09:27:1D:62:04
X509v3 Authority Key Identifier:
keyid:62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:36:a0:aa:66:28:79:b5:58:dc:cd:18:de:de:ae:33:ad:84:
a4:b5:32:18:1c:01:2e:d5:0a:c8:9f:ab:64:3b:14:6d:57:93:
b1:47:e0:81:c3:e6:4e:3b:de:70:d4:cb:5b:50:a5:09:fe:d7:
6b:4e:09:1d:d6:df:23:6a:0d:a7:ea:5f:9c:df:fb:92:0e:8f:
8c:df:0c:0f:70:8a:61:31:ef:8e:b0:07:63:22:3e:90:47:a8:
8d:b7:cc:4e:be:a8:9c:6a:b2:93:38:42:86:67:5a:64:98:a1:
85:7c:ec:98:b2:8a:29:c2:b7:7c:9b:ec:15:ec:88:f7:40:17:
99:32:29:91:bc:61:d4:b8:4c:15:68:90:30:c2:81:bc:3c:fc:
4e:90:32:70:4e:fd:ee:7e:11:28:c4:d8:db:e7:3a:4f:2f:9d:
24:03:c5:e0:63:6a:19:5d:78:c9:07:c0:8b:e9:4f:37:ca:ca:
8d:5c:bd:f1:b5:e3:90:d2:ad:3d:c6:5d:bb:42:79:ec:79:7f:
f2:a3:41:7e:ac:91:2e:9f:f0:9e:f8:17:80:ce:0f:d9:b7:e3:
38:7b:72:e7:67:12:a8:84:ed:cf:eb:00:8a:79:43:19:81:6b:
2f:26:fc:2a:7e:c0:46:e0:02:15:46:19:41:01:3b:2e:82:16:
91:d4:91:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:54:35 2025 by rpki-client