Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
File: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft (raw, json)
Hash identifier: iBj0Oc6atDYdRaKSflHe+UsHDsC/Sul5xS+lJ0oapTY=
Subject key identifier: 2E:40:23:E9:B4:81:2E:55:60:B2:0B:79:C7:6E:3D:F8:04:CA:99:0B
Authority key identifier: 63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
Certificate issuer: /CN=63e30980305345fd5365b3515e3568f9cee58541
Certificate serial: 01965537D8A83DB44DCF23DF3B6DD4F41484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 22:00:45 +0000
Manifest this update: Sun 20 Apr 2025 22:00:45 +0000
Manifest next update: Mon 21 Apr 2025 22:00:45 +0000
Files and hashes: 1: Hs2TvjBAbChswFTm05pNrXJsCJA.roa (hash: xtJBUOZoNvBaKTOo18EAAqIaZQ4IjdLX9G/viT94FJA=)
2: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl (hash: 7moQmgzdYvKCB+8QrGr4Jr+GWv3AvjdkLEvHak/lni0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:d8:a8:3d:b4:4d:cf:23:df:3b:6d:d4:f4:14:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e30980305345fd5365b3515e3568f9cee58541
Validity
Not Before: Apr 20 22:00:45 2025 GMT
Not After : Apr 21 22:00:45 2025 GMT
Subject: CN=2e4023e9b4812e5560b20b79c76e3df804ca990b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a5:fd:6d:c8:b2:e0:eb:91:32:41:68:80:4c:
3a:39:31:7b:da:e6:58:78:92:f0:0b:96:43:38:d5:
cc:9f:d8:c2:93:9b:86:0c:16:5b:3c:77:52:de:90:
0e:93:d9:8c:5a:b4:48:dd:6b:fe:ed:88:af:15:04:
92:fb:35:54:6a:82:fb:4e:33:e5:79:43:06:f9:91:
43:23:82:9e:08:93:e7:fd:4a:39:13:32:77:30:32:
9a:0e:32:3b:d7:96:19:6e:fd:60:0b:cf:aa:b8:af:
ec:cf:62:d1:39:20:bb:4e:6b:83:c0:36:9c:9b:1b:
ca:12:c4:68:cf:8c:04:d7:0c:af:20:b3:1c:a9:24:
15:6d:76:59:62:7e:7f:54:63:25:d2:66:68:f4:56:
c3:7c:bd:a9:d8:70:f2:68:45:bd:a2:f8:d0:1f:9b:
f6:73:16:05:ab:42:d6:06:44:de:5d:f6:aa:c7:67:
0d:74:b4:f6:1b:b3:69:0f:3d:38:a1:de:8d:78:42:
93:7d:47:42:7f:0e:64:5b:93:fc:4f:16:94:cd:4d:
25:81:93:56:ba:68:23:e1:35:4b:71:fc:99:67:c4:
fc:45:fe:00:60:b6:1e:3d:db:2f:18:5a:d0:8d:ef:
d7:bc:e6:72:ae:79:6e:4a:1b:25:50:41:31:cb:0d:
cf:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:40:23:E9:B4:81:2E:55:60:B2:0B:79:C7:6E:3D:F8:04:CA:99:0B
X509v3 Authority Key Identifier:
keyid:63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:71:0b:da:8a:c2:db:c2:f3:e0:d8:5c:61:41:9b:ad:7e:68:
8b:d9:d6:31:ff:8c:a4:85:93:8d:9e:db:4c:a9:f7:b6:07:90:
15:f7:4b:e6:c4:62:8f:86:09:07:82:ac:cb:12:e0:b3:6d:18:
db:94:d6:02:a0:45:e9:da:61:44:a3:84:3b:f2:ca:04:d4:6b:
8b:0b:f9:c4:b8:66:25:e8:88:6d:4a:ee:8d:76:d1:34:86:47:
a3:7c:6d:73:b9:ea:53:7b:3a:49:eb:1f:9d:6f:d0:c7:8e:40:
55:68:82:86:01:e9:31:1c:a8:1b:1b:01:5c:11:9b:ea:e9:49:
0a:a3:70:de:58:c3:f6:5a:d1:dc:0f:b4:dc:a0:71:28:7c:bc:
49:28:c7:9c:13:3a:1a:13:e1:95:db:43:8b:5a:ae:fb:ab:b8:
e5:6b:c6:09:a0:91:90:05:61:ec:4c:40:8e:e4:ce:29:1c:a7:
bb:2a:a6:9a:33:22:89:f9:e4:ac:49:e8:13:2e:10:0d:8a:90:
2e:0a:2c:ea:fe:0c:a9:b8:73:5f:7e:c7:bb:7e:91:3d:a9:a8:
51:30:82:c3:b3:bb:8f:55:ae:68:d4:fe:5e:5e:a8:c1:4b:ec:
ef:dc:18:ff:25:b5:19:cc:bb:3f:37:e0:c9:b9:9b:23:d7:5e:
54:f5:cd:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:42:32 2025 by rpki-client