Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
File: YjqxggzkjFedpAxm2FJl8cLPy04.mft (raw, json)
Hash identifier: 5rveP8PjGFB25G9HsvN5XJl9yk9Zddw0x3vW/geWzkA=
Subject key identifier: 43:45:52:5B:B6:F2:59:FC:F6:B7:7E:62:FE:3A:0A:04:FE:A0:95:A0
Authority key identifier: 62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
Certificate issuer: /CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Certificate serial: 019644B20C96F95341FB397666934A302AF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
Manifest number: 057A
Signing time: Thu 17 Apr 2025 17:00:41 +0000
Manifest this update: Thu 17 Apr 2025 17:00:41 +0000
Manifest next update: Fri 18 Apr 2025 17:00:41 +0000
Files and hashes: 1: YjqxggzkjFedpAxm2FJl8cLPy04.crl (hash: tNv8SRLptT3ObdSBba+qL74KL03AmUe+xsFI//Eg9yM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b2:0c:96:f9:53:41:fb:39:76:66:93:4a:30:2a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Validity
Not Before: Apr 17 17:00:41 2025 GMT
Not After : Apr 18 17:00:41 2025 GMT
Subject: CN=4345525bb6f259fcf6b77e62fe3a0a04fea095a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a5:07:09:e7:19:2e:2f:03:df:11:9a:f1:74:
da:69:60:53:7b:0d:a2:1c:f1:5a:ea:6b:35:ed:2e:
ea:16:68:ae:da:02:bf:d5:51:96:57:86:48:34:d2:
bf:df:8d:d4:24:30:1a:71:69:1b:21:d7:13:c2:17:
63:aa:40:24:55:85:29:a5:7e:9f:3b:b2:40:29:10:
67:50:25:b3:8e:dc:ba:49:69:41:07:25:b0:76:52:
dd:d7:ad:64:da:7e:db:e7:88:23:c8:a4:c3:61:05:
25:08:38:84:1e:fd:f3:e6:8a:33:f4:90:48:6e:ea:
2f:9b:78:08:c9:c4:44:05:fa:f5:2c:64:97:7a:87:
fd:ae:55:fd:e5:2f:9c:e3:e9:9f:52:98:a4:60:54:
92:08:ab:14:7c:9d:fc:8d:2c:34:92:ea:1c:de:85:
51:d3:ff:70:22:f5:49:be:ad:34:1a:92:45:33:a4:
18:79:d2:3f:d5:e1:de:56:e3:16:b4:ca:7e:1a:b4:
d1:c5:47:05:b0:4b:30:8f:84:0c:d7:51:9e:84:75:
a9:dc:29:97:05:67:e6:69:a0:7c:61:a4:e0:e1:cf:
7e:f3:fb:93:73:b9:bd:cd:6a:07:12:98:fe:4a:60:
46:a5:1a:67:e2:e0:69:34:98:5f:0f:3d:d1:33:9c:
b2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:45:52:5B:B6:F2:59:FC:F6:B7:7E:62:FE:3A:0A:04:FE:A0:95:A0
X509v3 Authority Key Identifier:
keyid:62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:1c:89:b9:b5:2f:31:aa:11:df:f1:d0:43:19:f2:44:de:d0:
ea:51:ef:f9:f5:0d:1b:ea:68:5e:15:99:cc:16:40:19:6f:3b:
06:3a:96:8a:90:be:0b:78:5d:b5:df:eb:11:ab:84:b8:02:b8:
07:31:b6:5b:72:f7:0c:e9:83:b1:07:9c:97:74:dc:f7:91:fe:
ec:5f:f5:04:62:d1:8b:6e:17:ea:1c:aa:fe:b8:31:ea:33:88:
43:95:eb:98:f9:62:db:97:ca:e0:fa:64:72:3a:c1:3b:19:58:
27:e2:33:a8:bb:de:e4:27:05:80:ba:23:51:83:a3:d1:a2:a1:
a8:33:25:a6:ad:c3:24:10:96:14:05:07:70:10:49:e7:f2:0d:
6c:37:d9:11:79:da:60:d4:ee:6a:e0:7a:bd:40:6f:18:5d:f0:
c7:f3:31:62:0b:d7:cf:9b:d3:e3:d0:61:af:a0:b6:80:00:cc:
2d:38:8e:6d:5b:35:16:a2:40:52:a3:19:36:33:35:51:69:e0:
2e:b0:68:28:fc:76:67:fb:71:56:41:35:39:c1:a9:1a:77:37:
df:56:08:20:cb:18:e7:6e:a6:81:35:b5:2e:61:6a:ae:4d:80:
26:e5:f2:a0:2a:9e:6a:1f:8b:36:53:3e:bc:ce:ad:54:45:19:
82:11:38:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:49:37 2025 by rpki-client