Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
File: YjqxggzkjFedpAxm2FJl8cLPy04.mft (raw, json)
Hash identifier: KvlTvjCVHvbSC2ijoROmWZt7m38q27pz/Yr6QSrlh1Y=
Subject key identifier: DC:47:12:B1:39:C7:BF:DC:03:CC:BB:E9:FF:51:61:93:FD:F1:00:91
Authority key identifier: 62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
Certificate issuer: /CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Certificate serial: 01958B4DB027409CBC65D38E107A7FB212C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
Manifest number: 051A
Signing time: Wed 12 Mar 2025 17:01:19 +0000
Manifest this update: Wed 12 Mar 2025 17:01:19 +0000
Manifest next update: Thu 13 Mar 2025 17:01:19 +0000
Files and hashes: 1: YjqxggzkjFedpAxm2FJl8cLPy04.crl (hash: Nr8l6Z2xcmFE08ruGaELatP8UM6yYpChOLIMalHiqLI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:b0:27:40:9c:bc:65:d3:8e:10:7a:7f:b2:12:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Validity
Not Before: Mar 12 17:01:19 2025 GMT
Not After : Mar 13 17:01:19 2025 GMT
Subject: CN=dc4712b139c7bfdc03ccbbe9ff516193fdf10091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8c:81:1e:a2:01:93:0e:85:2f:3b:c9:f7:fe:
e1:61:86:04:cf:dc:53:08:0a:57:12:ca:ee:bb:35:
ab:a5:28:1d:cb:0d:0e:94:b0:96:12:44:e7:6e:0e:
04:e7:03:36:62:03:68:76:dc:f3:3e:f2:dd:a7:86:
52:a4:93:84:03:d4:55:c7:16:8a:41:26:fb:bd:0d:
e1:a0:59:03:4a:37:9e:40:16:df:6a:8b:28:32:7f:
b3:60:c2:6f:a9:4f:1a:fe:4a:51:41:eb:5f:c4:05:
d9:1a:5d:e6:64:1b:00:aa:da:82:83:ec:79:a3:79:
8d:7c:f1:f6:26:de:0d:e3:ad:e5:1b:ee:f4:9f:7b:
4b:ab:ee:8f:63:5a:58:27:db:8b:44:c5:5b:9e:25:
44:7c:d5:8e:bb:04:d8:ea:cc:32:ac:ed:b9:b3:d5:
89:e2:ae:23:06:30:33:a6:82:b5:28:e2:a3:5d:80:
c2:54:f7:18:3d:d4:9a:4f:91:76:92:b1:b2:39:c2:
15:df:ca:41:a7:ae:04:b9:df:79:8b:cd:dd:b7:0b:
4d:5e:90:8e:58:4c:ed:29:c1:92:8f:59:07:65:bf:
63:38:47:9f:ca:f5:42:5c:53:38:53:e7:b1:58:70:
62:16:1c:15:36:df:8f:3a:b8:98:44:55:ff:3d:cf:
0e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:47:12:B1:39:C7:BF:DC:03:CC:BB:E9:FF:51:61:93:FD:F1:00:91
X509v3 Authority Key Identifier:
keyid:62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:9c:00:4f:fa:63:83:5f:d1:dd:ca:f1:b6:59:42:25:53:ce:
6c:f6:87:8c:5b:22:bc:71:6f:14:65:4b:cb:b5:4f:cd:b1:93:
13:a4:df:cd:7c:7c:6a:27:25:2c:b5:26:e5:dc:5c:5e:dd:79:
11:e3:b5:a1:6e:39:c1:d3:90:d8:d6:5d:82:0a:49:65:a0:67:
76:6e:ef:d0:17:64:1b:a9:31:8b:68:87:18:1d:b2:68:fc:a8:
6d:3a:5a:9c:ce:f6:77:bc:a6:54:28:6a:8d:d8:6b:3b:34:e0:
46:16:0f:4e:2c:14:8a:cb:81:67:ec:b0:65:f9:7c:dd:b5:bb:
7e:25:7b:d4:e3:2d:f0:e0:ce:6b:f9:c6:2b:cb:fa:3d:b9:cc:
80:5a:1f:3b:9f:71:a5:0a:a0:52:65:b0:65:a3:23:33:48:98:
d8:98:48:31:bc:49:f8:a1:5c:1d:1d:d4:11:14:19:75:11:3c:
26:f7:10:85:bc:16:48:bf:f0:41:d3:8b:94:32:7e:df:a3:a8:
3e:9e:ee:7a:bc:92:34:ad:9e:16:91:5f:ad:62:84:bb:1c:11:
07:96:62:af:21:2d:34:a3:dc:5d:50:ea:a0:6f:e3:55:c8:25:
54:91:5f:bc:d9:4a:8e:d1:a9:34:7b:48:7c:3f:e8:10:53:4f:
a8:e3:33:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:05 2025 by rpki-client