Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
File: YKVAzkUEVjReyOCY709TY010vx8.mft (raw, json)
Hash identifier: Lz4OF+E1esJ1feSnOGb7u2Hgdy2id+/a/5V+SNcgzLA=
Subject key identifier: AA:56:FD:69:8D:97:E4:14:23:6D:8D:4D:ED:1F:C2:1A:5B:8C:92:60
Authority key identifier: 60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
Certificate issuer: /CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Certificate serial: 0196285FD90E06FAB84D8733AA490A20DD07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
Manifest number: 0347
Signing time: Sat 12 Apr 2025 05:01:32 +0000
Manifest this update: Sat 12 Apr 2025 05:01:32 +0000
Manifest next update: Sun 13 Apr 2025 05:01:32 +0000
Files and hashes: 1: Bq43MW6bqq2vM6N_DNsfJJero4c.roa (hash: VW9B+4fqw3vwWS3Hrgaa9ekIoZlwSTvJqX1tdku3w4Q=)
2: FFuyCzey-ipHJjO6uFxO4LXEWh8.roa (hash: BnXInNtTIRPQzVjQvIt2UJghwBPIV2UTW4dKQw8S/yc=)
3: GNYCBA73RNfPwbA7eeRR2Ynb_MU.roa (hash: StZ632pNqDa4wkp/dODQDXg1mtBzKfLiR3mQsyHI7KM=)
4: MxYpdz7QLHrqszrw0ICVs_l_uwI.roa (hash: uY4nKFGGyfh/6l3FSdHL/FklopbqDKoZs2zw3yHpkBY=)
5: YKVAzkUEVjReyOCY709TY010vx8.crl (hash: 50aEq619A82FqKqWQsN86Y2eTgNBcdMz0F9RWLTg2/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:28:5f:d9:0e:06:fa:b8:4d:87:33:aa:49:0a:20:dd:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60a540ce450456345ec8e098ef4f53634d74bf1f
Validity
Not Before: Apr 12 05:01:32 2025 GMT
Not After : Apr 13 05:01:32 2025 GMT
Subject: CN=aa56fd698d97e414236d8d4ded1fc21a5b8c9260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:36:c9:f1:6f:a4:58:12:b9:67:d0:a0:73:34:
73:4c:46:40:54:6f:36:bd:27:ce:f2:b0:f2:ca:bc:
4e:80:5c:4f:ee:97:0d:f5:20:a8:78:16:fc:68:36:
5a:dd:58:48:79:76:83:88:2d:af:73:8d:4a:02:35:
eb:f1:af:72:7e:22:73:79:a3:8b:f0:5a:80:28:1e:
91:75:36:16:43:ad:f2:cc:f1:d3:84:a5:c9:be:1a:
f1:d4:f2:ce:04:e5:83:1c:f1:b8:66:90:ac:fc:9e:
e2:0c:22:25:5d:d7:e3:a9:ac:21:37:c9:14:49:34:
35:81:d6:1d:b0:f7:8b:15:d3:f8:9e:13:8a:b6:7d:
89:4f:57:3c:bd:0d:36:9e:50:57:fd:3f:28:5a:f4:
c9:b6:32:96:b0:38:52:c0:49:c2:af:00:b3:ac:f0:
ec:7e:bc:b6:50:54:93:f5:37:ea:5c:7c:26:08:72:
dd:6c:87:16:0e:60:54:70:c3:7e:23:3d:f1:40:f9:
76:33:6c:37:ba:06:82:1d:df:e4:af:8d:8a:30:91:
e0:9f:87:8a:2c:4a:57:f0:69:c0:59:67:b5:b2:92:
12:bd:0b:15:d4:60:71:bb:8c:b8:e9:4d:dd:ec:3f:
ba:8a:33:9e:c0:b3:bf:cd:a9:64:e7:12:97:d7:aa:
4f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:56:FD:69:8D:97:E4:14:23:6D:8D:4D:ED:1F:C2:1A:5B:8C:92:60
X509v3 Authority Key Identifier:
keyid:60:A5:40:CE:45:04:56:34:5E:C8:E0:98:EF:4F:53:63:4D:74:BF:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKVAzkUEVjReyOCY709TY010vx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/195a47-a2cb-4f00-8531-e473531f6fe8/1/YKVAzkUEVjReyOCY709TY010vx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:c5:22:bf:3d:26:54:be:86:93:7d:dd:e9:bd:aa:a9:48:91:
43:6a:28:b7:ae:11:5c:80:6a:99:99:63:30:67:f0:5e:a5:bc:
50:d0:4e:5a:57:45:7c:13:b5:ac:08:30:f0:fd:6c:d4:97:31:
56:a4:4f:64:d3:17:eb:d6:88:bf:77:40:ec:52:e6:b6:f2:9b:
13:24:53:b4:20:d3:82:e9:11:45:e8:1e:5f:04:f9:2d:84:bf:
d0:0f:54:83:8a:17:14:65:ad:ba:9b:ca:95:0e:4d:c7:82:e8:
42:9d:30:41:e8:c3:f8:99:f9:3d:da:1f:83:2a:93:17:2a:4a:
3d:da:1f:74:62:fc:0f:21:33:78:18:62:26:bb:fd:10:42:46:
9f:2b:b8:63:18:3d:8a:a2:c3:b7:1b:c2:52:ae:e4:86:7e:24:
b9:bb:bb:1d:dc:a0:06:a0:b9:5b:3d:dd:3d:c4:84:41:fe:84:
91:72:c2:65:88:c1:09:c4:fd:23:3e:1c:db:81:50:1b:59:ed:
25:90:09:ef:95:ba:0f:e5:be:a8:f0:64:3d:7c:7e:1f:38:bd:
77:43:d6:cf:42:5b:b7:df:68:f8:98:7a:20:b4:14:3a:58:d9:
73:15:4b:71:d4:6c:94:cf:07:d6:ae:1b:88:88:62:76:3c:35:
e6:34:03:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:17:24 2025 by rpki-client