Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
File: YB3AD5pIG0FQhrFDp91M2h_7JHA.mft (raw, json)
Hash identifier: oAfMcbvQJ9jIqzPfFQimHAOKXk2PlNSSQ7wGr9VPP94=
Subject key identifier: 58:38:E5:59:D5:B9:81:4E:A8:BF:B5:8F:B9:2F:F1:FE:76:E6:AE:B9
Authority key identifier: 60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
Certificate issuer: /CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Certificate serial: 019749317D3B5386A42F8A49B6D5953335BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 07:01:09 +0000
Manifest this update: Sat 07 Jun 2025 07:01:09 +0000
Manifest next update: Sun 08 Jun 2025 07:01:09 +0000
Files and hashes: 1: 4mIaRiVfusRCW_nZ919kue73VcU.roa (hash: KAlnZdYdnEt6W3Qh7SxuikxG/eJq1ZmaN4m/5vXa+us=)
2: YB3AD5pIG0FQhrFDp91M2h_7JHA.crl (hash: IOM9NHeVyr0aEA3W2u1vBY0DCl7m3MAVMAJZHIrMD/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:7d:3b:53:86:a4:2f:8a:49:b6:d5:95:33:35:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Validity
Not Before: Jun 7 07:01:09 2025 GMT
Not After : Jun 8 07:01:09 2025 GMT
Subject: CN=5838e559d5b9814ea8bfb58fb92ff1fe76e6aeb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:23:fe:1a:ae:36:8f:13:29:c2:5d:3b:79:45:
c0:23:33:1e:09:5c:48:53:7a:43:c3:51:72:47:8d:
af:41:69:66:12:a8:11:15:32:28:88:a7:96:a5:c6:
82:5b:b1:12:a6:01:0d:f7:ee:29:aa:f4:ed:36:e9:
1b:eb:30:e9:45:43:6e:06:57:6c:a8:b3:d3:ad:cc:
b5:81:f4:36:d9:e8:3d:9a:d6:e8:13:71:f8:84:5a:
d1:ee:1a:7c:af:b1:45:56:18:81:21:f9:8a:55:f7:
bc:c3:a5:bf:1d:fd:6f:8d:ea:e5:ae:77:55:ac:a3:
07:dd:60:c8:e3:a6:42:02:cc:b6:78:26:d9:64:1e:
5f:b5:16:5c:ce:84:3f:aa:1e:da:4d:c0:6c:20:eb:
d8:9b:05:3c:2c:bf:f2:55:6a:55:97:43:d6:36:91:
43:f1:df:b4:07:af:59:7e:e3:ee:4e:28:b8:d5:d6:
9d:a5:40:8d:b1:eb:b9:06:c4:90:4c:f8:7d:8e:03:
56:16:5c:e0:1c:7b:b0:f3:be:2a:e2:62:43:af:0d:
17:fe:55:4f:5b:9d:e8:b6:84:1b:07:79:59:a0:c7:
61:15:70:af:38:3e:fa:7d:47:ff:17:d6:e7:8e:09:
88:39:64:00:e9:96:97:fd:68:a4:81:d2:6b:96:82:
eb:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:38:E5:59:D5:B9:81:4E:A8:BF:B5:8F:B9:2F:F1:FE:76:E6:AE:B9
X509v3 Authority Key Identifier:
keyid:60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:a7:bb:e2:7e:d1:fc:e1:13:cc:f1:aa:fe:91:d6:3c:8f:8e:
f9:84:ea:95:c3:71:12:1b:1b:4f:78:d6:ee:38:79:3d:a0:32:
a6:e9:c7:aa:03:e1:c2:15:aa:87:c3:a1:9c:c9:ed:14:ac:38:
4c:cf:3d:50:14:52:54:6a:1b:78:c5:b2:3f:6a:20:79:56:09:
d7:3a:e8:56:7b:d7:16:67:d6:d6:8d:58:47:3d:60:bd:87:b3:
02:a9:8a:c2:65:d2:d7:34:1e:95:93:96:e8:66:a2:16:03:d9:
47:d8:e4:1a:a3:8d:d4:3a:cc:4c:96:86:19:16:f8:18:c7:0e:
a0:a0:eb:f5:26:62:2a:7b:f9:1a:28:6d:b6:84:e9:96:0b:45:
c5:1c:af:d7:9a:13:38:7c:f0:2d:87:23:13:34:ee:ec:4b:1d:
aa:10:33:79:ab:bd:5e:ba:04:af:51:b2:ee:6e:5e:6c:b6:26:
8a:e1:d8:2b:72:bd:0a:c1:7e:3b:de:26:1b:24:be:7d:c0:33:
15:09:7c:e1:c0:fd:a6:2e:f6:83:68:f9:be:c9:bf:ca:66:db:
b0:63:b8:be:29:f8:d4:89:90:6d:ca:5c:54:f9:b5:0a:55:0e:
84:93:0c:54:fa:38:eb:05:7c:85:bd:e5:5d:d1:bf:7c:14:73:
9e:44:4c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:17:23 2025 by rpki-client