Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
File: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft (raw, json)
Hash identifier: r1RYJzb2zZ2LTOhMz/dai1j2Koh9LPKqy2abacIjq80=
Subject key identifier: A6:5D:AA:6F:00:1D:5C:B8:AF:FA:40:B3:3D:DE:7B:99:3C:36:25:E6
Authority key identifier: 61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
Certificate issuer: /CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Certificate serial: 01964AEAECBBFC066FBDAB33A3721D0B7EB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
Manifest number: 0C1E
Signing time: Fri 18 Apr 2025 22:00:32 +0000
Manifest this update: Fri 18 Apr 2025 22:00:32 +0000
Manifest next update: Sat 19 Apr 2025 22:00:32 +0000
Files and hashes: 1: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl (hash: GhVJNHCXSyeVVprJRPqQxRvMAKozhcZkuHVCE1vrjSg=)
2: cmQy3O27JTVMgc0scAWzRQz1k34.roa (hash: JrHBwEb+drqrBDZnlCxDUthDJ1gAVyMOlFCkBCL2cqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:ea:ec:bb:fc:06:6f:bd:ab:33:a3:72:1d:0b:7e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Validity
Not Before: Apr 18 22:00:32 2025 GMT
Not After : Apr 19 22:00:32 2025 GMT
Subject: CN=a65daa6f001d5cb8affa40b33dde7b993c3625e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cc:c5:63:12:f7:f9:05:97:78:2b:75:43:f8:
b9:17:bd:98:21:96:33:52:3b:d8:c9:9a:70:d5:b7:
53:b8:39:ed:b8:3d:5e:43:b3:c5:04:10:f9:b3:d1:
4c:a3:67:82:ff:c4:c2:d1:ef:4f:22:82:1b:97:49:
16:64:3a:34:5e:e4:be:75:47:3d:68:2a:9e:60:86:
60:fd:93:24:e9:76:ee:f4:d2:18:35:02:60:c9:09:
20:58:56:57:3f:d2:80:70:4d:88:ca:ed:6e:9a:88:
c3:77:39:d8:5d:32:b2:af:69:54:fc:bd:11:7c:e3:
38:74:95:b8:ea:8c:21:50:ad:60:3a:c8:dc:50:aa:
bd:8e:dd:53:4b:ae:71:8e:36:29:1f:fd:fc:88:ad:
c7:9c:45:13:0d:76:99:9d:46:e0:63:cb:13:57:13:
76:06:85:3c:0b:3b:80:f9:6f:f1:d3:cc:40:7d:71:
c0:e3:6d:98:7e:ff:79:d4:3f:ff:dd:5d:99:01:ba:
ab:75:7a:bf:a9:7a:1b:d9:17:a4:18:6f:c0:40:01:
b2:55:43:77:08:dc:41:f7:11:b6:bc:8e:44:e2:c5:
4f:3b:a5:9c:af:f6:1d:a0:c3:15:ba:f8:c5:0e:94:
d7:e4:a9:da:1b:67:ef:cc:ac:b7:64:8e:24:a4:6a:
78:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5D:AA:6F:00:1D:5C:B8:AF:FA:40:B3:3D:DE:7B:99:3C:36:25:E6
X509v3 Authority Key Identifier:
keyid:61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:5c:6f:f3:93:74:f1:cd:b2:c3:b9:71:a9:3d:07:42:d6:46:
c5:03:d6:bd:ea:70:05:56:a0:8a:41:62:be:7c:f1:93:03:28:
8f:c1:6f:ee:ad:46:61:4b:75:cf:91:b2:d2:9b:d6:12:14:05:
cd:11:d7:e7:8e:c6:24:d9:c2:4b:9e:06:e5:b5:bb:d4:29:d1:
23:20:66:7c:fd:b9:d3:89:01:33:8a:d2:77:a4:39:4e:6c:cc:
70:12:03:74:3f:ea:ae:38:b5:28:87:5d:44:3c:94:d2:c7:77:
f6:6c:70:c0:cc:80:b1:33:d4:ce:f9:49:44:68:17:4b:f2:f7:
a0:61:c8:f2:f6:9c:bd:68:1b:94:42:14:aa:96:24:fd:47:90:
8b:35:cf:6a:5c:da:f3:22:73:17:45:25:98:e8:e2:9e:fc:20:
7c:a7:68:59:a8:c8:20:32:d5:f6:78:e6:1a:88:a6:db:b9:0d:
04:91:ec:e5:41:76:88:31:41:15:59:a5:7f:d6:44:d8:60:54:
8c:e5:7b:a4:62:b4:5d:b4:b1:44:b4:0e:61:76:80:ff:57:3a:
25:44:f6:06:3b:40:75:94:6b:60:25:16:f5:1a:b6:7a:e5:a7:
4b:f3:e7:2a:6f:98:c5:a8:5e:8f:39:c2:ce:25:dd:10:5c:73:
41:3a:7b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:49:45 2025 by rpki-client