Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
File: ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft (raw, json)
Hash identifier: gchpg7yjiQRjXTbCw2vlF+3itLbG9LSXG2zQ1nRN6/I=
Subject key identifier: 6E:BC:72:D3:E1:1E:C4:F9:0B:F3:7E:F8:23:32:0E:CA:42:52:1A:8A
Authority key identifier: CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
Certificate issuer: /CN=ca09149f34784f5b202c56761b01d35dd02569cd
Certificate serial: 01965048C1AB3C607EBA05D49A849604DD55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
Manifest number: 029E
Signing time: Sat 19 Apr 2025 23:01:07 +0000
Manifest this update: Sat 19 Apr 2025 23:01:07 +0000
Manifest next update: Sun 20 Apr 2025 23:01:07 +0000
Files and hashes: 1: 9hSS_TvQhCvC8fhsSyJYV-rq3kg.roa (hash: IKnNzHp7XVRMYKLUBlGGbOEdrSNJK7VVnYm2JR8nfXc=)
2: ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl (hash: /QxJuv9Z9MPgp6IQqKpinU5ciRHme63DvFv37m0LK80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:c1:ab:3c:60:7e:ba:05:d4:9a:84:96:04:dd:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca09149f34784f5b202c56761b01d35dd02569cd
Validity
Not Before: Apr 19 23:01:07 2025 GMT
Not After : Apr 20 23:01:07 2025 GMT
Subject: CN=6ebc72d3e11ec4f90bf37ef823320eca42521a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7a:4a:c2:ad:f1:82:de:e4:8f:87:10:d0:db:
b1:e6:39:45:1e:96:71:62:de:db:b9:e8:82:c7:a7:
e6:d5:46:aa:07:22:64:05:f4:3d:76:55:6d:05:5d:
b7:45:9f:31:d5:ba:74:33:c5:ed:1f:df:1e:05:9c:
d3:25:7b:93:51:ab:f4:ac:df:d3:c9:46:e8:f7:22:
48:36:88:b6:55:c4:be:5d:32:21:b7:e6:f8:c7:e6:
c5:13:e2:47:bc:85:8b:d9:07:a6:9c:e1:ec:27:b9:
8f:dc:44:54:5b:a0:f5:59:7e:8f:33:20:4b:78:71:
59:8d:f0:57:fc:c9:41:53:47:ff:81:18:9a:1d:96:
94:34:0d:43:0d:e0:c0:a4:f9:16:83:ec:04:cb:aa:
a4:d3:e3:62:15:10:da:60:8d:12:a3:23:af:82:d0:
de:4d:9e:b3:f2:c1:ec:a1:bd:cd:d5:d1:0e:bf:9a:
df:df:91:f2:d6:f2:73:29:8d:38:70:59:d0:64:58:
24:a7:d8:fd:c6:e8:6e:c0:4b:3f:be:9f:3b:f4:c3:
2e:bc:e4:0f:de:34:39:54:18:bf:c7:41:f2:df:4c:
60:e6:6c:70:53:12:f4:25:aa:88:10:7f:c5:ef:4a:
35:5d:75:ec:4e:8c:5e:ad:3a:dc:a9:73:b4:a5:3e:
77:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:BC:72:D3:E1:1E:C4:F9:0B:F3:7E:F8:23:32:0E:CA:42:52:1A:8A
X509v3 Authority Key Identifier:
keyid:CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:11:e6:2a:4d:7c:a5:33:16:73:99:67:63:53:ab:9f:9d:63:
8a:5e:70:d1:55:1a:57:1a:ac:d8:46:5c:84:c5:af:89:a9:68:
7b:cf:a2:57:ca:d6:c7:d9:e2:69:b9:3e:73:c7:35:ce:35:8a:
cb:a0:a8:b4:b6:e3:43:58:dd:bd:dc:97:6b:dc:8b:4e:a6:f6:
10:f7:6d:31:3b:46:78:b7:6a:94:ad:19:5e:f8:00:7d:31:22:
8e:93:01:bb:fe:4b:20:a3:f9:78:d5:7d:c3:9d:c1:6e:28:05:
a4:8a:9f:3c:d4:f9:78:2b:c2:48:43:e2:d8:25:ac:81:aa:67:
b6:5c:4d:f4:8c:41:f1:03:2f:b0:99:8b:3c:84:df:d9:68:c7:
f2:9a:eb:56:76:43:2f:e5:f0:41:54:55:bb:a6:21:2c:9e:f8:
d6:20:d3:f7:d5:9e:51:c7:75:c1:54:c3:77:bb:cc:c2:91:69:
f4:d4:5a:bb:54:6f:9a:7b:cc:5b:43:9c:02:38:b7:11:b8:01:
57:a0:33:b2:a1:aa:eb:8e:d7:91:53:4c:cb:ed:90:37:9c:44:
66:4c:87:8a:3f:15:8d:8c:e7:49:20:9d:b1:d5:e8:1c:e2:e7:
63:d5:58:9a:15:a0:25:6c:04:e7:bb:9b:c7:21:1e:a0:e2:ab:
24:75:15:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 01:59:48 2025 by rpki-client