Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
File: Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft (raw, json)
Hash identifier: r/Q6Ga6CSdipy7g4sjtaOC9AY2f3v6xhd3XVQUi1t8A=
Subject key identifier: 4C:9E:05:27:6F:C9:B2:4F:5C:11:91:D6:4F:0C:56:3C:10:E8:0D:93
Authority key identifier: 63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
Certificate issuer: /CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Certificate serial: 0196531280A9F5351D36B70BA53681E0EA9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
Manifest number: 0F18
Signing time: Sun 20 Apr 2025 12:00:43 +0000
Manifest this update: Sun 20 Apr 2025 12:00:43 +0000
Manifest next update: Mon 21 Apr 2025 12:00:43 +0000
Files and hashes: 1: YFIa0scc_xVUT5FKi7LKvASoEWc.roa (hash: V1CwEQLm9iXZGzptcaHc4LFmcOryBT2Kfmx1HSv4RTc=)
2: Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl (hash: mEy0bK/C/l5CsFCcgk4u2qOme61AycCSjhI5g9ICDMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 12:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:12:80:a9:f5:35:1d:36:b7:0b:a5:36:81:e0:ea:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Validity
Not Before: Apr 20 12:00:43 2025 GMT
Not After : Apr 21 12:00:43 2025 GMT
Subject: CN=4c9e05276fc9b24f5c1191d64f0c563c10e80d93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:55:03:da:2e:f8:55:4c:65:5e:55:2b:02:c8:
e2:59:b0:bc:1d:b1:6c:cb:64:16:98:ad:8c:e0:88:
cc:7f:6e:7d:b1:49:31:f5:fc:0d:9e:b3:d7:97:4b:
5d:01:ac:41:e7:de:5a:f2:64:5a:12:6f:f3:20:e3:
4e:8c:86:6e:6e:ae:92:ca:f4:8e:66:e3:bd:a0:ad:
62:be:07:d1:1f:ef:7e:32:c9:6f:81:61:75:81:4f:
64:50:35:79:f4:ef:90:7a:dd:6e:64:f1:b9:ff:4c:
5c:4b:49:81:2b:40:2e:a0:31:7e:ef:fc:7a:2b:4f:
b3:16:3b:7d:bb:41:3f:43:12:8f:74:af:1c:bb:81:
9f:c3:b1:cb:66:29:f1:79:32:33:b1:95:9f:2d:d7:
03:0a:a3:93:0f:a3:a6:b6:b5:3e:e8:9b:46:fb:73:
c2:13:ab:c0:f4:e9:bf:64:8f:f1:d3:d1:d7:82:f0:
92:d2:62:f1:6a:de:e0:09:19:4d:93:2d:ef:d6:66:
42:d6:87:f3:e1:55:8e:a6:e7:25:6b:93:ad:31:bb:
df:11:db:cf:15:47:7e:33:1d:cb:a3:66:fb:a3:83:
15:26:c9:ed:7b:9a:2f:d8:a2:19:99:dd:e4:e9:5e:
b2:c5:c4:2b:c8:68:23:bd:a3:f9:19:00:d6:ee:f7:
d7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:9E:05:27:6F:C9:B2:4F:5C:11:91:D6:4F:0C:56:3C:10:E8:0D:93
X509v3 Authority Key Identifier:
keyid:63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:b8:47:b2:38:df:12:f0:74:7d:41:3c:b5:0a:33:bd:31:84:
a1:ce:cc:67:1f:86:1d:99:0c:e6:79:06:55:89:b1:24:e8:10:
cb:1d:79:eb:59:89:dc:79:86:22:9d:1a:5e:52:8b:d0:6a:5f:
01:77:be:84:0d:26:42:3b:12:bc:81:ac:5f:1c:4d:64:30:cc:
41:64:1e:e9:c9:44:6f:97:84:a6:1a:6e:29:4b:9b:ae:29:56:
2a:d3:9c:76:53:33:a7:ec:ce:a3:07:60:16:0f:c6:b7:90:59:
8e:5e:aa:33:64:42:d5:8d:37:57:c0:f2:43:ef:26:45:cf:11:
9e:03:17:4e:11:5c:07:f1:1c:5b:67:fa:47:25:66:fe:88:54:
2c:5c:f4:9e:41:34:a8:8f:3f:cc:17:65:af:b8:3d:7d:ec:48:
b8:01:d4:c0:f7:c2:d8:95:d8:93:bc:42:16:65:c0:aa:81:42:
7a:10:fe:40:a5:75:d5:84:cf:aa:fc:5b:01:4c:00:b0:f1:a7:
b2:4b:4c:c4:67:49:58:61:4f:33:df:69:3d:ab:40:10:08:05:
72:94:ef:69:37:75:37:90:df:31:48:f5:3a:02:46:fa:b3:2f:
e5:4a:1a:72:c7:f6:52:d6:24:85:44:6c:ff:24:44:ef:a7:de:
8f:e1:1d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:52:12 2025 by rpki-client