Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
File: YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json)
Hash identifier: BREpFxQBatVR/1LubGiJaC3DHWoI4f/z/LAGYcpIeJQ=
Subject key identifier: 82:D8:62:27:75:14:F6:7F:9B:A2:DE:BC:2D:0F:24:D7:E2:D5:5C:8D
Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
Certificate issuer: /CN=602f27fad92452a254b30a060ed383b13c758ed6
Certificate serial: 01965801B5D75D51CFD7AB482BA012173709
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
Manifest number: 0764
Signing time: Mon 21 Apr 2025 11:00:29 +0000
Manifest this update: Mon 21 Apr 2025 11:00:29 +0000
Manifest next update: Tue 22 Apr 2025 11:00:29 +0000
Files and hashes: 1: TRV1zvMwN77u4mbYXqSf5mMtgyk.roa (hash: AGCpSC7dzCZj1/xhxXIQK1OjIYEOjpJ4XzT4WLt1kl0=)
2: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: 7C7GEFP17SvUwJq/oMWCQwMC7MyBnWkyJ8UEqOYvSLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:01:b5:d7:5d:51:cf:d7:ab:48:2b:a0:12:17:37:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6
Validity
Not Before: Apr 21 11:00:29 2025 GMT
Not After : Apr 22 11:00:29 2025 GMT
Subject: CN=82d862277514f67f9ba2debc2d0f24d7e2d55c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d4:bd:c7:3b:13:37:9a:8f:3a:35:fe:48:1f:
37:38:84:3f:c7:bd:5e:5d:eb:3f:ff:63:51:3f:e0:
5d:3e:b3:7b:17:ba:96:63:d1:77:07:97:e2:09:de:
1e:dd:30:01:67:bd:9a:bf:e9:d6:17:bc:b4:9d:d6:
a0:45:f2:bf:3c:0b:d7:8d:82:6b:34:6d:20:7a:86:
d3:e8:a0:b9:8e:bd:8d:49:9c:6e:39:45:0e:a8:79:
12:19:f3:cf:ee:62:45:aa:82:b9:4c:cc:ad:e0:3f:
f2:e4:2c:1a:ea:dc:ad:c6:37:6a:16:74:93:27:a9:
36:93:1e:f2:12:2d:00:eb:67:1b:db:cb:0b:6a:e6:
e2:2f:a6:e5:d9:19:37:f5:53:e5:3e:97:8b:49:1b:
ba:bb:60:91:ee:b7:be:5d:66:f3:89:d9:5a:55:b2:
27:2b:25:69:fc:b9:3c:2b:9e:65:23:e6:2a:67:0e:
ed:c9:68:a1:57:5d:13:0b:ea:60:2b:57:af:19:b1:
e2:64:50:a4:6e:b3:5d:6f:d3:d2:aa:f3:8b:ef:af:
5d:03:98:7b:99:37:38:46:94:21:70:61:7b:b9:6d:
ce:11:27:61:b9:7b:c6:26:be:6f:6d:41:c4:8a:95:
d1:be:9c:5b:54:23:5a:ac:19:0f:27:87:ab:b0:de:
fd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D8:62:27:75:14:F6:7F:9B:A2:DE:BC:2D:0F:24:D7:E2:D5:5C:8D
X509v3 Authority Key Identifier:
keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:31:05:59:97:e4:1b:96:61:bf:8f:fd:28:97:9f:99:f7:da:
45:27:e8:f0:51:f6:2a:c8:7b:f5:a8:88:39:9f:67:7c:6c:ef:
dd:a8:33:a5:31:4d:2c:0d:03:60:a5:d6:34:1a:8a:fa:ae:13:
69:8e:09:78:04:cf:87:b1:ba:5e:d7:c0:35:d9:15:3c:0a:37:
b3:c0:f0:74:f2:3d:8e:2d:1f:95:c2:b8:e4:cd:59:89:4c:6b:
79:03:71:d3:5a:61:a2:b1:1b:b7:44:2e:bf:f8:35:00:85:cf:
2e:d9:e5:34:14:73:e3:72:bc:05:76:1b:8b:93:99:87:40:25:
26:bd:e1:ce:2a:42:00:01:1e:25:17:91:20:ae:32:49:69:73:
19:a7:1c:9c:14:d8:a6:33:4f:7f:22:9a:b0:9f:1e:06:81:be:
83:20:52:66:2f:3d:ec:ef:25:bc:69:a2:ca:55:a1:56:88:28:
dc:3a:3b:eb:5d:d0:b1:be:f1:36:ee:38:06:b9:8a:2e:95:34:
64:58:b7:6c:0e:f4:8e:9c:29:3d:74:92:9d:0b:34:9b:b7:7a:
f4:65:61:98:dc:5a:93:59:ee:6c:1a:b1:fb:97:b5:a8:0f:21:
ea:c7:bd:d3:54:38:0d:0d:c2:8a:0e:91:53:ac:f4:a7:d7:19:
c5:eb:0c:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:19:48 2025 by rpki-client