Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: v+VTu1fdiGTNWZp9Pxu1cPznWMaZmtutn3i0dLqy/zU=
Subject key identifier: 1F:DB:E5:52:4F:AF:71:A9:55:6B:8C:F7:5F:D3:4A:9A:4E:22:04:79
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 019655DD3B9196A33972AD0089CFBA65E3BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 051F
Signing time: Mon 21 Apr 2025 01:01:24 +0000
Manifest this update: Mon 21 Apr 2025 01:01:24 +0000
Manifest next update: Tue 22 Apr 2025 01:01:24 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: g1owS/tz25RZZnUDtyMGEdph4RSk+Ri2H+NZyTEecho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dd:3b:91:96:a3:39:72:ad:00:89:cf:ba:65:e3:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Apr 21 01:01:24 2025 GMT
Not After : Apr 22 01:01:24 2025 GMT
Subject: CN=1fdbe5524faf71a9556b8cf75fd34a9a4e220479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:65:24:4d:ee:00:fc:a5:95:5d:6d:be:0d:b9:
de:cb:98:6a:ff:a5:aa:0d:97:39:5f:17:d0:3e:87:
66:54:4e:e7:3c:75:8c:40:d1:22:e5:04:8c:a0:c5:
19:b7:88:f2:c3:53:03:f5:17:c4:3a:12:8e:ad:7d:
a7:76:34:4d:65:40:2b:54:2c:b2:0f:e4:16:35:3d:
31:36:4c:8f:41:19:82:53:af:fa:1f:10:85:6a:99:
ae:69:1e:76:fa:f7:86:20:2e:aa:6a:73:28:f8:6b:
ea:8f:8a:bb:01:99:48:15:51:8e:0d:37:11:d6:a3:
9b:2e:74:ce:14:0f:4e:00:91:a1:42:b4:97:c1:36:
96:ae:53:d3:e0:bd:73:1e:6b:4a:9d:64:bd:f8:dd:
31:93:f0:56:c3:96:57:e6:9e:6c:31:83:ab:42:e0:
a9:66:61:53:f0:41:df:f8:5d:6a:04:46:ab:dc:66:
ee:d6:21:89:39:0e:6c:58:ec:db:9e:4f:03:e8:d7:
f1:8d:f6:a0:ed:91:d3:94:20:c1:13:d7:e0:55:71:
a2:29:7a:c0:b1:c6:0d:c3:9e:b1:5f:18:f4:6e:b9:
7c:c2:8e:83:c6:d5:67:ca:bf:99:a6:a0:89:9a:86:
4e:8f:da:ac:2b:cc:f3:d6:5f:5f:f9:89:90:d4:47:
3a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DB:E5:52:4F:AF:71:A9:55:6B:8C:F7:5F:D3:4A:9A:4E:22:04:79
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:3b:8e:6c:af:31:1d:9d:99:0d:cd:06:b5:42:f5:a9:ce:9b:
c5:e5:fd:e0:90:be:af:1a:a2:94:b8:af:71:2f:89:63:39:c2:
16:65:a7:1d:36:2e:29:fd:d0:c2:7a:e6:98:1e:a7:df:b0:be:
ab:04:c7:79:19:e1:81:97:27:44:64:2d:d2:72:9b:53:bc:da:
05:d2:28:e4:83:1f:5a:2b:28:4e:c5:08:76:a8:d1:ab:55:0a:
08:7a:4d:9b:99:74:db:bd:25:12:34:6d:e0:f9:a6:e8:3a:6c:
67:2c:eb:63:50:03:41:6f:3f:18:4e:df:d2:c2:7e:30:87:4f:
3c:6b:1b:e1:c3:99:fd:42:f6:7e:45:c4:e2:cb:ea:dd:47:07:
58:70:51:1b:6d:7d:e9:c5:79:7c:c0:0e:3f:97:68:85:88:bb:
00:72:cf:14:bb:b8:8c:cc:7b:56:0b:89:c4:92:8f:f5:53:eb:
7f:96:31:d8:3b:50:23:1c:88:0b:39:09:53:ec:6b:72:53:74:
da:e5:70:10:4d:b8:65:ff:aa:23:ff:46:ea:27:3a:91:7a:5c:
84:c7:dc:5a:9c:a5:71:33:7f:fc:5d:79:af:84:69:f2:40:db:
cc:2c:e8:34:de:52:c4:f2:2a:95:ff:de:6a:f1:62:37:72:b3:
2e:7b:10:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:46:25 2025 by rpki-client