Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: XfFvoLtEiz7gy9inw71tjKCwRbCe2oVDathyv5E/ijs=
Subject key identifier: C4:65:1B:FD:DD:C1:E5:1C:83:BA:23:3A:77:EC:7C:A3:F1:DA:A1:A2
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 019654C9C7394A083E95902D571099ADEA02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 0115
Signing time: Sun 20 Apr 2025 20:00:31 +0000
Manifest this update: Sun 20 Apr 2025 20:00:31 +0000
Manifest next update: Mon 21 Apr 2025 20:00:31 +0000
Files and hashes: 1: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: sYnWQ91pmHK5nfAX3VRizNSsMF+aSW1wCHWlNdSA1z8=)
2: zIZvUw6LEttnk9GqCkFL8S-ncbM.roa (hash: g5dRThI/Wu6nM24igsF8Y2hQEgVjjdxUN3aRLJWGc3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:c7:39:4a:08:3e:95:90:2d:57:10:99:ad:ea:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: Apr 20 20:00:31 2025 GMT
Not After : Apr 21 20:00:31 2025 GMT
Subject: CN=c4651bfdddc1e51c83ba233a77ec7ca3f1daa1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d3:0e:64:98:ae:eb:e7:a6:5e:18:92:25:6c:
1b:21:7f:cf:93:5b:7c:0f:30:c3:bb:e2:7f:6f:55:
c5:0f:89:02:66:17:77:3f:7d:a2:7a:9e:03:cb:38:
7e:db:52:dd:57:d6:67:b4:e3:b1:88:8e:71:ab:c6:
01:c6:23:ae:c8:9c:a3:9a:5c:b3:b0:fc:ea:9f:4a:
65:5b:4a:0b:a2:98:8f:3a:f9:c3:61:87:f5:e3:77:
25:df:d0:48:bc:c3:ca:36:3f:4f:75:16:8a:aa:0d:
86:1e:fe:47:16:0f:13:82:4f:5a:b0:09:cd:5f:83:
00:5e:8b:5d:e6:2b:e3:2f:de:64:ee:27:6c:50:cb:
33:f1:df:2f:e6:bc:0d:7b:7d:09:a8:83:81:f1:0d:
ca:f7:7e:e4:f6:66:5c:c4:b4:50:d7:d3:4f:28:4c:
5c:e8:2d:d0:c5:cf:41:da:59:a6:b4:4f:a9:f4:6d:
66:6a:16:61:43:2b:d9:83:d8:3d:bc:3d:46:d4:99:
95:1b:99:10:3b:cc:1a:09:96:c9:12:61:f0:60:a0:
a0:9f:ec:b4:e5:21:90:0e:4e:4a:f5:2f:5c:9d:b8:
ee:fc:0b:d2:0d:a8:6a:8e:1c:f7:df:45:48:37:82:
7b:d0:dd:30:04:41:95:38:a3:21:a0:92:07:35:6a:
1c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:65:1B:FD:DD:C1:E5:1C:83:BA:23:3A:77:EC:7C:A3:F1:DA:A1:A2
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:36:15:24:36:3b:bc:7d:f3:c3:b7:18:79:02:ed:c2:f8:5a:
78:8e:3f:a0:65:1e:39:91:99:b3:f9:e4:fb:b5:aa:1d:5e:c0:
98:bc:61:b6:a5:ff:df:f3:c6:1f:78:41:b5:72:8d:57:c6:0c:
0f:22:c2:66:8e:26:4b:d9:56:40:0f:bc:40:3e:5f:31:5a:3f:
07:03:9a:18:6b:37:72:38:ae:f5:24:ee:37:6e:55:c8:05:1d:
a2:e7:06:7a:e1:09:ec:a2:bb:79:58:5e:77:41:1a:ee:8b:15:
86:18:70:bf:6c:e1:aa:f7:56:02:70:de:41:3e:00:57:30:9f:
05:65:79:e7:e0:fb:e8:ef:3e:9f:bb:f8:c1:ea:ce:2a:11:de:
23:cf:6f:f8:08:17:5e:a8:1b:6e:c1:27:d9:63:63:bc:31:d7:
28:e1:25:b9:2c:56:e7:73:51:3d:9f:72:cf:9d:de:00:1f:2c:
3a:bc:37:81:5a:7a:c4:8b:be:db:ba:ee:74:09:91:3d:a4:8d:
f3:de:1d:d8:84:12:21:b6:23:9c:5e:52:63:c1:28:9a:92:22:
3f:12:e0:6b:4f:4f:ca:64:55:09:62:0c:f6:df:3f:c1:99:70:
3d:b9:e9:17:71:46:5f:8c:58:49:20:82:6f:fb:62:a2:e4:f7:
d7:26:32:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:31:30 2025 by rpki-client