Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
File: yohtVYfshfcSQs1XztQJVEUoFo0.mft (raw, json)
Hash identifier: ZePJGd1y3i+1xWG40i+SuNzM18XaE0TmrJi1+I8wWBk=
Subject key identifier: 46:23:A2:CC:39:09:A7:24:55:1F:E3:0C:E8:2B:BD:42:9D:B4:01:32
Authority key identifier: CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
Certificate issuer: /CN=ca886d5587ec85f71242cd57ced409544528168d
Certificate serial: 01964D7E11B5645E796ACB7C29E584597A52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
Manifest number: 02AD
Signing time: Sat 19 Apr 2025 10:00:29 +0000
Manifest this update: Sat 19 Apr 2025 10:00:29 +0000
Manifest next update: Sun 20 Apr 2025 10:00:29 +0000
Files and hashes: 1: pedXVkU_3_VDst7sTxTSsbn2Em4.roa (hash: 3VM8cHkV3+LaUs7pbcy8XQqPPtDXhoRXeq5taS4kpbU=)
2: yohtVYfshfcSQs1XztQJVEUoFo0.crl (hash: 8/QuoQS0B+e+1WkCLOicaanqQs8v10PiJqihyzusEbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:11:b5:64:5e:79:6a:cb:7c:29:e5:84:59:7a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca886d5587ec85f71242cd57ced409544528168d
Validity
Not Before: Apr 19 10:00:29 2025 GMT
Not After : Apr 20 10:00:29 2025 GMT
Subject: CN=4623a2cc3909a724551fe30ce82bbd429db40132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f6:1a:8d:45:f9:cc:c6:de:68:fc:af:e1:74:
ba:37:70:a0:01:35:75:12:0a:5b:c0:37:73:85:3c:
cb:63:dc:12:05:2a:2c:c5:05:b9:e8:fb:73:84:45:
1b:2a:04:2d:19:67:70:ef:22:e8:a2:33:20:44:86:
12:b6:a9:e5:2b:76:86:de:9c:de:c5:b6:36:cd:68:
f3:73:b9:26:6a:85:27:a9:d0:87:5e:ae:25:31:ca:
f1:be:27:26:e9:28:72:98:09:3f:aa:eb:15:43:47:
10:32:52:cf:71:e8:7f:28:22:64:df:1c:6a:c2:69:
66:b2:9c:4c:59:02:a5:69:00:cb:44:33:db:1b:5d:
31:b6:31:d9:2b:0e:aa:7d:68:da:0d:f7:16:4b:58:
1f:d7:57:18:f2:e8:08:39:5f:f0:c6:bd:61:f7:e0:
21:d6:ae:b6:a7:31:34:f1:38:06:9b:05:78:6a:3b:
f4:da:52:8e:57:b3:d6:d3:f5:93:cf:a1:d9:d2:bd:
5c:50:66:35:a6:20:ce:2b:ac:f0:e1:40:52:76:40:
f2:4e:bd:a3:56:16:0f:0c:bc:b9:8b:a7:90:ef:97:
f4:06:4a:51:d6:12:61:d5:5e:36:bb:65:1a:1a:8c:
06:2e:28:b7:d1:bf:35:7f:d6:a5:cf:00:86:b8:db:
36:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:23:A2:CC:39:09:A7:24:55:1F:E3:0C:E8:2B:BD:42:9D:B4:01:32
X509v3 Authority Key Identifier:
keyid:CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:69:26:7c:a2:01:c5:96:31:b3:a1:41:71:6f:ef:4b:37:a2:
d1:a5:a7:a6:53:27:9e:c2:1d:42:36:c8:53:5d:18:37:4d:c8:
96:ab:59:96:e4:2a:5d:2b:7e:3d:e5:f1:e3:eb:e5:2a:a6:0c:
58:47:d1:a2:e9:6d:9f:bc:d5:75:cc:7b:fd:56:94:c7:c0:50:
fc:0d:15:1a:9e:43:82:2d:21:86:07:09:bb:79:d5:14:3f:ff:
1f:0a:ef:5d:77:81:ff:be:a6:e5:fa:1c:d1:fb:2b:7e:97:76:
16:11:83:b1:5a:9a:74:0b:6e:1f:19:8b:f9:6a:53:41:d7:4d:
4e:cd:a3:93:22:2e:e1:04:b2:b7:31:4b:5e:6d:c8:54:e7:88:
be:5e:31:d6:6e:61:8a:85:99:fd:0e:52:e1:fb:d2:c4:76:22:
3a:0d:64:31:4f:28:fd:c0:aa:77:ce:4b:96:9a:00:2d:d1:45:
79:da:4e:ee:02:a0:ff:58:9b:92:3b:23:80:da:f9:bd:f5:28:
ae:59:42:8e:a1:f9:ff:20:76:6a:b4:52:39:40:3a:96:de:72:
53:7d:5a:11:8a:ef:7c:4c:73:bb:ee:73:63:e9:7f:71:3a:3a:
76:aa:36:80:2a:4c:0d:cd:41:04:5a:ff:dd:5f:56:d9:24:88:
64:f2:d0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:32:54 2025 by rpki-client