Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: v50DgiNU3wfQIo+/nsOzpe//cPdB8SbLVg8ejIkY5eQ=
Subject key identifier: 8A:CD:D0:F2:21:7B:85:C3:BA:07:2E:69:97:60:1C:A0:CE:65:32:91
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019679440B7F451E210DEC16735E1BF583A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 1511
Signing time: Sun 27 Apr 2025 22:00:24 +0000
Manifest this update: Sun 27 Apr 2025 22:00:24 +0000
Manifest next update: Mon 28 Apr 2025 22:00:24 +0000
Files and hashes: 1: NA5mgzoDK6jbbKh48XeliWtbDYM.roa (hash: 9nIV3wU01lTdftDhSQVjEb+D2h3DXok24aEDQGNAM3o=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: BREWoeikzYVdmMfhQV1u/JkNI+wWGDfNjiOchJ3Wsxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:44:0b:7f:45:1e:21:0d:ec:16:73:5e:1b:f5:83:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Apr 27 22:00:24 2025 GMT
Not After : Apr 28 22:00:24 2025 GMT
Subject: CN=8acdd0f2217b85c3ba072e6997601ca0ce653291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:17:4c:47:9c:e7:2e:df:57:25:66:5e:35:23:
f4:6a:b9:d9:3b:76:af:cd:4e:ce:6f:e8:50:ad:7b:
5d:65:93:d5:01:4f:e6:32:f7:eb:b9:1c:70:a6:76:
92:a3:37:77:98:8e:4f:3b:84:e1:8d:55:b0:77:e8:
3f:7b:d5:48:39:7e:66:73:c1:e7:dd:2e:7a:7f:46:
9f:83:ac:78:75:18:83:06:18:8e:38:4e:43:30:75:
47:70:03:98:6b:76:67:fd:48:ac:e2:92:13:72:a6:
9b:dd:58:a9:59:44:9f:69:70:32:13:81:07:fb:27:
01:dc:7e:9a:39:6f:04:f6:5f:1f:74:45:92:f3:85:
f5:df:86:2b:d4:0c:75:08:5c:65:51:40:5b:b8:58:
02:e8:b0:23:9a:aa:a8:d9:dd:f1:37:3e:cb:0c:df:
16:0a:d9:c8:ff:66:66:90:74:2f:76:30:9b:4a:88:
c7:7c:dc:13:44:97:a6:1c:1f:3d:19:5a:a1:fc:3b:
0d:c0:36:9c:c2:e5:31:00:8c:43:bc:bf:a7:73:00:
3f:01:a3:5c:27:3a:3f:d8:4a:b9:6c:b5:08:b9:92:
8a:77:8a:9d:1c:ef:84:2b:6f:07:8b:1c:9a:cc:08:
59:5e:ab:53:35:16:8b:61:1f:3c:21:b5:56:95:b6:
53:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:CD:D0:F2:21:7B:85:C3:BA:07:2E:69:97:60:1C:A0:CE:65:32:91
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:0f:75:83:26:dc:83:fe:a8:82:4f:92:c5:13:04:ee:c9:65:
65:eb:da:17:5d:00:cc:f6:a5:71:ca:dd:f2:50:d2:e4:ed:b3:
45:49:40:b5:82:5b:dd:da:20:af:cb:1a:f9:73:bd:fe:bd:0f:
60:23:63:3b:6b:dd:73:e8:f7:bb:7b:dc:bc:61:e5:be:8d:78:
8d:a0:64:62:49:ed:7f:07:65:d8:b8:e4:33:a4:59:e8:fe:df:
6f:27:41:7e:96:60:00:16:f9:55:b9:63:c8:f2:a6:d5:38:9c:
b4:0d:bd:8e:14:70:55:e6:ec:97:78:19:62:a8:a5:33:a7:64:
11:fc:c0:2b:bd:6f:0a:7d:94:1c:59:33:f4:f2:61:45:22:64:
ad:38:85:e7:53:b9:5c:6a:08:fc:29:21:0d:23:39:79:19:7d:
ab:c7:cc:3f:88:00:58:ed:a0:b0:e3:ab:ab:83:f4:8d:da:cf:
ff:dd:de:24:88:90:4c:85:6e:de:fc:07:2c:23:b0:d6:33:bd:
ba:1b:6c:b4:3f:77:ad:b6:64:1e:e3:d9:97:d0:ce:07:13:c9:
3b:86:31:44:40:84:ec:70:2c:67:91:18:d1:1a:2f:96:bf:1a:
1e:be:a3:84:b5:b1:fe:d7:0e:e9:c9:e7:4f:1d:6c:c7:e9:53:
d4:96:61:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:53:04 2025 by rpki-client