Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
File: Y42aUATFktCTzImw2QdS4nnVGFQ.mft (raw, json)
Hash identifier: gYemgCEWiD5jEHgtjSrxwk6kJRUYDLaxtc915ZPpHh4=
Subject key identifier: E2:CA:A8:BB:8A:A0:76:D8:CF:F8:CB:97:2F:49:20:E8:3E:F8:05:84
Authority key identifier: 63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
Certificate issuer: /CN=638d9a5004c592d093cc89b0d90752e279d51854
Certificate serial: 01967868A25BDC756C17C9B10CD453BB0F6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
Manifest number: 1510
Signing time: Sun 27 Apr 2025 18:00:45 +0000
Manifest this update: Sun 27 Apr 2025 18:00:45 +0000
Manifest next update: Mon 28 Apr 2025 18:00:45 +0000
Files and hashes: 1: 5t5Dcx5tNkWQ_sy57yYX9uF0BSc.roa (hash: PzSrKv8Rw8leyPQ1z/odwxbCskApuD1oeaEEXKXPsNc=)
2: Y42aUATFktCTzImw2QdS4nnVGFQ.crl (hash: XhD2KmuNMK38ATsH/w3+i1lC2VzZlgXpMTFDNQudLMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:a2:5b:dc:75:6c:17:c9:b1:0c:d4:53:bb:0f:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638d9a5004c592d093cc89b0d90752e279d51854
Validity
Not Before: Apr 27 18:00:45 2025 GMT
Not After : Apr 28 18:00:45 2025 GMT
Subject: CN=e2caa8bb8aa076d8cff8cb972f4920e83ef80584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:13:96:33:93:9d:75:78:26:fd:44:52:59:dd:
9a:fa:06:12:f6:e3:a4:96:75:e2:a2:d4:62:2e:2e:
78:ae:05:d8:dd:6e:7b:7a:7e:69:0d:88:57:11:0c:
05:ac:a0:3c:03:cb:b8:b6:92:80:60:f7:8c:a8:62:
9a:1f:f1:7f:ab:1f:2d:30:02:7d:21:8c:db:cf:10:
69:d9:5c:25:54:f1:df:03:6a:2a:55:9a:d5:67:bc:
ef:71:df:36:6c:48:b4:ee:24:65:8e:e3:fd:fa:1f:
d6:7e:84:e1:70:d4:11:f4:35:7f:8b:6e:8d:e9:0c:
a5:d7:e0:16:13:88:ad:1c:4e:c1:17:23:87:de:43:
76:2a:54:58:3c:0a:5c:c1:7b:02:d7:46:89:c1:b3:
a8:ab:55:57:39:05:d1:97:43:49:d8:a9:cf:75:9f:
a5:5c:62:e3:ac:5f:19:a8:27:6b:b3:4f:ae:e6:bd:
6e:af:54:f2:cd:b3:98:61:91:5a:16:c8:5f:db:ff:
c6:6d:ef:09:77:db:b3:cd:da:6b:40:cc:9f:aa:7b:
1d:6b:56:fd:35:39:93:4e:3a:13:2d:fe:a1:48:2a:
46:f3:d6:dc:b1:94:f4:e3:b4:2a:4a:72:3d:05:e9:
d2:64:a7:a4:a9:73:c5:9a:ed:9e:31:32:1a:86:49:
cc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:CA:A8:BB:8A:A0:76:D8:CF:F8:CB:97:2F:49:20:E8:3E:F8:05:84
X509v3 Authority Key Identifier:
keyid:63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:6d:9a:43:f4:57:c4:24:1c:e4:0e:5c:d6:48:94:68:0a:fe:
74:e5:d8:3a:0e:49:0b:a6:dd:1d:38:da:8f:4f:be:8e:33:fb:
c4:25:92:8b:06:11:1d:7a:22:54:a3:14:df:c8:77:db:49:ec:
02:84:e0:f7:e6:3e:be:75:2f:f8:9e:1b:ed:7a:c0:36:0b:8a:
f9:59:06:ad:0a:ac:cb:9f:eb:58:88:5f:df:c5:1e:e6:aa:cf:
a5:f7:d4:0c:d2:d2:c1:bf:cf:4e:33:60:5d:86:a1:0f:67:25:
9e:1d:3a:bf:d6:f2:62:89:1e:85:cd:fb:9f:21:93:65:b1:16:
02:6e:57:b8:d5:90:b4:74:04:26:a0:00:e1:c1:c5:65:a4:38:
dc:f4:08:dc:3b:89:f6:01:23:28:b7:05:cd:1f:be:8b:5f:7e:
a8:86:bb:b8:c2:e7:d8:8a:b0:c7:50:b1:f9:28:1a:8c:8a:4d:
25:32:f2:bd:4e:6b:44:e0:91:ca:e1:5c:73:0a:ff:86:35:3a:
52:53:74:0a:29:d8:dc:4e:3e:e3:44:42:35:66:e1:04:b1:a4:
ee:4b:0c:3e:1b:09:c9:92:19:0b:50:7d:51:2c:6e:1a:24:c1:
1a:3f:a9:37:ac:d5:8e:b8:86:11:6a:93:c4:06:2c:be:28:0a:
87:fb:73:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:17:33 2025 by rpki-client