Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json)
Hash identifier: 6kuBvGM3eHIIOSRlS0jR3diyYacLHp2/Zzueb3FGp3Q=
Subject key identifier: 24:97:6E:73:4E:B3:9E:1F:02:08:8D:21:9D:6E:87:E6:4B:99:42:53
Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c
Certificate serial: 01968F2782F6F6B8692A2A1854B2D6DA70FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
Manifest number: 0FAA
Signing time: Fri 02 May 2025 04:00:53 +0000
Manifest this update: Fri 02 May 2025 04:00:53 +0000
Manifest next update: Sat 03 May 2025 04:00:53 +0000
Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: IXiQsMYDxNvMgqbeG3VxLWbQ9xOttElDd7GFh5AeoRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:27:82:f6:f6:b8:69:2a:2a:18:54:b2:d6:da:70:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6117d6158043150b0ad224a0648df0185706019c
Validity
Not Before: May 2 04:00:53 2025 GMT
Not After : May 3 04:00:53 2025 GMT
Subject: CN=24976e734eb39e1f02088d219d6e87e64b994253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1f:46:de:ae:05:6c:db:f3:a3:85:7e:62:b1:
d0:9d:fa:77:86:6f:0a:96:2c:d7:39:80:e7:81:82:
61:66:c2:29:d3:f0:f2:4e:be:26:2b:1b:ef:fb:20:
03:14:ad:1c:fd:70:1a:f5:02:f6:45:c8:cc:7a:f9:
29:c9:30:7b:ce:57:92:f8:6f:7b:bd:65:4a:14:f3:
db:94:f1:b9:a6:ce:f7:12:d5:2b:b3:3e:44:2c:50:
9a:77:07:bf:dc:6e:ab:61:db:02:fc:44:df:0f:13:
33:b1:72:25:e9:75:76:c3:0a:7b:ab:52:53:04:02:
49:27:a7:7a:0c:8a:a2:2e:dd:08:09:d9:f9:87:68:
3f:ff:d8:78:6b:92:4a:c0:42:e8:6f:4e:22:a1:ec:
50:1f:fd:68:d2:f3:1e:df:fa:b5:aa:d0:11:5d:89:
e0:09:10:2b:b0:dc:75:ea:ed:78:03:e6:3b:2c:f7:
41:97:3c:82:42:49:ee:c5:ee:53:ae:58:00:e4:a5:
56:4e:59:58:c0:7e:4b:6a:11:8b:eb:7a:c0:ce:8e:
54:e0:c8:58:21:14:57:62:55:b2:00:f0:8a:df:6b:
13:40:45:5d:18:a7:3e:95:76:42:3c:ac:5a:e1:14:
44:af:be:e6:88:9f:9d:c2:60:94:3e:2f:d5:c6:21:
c3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:97:6E:73:4E:B3:9E:1F:02:08:8D:21:9D:6E:87:E6:4B:99:42:53
X509v3 Authority Key Identifier:
keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:e1:9a:54:e2:e7:b0:a3:b4:75:80:08:f8:05:87:c8:5c:3a:
37:28:f6:02:f0:b8:e6:09:34:43:51:90:9d:d6:33:0a:aa:6b:
37:74:0e:ba:33:66:f6:cc:56:3f:5c:11:63:b4:0f:f0:ac:4d:
bc:44:30:1f:29:dd:9c:45:9f:f6:d3:10:b5:42:e3:bb:5e:81:
ba:33:32:7d:86:7b:20:f0:e0:66:14:5c:c6:4d:87:80:f3:71:
d0:57:08:b7:0b:67:2f:cf:ce:33:7c:e7:c2:41:af:89:ab:95:
7d:67:e2:b5:36:d0:d4:51:bf:c6:09:20:6b:c3:a2:40:0b:ad:
30:6b:78:77:48:62:79:0a:89:97:98:db:e3:c6:24:6c:44:6b:
f4:e3:5d:3a:25:ab:51:f9:31:f2:97:5a:c6:b2:06:d1:9b:44:
6f:a9:53:5a:fe:06:e1:fa:b9:a7:cd:a9:71:7b:f0:69:31:0a:
fc:00:1e:10:3f:30:4c:57:aa:80:fe:73:e9:19:17:5d:14:30:
94:47:21:a8:75:56:17:9c:01:05:48:1a:84:a8:9f:4c:ae:ed:
8c:73:14:41:26:f9:b4:d0:23:e2:73:ef:1b:a5:c4:62:71:14:
50:b5:90:9e:94:23:11:40:10:e7:84:c0:94:ef:81:50:45:9c:
22:7b:52:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 11:14:03 2025 by rpki-client