Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: EtDQZZQBMl3LCauMG971fnvS7qzi1olli32AEubHzuM=
Subject key identifier: 5E:F3:7F:73:38:EE:F1:DC:B3:7E:16:EF:C4:9B:9E:C8:64:C4:ED:4A
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 01967EA1F54D3670B4F57BAEFD65A6FAB142
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 07B8
Signing time: Mon 28 Apr 2025 23:01:05 +0000
Manifest this update: Mon 28 Apr 2025 23:01:05 +0000
Manifest next update: Tue 29 Apr 2025 23:01:05 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: ZCMPdgfTPax0mmuU8kBY03b2oiIDwKD5gsY50cLf6P0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 23:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:a1:f5:4d:36:70:b4:f5:7b:ae:fd:65:a6:fa:b1:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Apr 28 23:01:05 2025 GMT
Not After : Apr 29 23:01:05 2025 GMT
Subject: CN=5ef37f7338eef1dcb37e16efc49b9ec864c4ed4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:07:a4:25:fd:b5:36:55:ce:36:14:7f:82:7a:
de:28:42:55:53:f8:4e:40:5c:80:ea:c0:08:2f:f2:
7c:1f:27:35:9a:f0:e5:aa:4b:a0:29:af:a4:3b:8c:
13:fc:84:86:0c:57:93:b1:03:13:53:82:63:93:34:
76:84:31:8d:24:01:6b:97:1e:d8:82:1b:ce:8c:5a:
52:85:85:25:53:8e:9b:63:07:a5:4c:0c:57:0d:f3:
b5:d4:bc:05:10:82:84:44:32:e5:a4:a8:cf:8c:88:
0f:0d:ee:0e:76:a3:7c:e3:e0:0c:e5:09:5a:32:b5:
b3:53:f9:bc:e3:8f:12:2a:9e:1f:45:cc:2f:ce:f1:
7b:cc:a2:7e:97:72:ce:45:42:00:95:10:25:96:67:
e2:7d:47:d4:93:68:7c:78:9b:58:32:d8:f4:ab:54:
d0:48:bb:5d:9e:d1:55:99:99:b5:1c:31:98:c2:47:
a5:b9:1b:70:d2:99:ec:e5:45:23:ed:3d:6c:4b:14:
12:5c:f8:d0:08:de:73:c6:dd:ae:8c:26:0f:23:c0:
8b:6d:c7:0b:0b:ea:3d:a0:a7:b5:89:a5:87:7e:ce:
bd:17:6f:d6:aa:4f:fe:33:e3:e9:97:fa:ed:b1:37:
4f:5b:e5:d2:ee:1d:08:bb:e5:26:85:e9:20:e6:31:
17:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F3:7F:73:38:EE:F1:DC:B3:7E:16:EF:C4:9B:9E:C8:64:C4:ED:4A
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:c5:0c:30:0d:27:4d:14:97:09:59:31:e4:22:91:75:f4:e5:
ac:5e:0b:93:70:8f:da:7a:9a:ff:b9:0b:f9:06:62:28:53:e6:
47:f3:b7:85:e1:8e:08:e8:f9:1f:4e:77:5f:ff:1a:55:0d:65:
93:01:ec:cf:12:fb:8e:8f:07:46:ea:cd:76:aa:27:1d:18:85:
06:24:3d:ec:89:85:19:65:58:d4:7e:34:e2:49:74:6c:e4:b2:
06:78:aa:2f:b2:98:21:54:d6:b4:3c:5d:7c:ec:98:ac:15:16:
5f:12:6a:54:39:a4:a1:94:96:25:a1:00:78:ec:0f:d7:c3:c5:
35:02:d3:86:61:13:a3:7d:7e:61:44:04:e7:44:62:34:f6:6d:
20:c4:01:59:08:b2:44:8e:9c:c2:c4:a5:2e:53:f8:90:a6:6c:
fe:70:ad:82:23:6b:d1:8a:77:41:5b:57:49:9d:31:9b:6d:ee:
64:41:8d:e3:06:5f:3c:47:b2:9f:94:a9:4d:19:45:28:67:f3:
fd:cb:44:56:1d:57:3e:7b:0f:05:5b:4b:5d:04:63:08:ea:ca:
e6:5d:72:c9:f8:41:4b:8f:b4:9b:b7:c7:00:cc:30:6a:ed:70:
f1:44:3f:9c:c3:55:23:dc:ec:24:e9:4d:33:2f:56:5d:17:1e:
74:62:d0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:20:47 2025 by rpki-client