Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
File: yAYJ8hhRvff3TtGPDwnfku23U1U.mft (raw, json)
Hash identifier: s5bMp8CyvkQeb5aoo1IDhtWDUCcP7uWHBROM6SQ+LlI=
Subject key identifier: 32:71:48:81:AF:15:49:23:54:8B:13:A0:F0:A6:1F:C6:7E:40:09:1F
Authority key identifier: C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
Certificate issuer: /CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Certificate serial: 01967C458DAB1DFEFA54EDB7E5B1E6083B6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
Manifest number: 0CD7
Signing time: Mon 28 Apr 2025 12:00:55 +0000
Manifest this update: Mon 28 Apr 2025 12:00:55 +0000
Manifest next update: Tue 29 Apr 2025 12:00:55 +0000
Files and hashes: 1: Wg-bSrUatmukyH3xDDiSbozsSDE.roa (hash: +C5Ooc81ApTJACiPZcILtsd+XtVBtietyO7rZMjbj2I=)
2: yAYJ8hhRvff3TtGPDwnfku23U1U.crl (hash: 8G+1Rb5PdZ4zCCTEonKAyHedhzjSXgkriardtIDUH44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 12:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:45:8d:ab:1d:fe:fa:54:ed:b7:e5:b1:e6:08:3b:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Validity
Not Before: Apr 28 12:00:55 2025 GMT
Not After : Apr 29 12:00:55 2025 GMT
Subject: CN=32714881af154923548b13a0f0a61fc67e40091f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:23:04:53:4c:6d:eb:14:13:8a:a4:db:ce:d5:
60:26:2f:a3:e6:a0:b6:24:1a:45:9d:16:90:22:cd:
0c:96:eb:a1:b1:38:e5:d3:7d:2d:9a:11:45:78:7a:
84:74:4c:0a:54:3a:dc:9d:f4:4d:da:1a:97:44:8f:
74:6c:85:5c:17:05:ad:fd:2b:d9:6a:01:a2:24:1c:
ab:ec:0b:b1:6b:de:85:c3:7a:46:63:25:df:10:b7:
85:01:fd:f3:6f:51:13:91:79:bb:b3:2d:0a:50:5b:
d1:69:af:0d:aa:ab:30:20:9c:ee:0d:cc:07:4a:78:
bb:90:93:a7:d8:3f:5e:3f:62:fc:58:b5:a2:cf:6c:
c0:1e:0f:1b:f5:9e:b4:4d:c7:4a:29:66:01:91:61:
33:2f:c6:88:dd:b5:f0:66:ba:9c:79:ff:f8:2d:3d:
cf:ea:54:ee:c8:a4:5f:e1:69:dd:0d:b6:02:b8:fe:
7d:5a:96:e1:4d:11:a2:98:9d:fc:70:c7:b2:66:f0:
21:82:e0:8b:a3:48:32:f2:06:31:09:36:dd:65:ac:
02:53:b6:f7:eb:1e:e1:bd:fd:bf:e9:59:dc:00:3c:
51:8d:c0:9b:a2:f8:05:84:8c:6a:89:a9:8b:4a:f4:
2c:26:f1:7d:94:be:08:a5:3b:e0:a5:ca:b8:bb:8f:
40:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:71:48:81:AF:15:49:23:54:8B:13:A0:F0:A6:1F:C6:7E:40:09:1F
X509v3 Authority Key Identifier:
keyid:C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:d4:4f:ea:b7:09:d7:67:71:69:04:69:4e:1e:fb:e4:01:87:
cd:69:ed:46:a6:b9:88:90:5b:ce:15:43:c4:e6:c8:51:10:6b:
81:bb:b7:8b:17:9a:23:a7:b8:48:6e:35:29:ee:be:8a:77:4e:
a4:60:9c:29:86:5d:5f:07:bc:0b:d5:93:c1:9b:e1:7e:28:73:
d5:11:fa:3e:6a:20:98:70:f2:da:4f:e6:00:83:e8:91:68:af:
fc:e9:45:ed:36:38:fa:b4:d8:e7:a5:53:01:15:f7:b8:89:2f:
1d:48:9e:4a:e2:0a:83:58:0b:4e:00:77:6b:83:0a:9e:fa:6f:
c0:f7:ca:47:f6:1d:4a:4a:b5:3b:a9:3a:14:57:16:d8:5a:f7:
09:84:d8:18:79:a7:c1:d7:31:85:7e:38:73:b7:3f:0f:56:ee:
d4:9c:d9:16:6b:7f:4e:ac:15:9d:e1:32:23:88:a8:88:59:48:
86:9b:02:0c:b7:9b:1a:77:81:2b:15:f2:2d:a9:af:03:67:56:
da:74:61:61:a9:67:7d:b4:0a:77:dc:ae:75:c5:2d:9c:a3:aa:
4d:17:8b:78:42:39:43:d1:ac:eb:09:8b:62:cf:41:59:65:30:
da:b7:ee:ae:af:8c:56:38:fb:83:b5:e2:9a:62:5a:02:54:61:
4b:9a:ab:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:44:37 2025 by rpki-client