Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
File: YgsENUY3RvXyN9k2h77C6s8iRVE.mft (raw, json)
Hash identifier: RzHoN+gYzuvY6C3qKIn/9Lr0d0rZjTs4PWuCzgYjqSA=
Subject key identifier: 28:4F:7E:01:37:65:C4:BD:5D:5F:29:AC:B6:C7:EA:D0:27:2E:E7:15
Authority key identifier: 62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51
Certificate issuer: /CN=620b0435463746f5f237d93687bec2eacf224551
Certificate serial: 0196827E9660D01C0ED849C3A654E4DB7A05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
Manifest number: 06F7
Signing time: Tue 29 Apr 2025 17:00:56 +0000
Manifest this update: Tue 29 Apr 2025 17:00:56 +0000
Manifest next update: Wed 30 Apr 2025 17:00:56 +0000
Files and hashes: 1: 1-dSr_bwrsUwvfc9qQEvsXILMv3w.roa (hash: SF5ovM+mleomLfSZp/NHDAE5s82AVbxDbWTJFXrQrE0=)
2: YgsENUY3RvXyN9k2h77C6s8iRVE.crl (hash: cn4LXooID+/AgraiMo8pO71AOvN0dQ48+mqli7g2XgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:7e:96:60:d0:1c:0e:d8:49:c3:a6:54:e4:db:7a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620b0435463746f5f237d93687bec2eacf224551
Validity
Not Before: Apr 29 17:00:56 2025 GMT
Not After : Apr 30 17:00:56 2025 GMT
Subject: CN=284f7e013765c4bd5d5f29acb6c7ead0272ee715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:14:aa:f8:57:3f:cd:4e:14:ee:e1:31:e2:66:
ab:0b:d4:0c:d4:38:a7:e4:90:8e:20:13:9e:e4:33:
04:12:b1:31:09:46:6d:32:4e:d7:74:5d:44:3b:3f:
a1:73:f5:68:13:07:49:ae:18:4f:29:e1:ff:8b:64:
6f:33:c6:ab:2d:2b:75:36:70:85:36:3a:1e:7f:34:
14:b3:11:15:ba:bc:e0:d3:30:46:71:2c:19:d6:57:
f6:de:b3:cd:a9:5b:6a:69:a2:99:d9:49:8c:f6:c2:
39:ec:a9:34:b6:20:a8:56:7d:c7:88:24:3b:e6:f7:
bb:f6:2b:b3:2e:d9:1b:8d:e5:77:32:3e:6d:99:5e:
49:ea:b0:91:b9:46:f2:ed:df:8b:d4:25:68:d6:74:
af:ba:16:c1:fd:0a:7d:07:31:e5:f8:80:f1:76:80:
72:da:34:7a:08:26:22:e9:be:c8:17:ff:b7:ff:66:
9d:f2:8b:86:d0:51:60:8d:7a:18:50:11:5e:5e:08:
17:04:ec:a5:41:ec:29:03:9f:cd:75:04:4c:d9:71:
60:9d:cc:af:47:e0:f3:ce:ba:c4:69:f5:72:29:1b:
0a:11:62:6a:14:93:10:f2:87:6f:f9:0a:f3:11:44:
dc:1b:e7:aa:9b:95:34:1a:c9:f4:b0:3e:ae:53:6e:
c1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4F:7E:01:37:65:C4:BD:5D:5F:29:AC:B6:C7:EA:D0:27:2E:E7:15
X509v3 Authority Key Identifier:
keyid:62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:2d:0c:45:c2:f2:ab:be:fe:ed:d0:9f:e9:36:f4:a5:33:73:
6a:7d:f2:97:7d:eb:f0:c5:de:5d:85:20:f3:c9:26:71:39:7d:
88:71:19:57:e7:47:0f:69:bc:36:fe:c4:b6:24:d7:2b:2c:ae:
d3:99:96:5e:3b:31:56:07:eb:cd:66:77:22:f8:32:0c:75:69:
56:6f:66:15:71:8e:f9:20:22:1c:9a:2c:bb:af:48:dc:fc:2c:
c4:a5:e7:ce:45:08:30:f3:a6:ce:03:32:3d:e4:fb:f7:2d:d0:
84:38:10:82:fd:fb:a9:99:18:ea:f1:ff:67:a2:e7:c9:d3:8d:
73:c9:d8:42:58:08:0c:f9:96:13:ca:72:96:af:6f:9b:86:a5:
3f:f1:68:a9:81:06:33:24:7c:2f:93:fd:21:29:1a:a5:78:38:
99:35:47:35:f1:d9:c6:c3:ff:3f:9a:08:62:cd:1b:1f:70:e5:
ec:46:20:ca:a3:08:49:6c:34:29:f9:88:2f:e2:cc:60:ca:6a:
f4:d8:5b:ea:c1:fa:ac:53:e5:c6:0a:e9:ef:b0:3b:2d:61:18:
33:fc:ae:38:5a:b7:fb:fb:58:68:9d:e8:19:62:76:54:f4:c5:
06:40:1e:78:4b:90:bc:d8:90:e6:87:83:0e:95:8a:ac:61:32:
48:70:48:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 00:42:00 2025 by rpki-client