Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
File: pYQcxzKsc43B4_5nwS5RBL74Y7o.mft (raw, json)
Hash identifier: pemXF51ya4RfFgo0ifG0fCJGLzMWA98DwWOFJWwGEeU=
Subject key identifier: 0C:77:5A:3E:25:9E:37:9D:6A:11:6A:AC:BC:DB:35:A8:C0:5E:D8:40
Authority key identifier: A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
Certificate issuer: /CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Certificate serial: 01968210B3C305A0FA6B70BF121580998BA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
Manifest number: 0AFE
Signing time: Tue 29 Apr 2025 15:00:54 +0000
Manifest this update: Tue 29 Apr 2025 15:00:54 +0000
Manifest next update: Wed 30 Apr 2025 15:00:54 +0000
Files and hashes: 1: YFmwVrLg1hwmMKXx_Mm4unlp1Pk.roa (hash: k02tWA3CSFWvzMdYPWtnwp3L9wjqBp2dmnRijw+YwuE=)
2: pYQcxzKsc43B4_5nwS5RBL74Y7o.crl (hash: 24Fgnl3IszyNZO3R9fPFhLswWFV9RztE6ZCztfT/3Pg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:10:b3:c3:05:a0:fa:6b:70:bf:12:15:80:99:8b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Validity
Not Before: Apr 29 15:00:54 2025 GMT
Not After : Apr 30 15:00:54 2025 GMT
Subject: CN=0c775a3e259e379d6a116aacbcdb35a8c05ed840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:91:ed:2d:7f:5c:c5:c0:11:57:fe:c2:4f:6d:
ff:60:9f:99:82:81:84:09:5d:26:5e:eb:3f:6f:9b:
c4:6a:f8:60:6d:37:5e:8c:19:df:f9:bb:03:5a:51:
48:c9:1a:e6:2b:e2:b4:ac:70:79:2a:4a:9c:59:85:
97:0f:6b:d6:ba:52:44:30:cc:3a:b8:94:f1:5a:19:
a3:cf:41:17:b2:4d:51:6f:7a:26:ad:82:f0:f7:1b:
10:47:ae:77:1c:96:87:46:a0:87:0b:15:b2:53:bc:
8f:12:b7:09:9f:b1:b0:09:85:84:5f:ff:a1:32:6f:
d5:c2:4e:98:7e:70:88:ec:48:c1:ed:42:b2:df:60:
fa:b5:cc:b9:79:3b:66:ee:9c:2b:bb:d0:76:1a:ed:
f3:81:d7:14:94:5e:bd:9c:ba:e9:a6:4b:4f:1b:fa:
5b:64:70:15:15:b1:9c:a5:cb:e9:1d:f0:71:e9:3d:
f9:68:90:a9:7d:a6:c4:1a:83:34:55:38:f7:0e:73:
db:b3:dc:b0:f6:b8:35:60:db:b7:97:d9:20:39:9d:
d8:ed:d5:42:aa:03:0f:f4:37:f7:a6:59:52:0f:d0:
e8:1b:e4:d5:af:34:fb:06:fe:68:5a:ca:4d:84:09:
fe:f9:f4:9a:2d:4e:b5:2e:8e:f3:86:49:a6:fa:b5:
00:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:77:5A:3E:25:9E:37:9D:6A:11:6A:AC:BC:DB:35:A8:C0:5E:D8:40
X509v3 Authority Key Identifier:
keyid:A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:53:95:0f:19:de:19:dc:96:73:d9:9a:93:d8:81:f6:a7:eb:
4b:19:93:5c:d8:da:f8:e8:01:2e:cb:da:47:e7:e5:3b:56:bb:
1f:15:e4:cd:26:ee:ea:67:57:e3:01:76:7f:b7:e4:9c:0c:1a:
61:30:e7:7b:ab:06:3c:2b:96:91:84:4d:4f:a3:50:d7:56:08:
0b:f5:56:64:dc:f9:46:aa:fa:4f:82:79:1b:55:2c:bd:99:71:
c1:20:fc:00:36:c9:7d:21:10:2c:96:cd:25:e3:49:92:5c:2f:
db:c5:f1:ad:da:f8:05:e3:7d:0d:88:b5:8b:78:c2:34:f2:11:
87:cb:87:8e:28:3c:db:70:c9:c7:0d:b9:4a:d2:ad:75:98:f8:
9d:fd:b2:0a:0e:d5:f2:8d:79:36:2f:5a:6e:e9:74:9d:28:73:
54:8b:24:9f:74:37:63:84:fd:60:da:c6:c0:6a:a4:88:85:17:
84:30:4b:6b:e1:a6:9c:a6:36:89:48:94:af:15:77:ee:d1:f6:
d2:c8:ea:ed:68:9b:84:e3:b8:46:bb:0b:01:ae:bb:0b:27:a2:
86:dc:bc:69:bb:b5:4b:18:19:a2:68:93:95:77:4a:0b:e7:57:
50:1f:3e:a9:a2:c4:a5:4c:db:66:af:32:ca:ab:e9:07:d5:0b:
6e:91:f0:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 19:26:09 2025 by rpki-client