Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
File: yp4g0QNLRO916V_ffriIFbb30vg.mft (raw, json)
Hash identifier: R6PK2GBdb7t+JhLsjteRiCwcgk81XMfkrLvXGWULCRU=
Subject key identifier: 34:8E:AB:28:09:D7:A8:97:B5:A0:E7:6E:6A:ED:6D:7A:43:36:7B:4F
Authority key identifier: CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
Certificate issuer: /CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Certificate serial: 0196922863CE631E8E6DD6A7600C93CED7C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
Manifest number: 0D79
Signing time: Fri 02 May 2025 18:00:42 +0000
Manifest this update: Fri 02 May 2025 18:00:42 +0000
Manifest next update: Sat 03 May 2025 18:00:42 +0000
Files and hashes: 1: KJabg-goYfqIShBpOYNsGhfln78.roa (hash: 5RhSWnJ06JVLJawdnqYDlBh1ZbuwgFFPRLF+/W6LgAk=)
2: kwy8KgUICcwuEJop_j-CKqXu_cg.roa (hash: VpzhVsmBR8ZtX+oH6lHXeHMgxo/zL5mzYyLWURLNaRU=)
3: yp4g0QNLRO916V_ffriIFbb30vg.crl (hash: 95dtKT5LE2WSql4TiR+6Z+Bj8pWfWPGStr4fhKPyxKI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 18:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:92:28:63:ce:63:1e:8e:6d:d6:a7:60:0c:93:ce:d7:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Validity
Not Before: May 2 18:00:42 2025 GMT
Not After : May 3 18:00:42 2025 GMT
Subject: CN=348eab2809d7a897b5a0e76e6aed6d7a43367b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4a:79:78:4b:e8:41:38:85:fa:f8:a9:e3:4e:
40:23:e5:8d:71:aa:8e:e7:fb:c6:8a:64:c3:5f:43:
e6:8f:e3:6e:88:be:f5:0e:65:54:9b:b9:f9:a8:ad:
16:7e:24:13:11:5b:57:8a:4a:70:47:c1:20:da:b9:
58:19:be:67:02:07:68:d7:32:9e:db:3c:61:bd:f9:
ad:65:df:a6:39:66:98:75:31:66:c8:68:49:e6:c6:
98:17:92:97:98:11:15:6b:58:4a:06:05:b1:ad:58:
37:43:68:43:58:e4:c4:c2:ab:26:2c:ea:ed:20:94:
44:84:75:85:77:46:e5:c2:09:11:f5:d5:3d:9c:23:
1f:04:fc:03:2d:a0:3d:90:43:88:b1:d3:30:8c:d6:
36:9b:9c:c8:9a:8f:c3:6b:84:c2:cf:60:8f:dc:26:
b1:99:5f:82:2d:c8:8e:b8:7f:4b:00:94:f2:7f:3a:
d7:ff:78:17:3f:be:3d:3c:0a:25:67:0f:bf:3e:ef:
71:8d:dd:81:7d:4a:5f:34:bb:73:2e:3f:15:34:de:
f4:9b:a1:cc:33:9b:2f:c9:da:d9:c8:79:48:8a:5f:
04:12:c5:ff:f3:78:d4:31:a4:c0:de:c8:0b:b4:c4:
0d:e0:2d:78:b7:32:ea:d2:41:ff:19:44:f6:6b:42:
d1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:8E:AB:28:09:D7:A8:97:B5:A0:E7:6E:6A:ED:6D:7A:43:36:7B:4F
X509v3 Authority Key Identifier:
keyid:CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:3b:6a:71:48:46:f0:19:dd:2f:24:47:c9:b0:83:1e:0f:02:
f1:16:33:95:da:8b:6d:42:d0:c6:84:d8:bc:fb:0d:17:b2:71:
66:c2:08:0f:73:8c:6a:14:eb:1b:5c:b8:c7:2d:3c:c3:8c:92:
f3:a3:e2:6d:c3:48:99:c4:f2:65:7f:87:8c:34:d0:22:fb:64:
bf:ed:fa:24:c3:04:49:26:cc:75:e9:19:db:0c:8c:c0:87:79:
ab:6f:06:ad:94:f5:c4:48:00:70:f7:53:5e:51:d1:2f:33:b0:
09:25:f8:46:3c:3d:ab:78:5e:8f:47:51:2e:42:fb:27:55:cb:
e6:39:48:79:a2:1e:74:c0:8d:db:48:73:7d:b3:bb:be:36:bc:
af:96:80:d8:cd:ad:f0:28:96:e3:ab:d3:d4:bd:8b:2e:3f:bf:
e8:2f:85:44:35:9c:23:fd:55:d3:ef:f7:d0:41:38:dd:8d:28:
0e:6d:ee:eb:24:fe:97:e3:36:10:7a:b5:14:31:4c:84:76:42:
83:3a:7e:a7:62:03:96:b4:94:e9:6e:0f:33:b2:38:e2:35:8a:
a3:3d:1b:4b:e4:e7:b1:3a:70:1f:94:48:52:2d:bf:69:2c:cf:
0a:af:f8:af:c0:c7:c2:3d:68:ad:8e:65:c5:22:92:75:6e:cf:
46:c4:3c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 02:36:48 2025 by rpki-client