Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
File: ylIg5T5PgcoljM_qGHKAKA9fYho.mft (raw, json)
Hash identifier: +anFl/CyfzlkopcHmuKgoJObnJ/bpl0cTzhMtVkT++E=
Subject key identifier: 3F:F9:05:7F:95:E5:D3:3A:70:BF:5F:39:7D:9A:25:2E:1D:68:F8:57
Authority key identifier: CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
Certificate issuer: /CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Certificate serial: 0196865ABD50CCC61A5D5CD84C18BAE50AB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
Manifest number: 1515
Signing time: Wed 30 Apr 2025 11:00:15 +0000
Manifest this update: Wed 30 Apr 2025 11:00:15 +0000
Manifest next update: Thu 01 May 2025 11:00:15 +0000
Files and hashes: 1: HnblzgjRhv7ohFCku2dgX5Jr7vw.roa (hash: o9K0gGCxUA0R4sGgN9lj9M6IzHoNtSXBjdq46DJlaa4=)
2: dem0uBwT7g7YZDZIQsS-aXVQdOI.roa (hash: XISttqO419C7SgkgSmOfFJd6GmXYZpUuMQWw/YZudzA=)
3: ylIg5T5PgcoljM_qGHKAKA9fYho.crl (hash: hGLu4qruzvAR3SxZ7wSKT+Losy9ksfRpjKoAnBXI2qE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 11:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:5a:bd:50:cc:c6:1a:5d:5c:d8:4c:18:ba:e5:0a:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Validity
Not Before: Apr 30 11:00:15 2025 GMT
Not After : May 1 11:00:15 2025 GMT
Subject: CN=3ff9057f95e5d33a70bf5f397d9a252e1d68f857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:92:59:8c:f2:60:9d:f1:e5:57:fc:d9:04:60:
9b:e1:9f:a3:64:f6:bd:3d:29:83:62:fe:7e:0c:02:
19:7e:a9:c9:2b:18:a0:95:a8:2f:3d:45:09:30:5e:
2a:e0:37:46:21:3d:1e:46:4b:90:d4:ef:57:b3:ff:
dc:f9:d0:14:3b:ea:a7:d4:92:52:39:75:5f:36:52:
72:0f:14:21:72:ab:73:9e:6e:13:10:ea:54:f4:6d:
9f:16:53:0f:2b:1b:54:be:ec:b8:31:ac:35:c2:2b:
e2:b7:35:f2:30:3f:26:c4:dc:39:2b:b1:e5:d3:05:
5f:f1:23:ca:8b:64:d7:de:39:81:37:27:65:89:ec:
99:14:a0:90:2d:35:9d:52:ae:26:df:97:b0:17:89:
5a:4b:2a:ca:20:56:28:2d:c9:63:8f:ae:f0:d4:f5:
d9:6d:6c:ff:e1:ff:60:da:07:f7:42:3b:31:eb:13:
13:56:f1:88:4e:d9:e4:34:45:e2:e9:88:e7:4c:3d:
ef:00:ca:52:52:b0:4e:91:ef:33:db:87:8c:c8:c8:
39:b8:76:af:a1:27:6f:d3:18:4a:a6:24:aa:5e:75:
3d:86:d6:15:6d:ec:01:ea:37:b8:f9:f6:c1:27:93:
3b:3b:53:93:b9:f2:f0:cc:d3:c9:3f:39:7b:92:ec:
71:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F9:05:7F:95:E5:D3:3A:70:BF:5F:39:7D:9A:25:2E:1D:68:F8:57
X509v3 Authority Key Identifier:
keyid:CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:6f:ec:1e:be:ef:9a:a9:11:ea:6a:25:82:b0:ac:2c:f7:52:
ba:6d:5e:b5:64:d5:82:1f:6f:7a:72:73:15:19:46:6e:bb:96:
25:84:0a:e2:33:14:ed:17:a4:30:67:98:55:77:0c:ce:a6:d0:
2e:a2:e9:47:61:34:10:1c:3b:e1:1f:79:26:d7:18:da:19:10:
28:09:4c:22:3b:00:a1:86:a3:b5:65:07:05:19:bf:ab:19:3c:
2e:f0:84:e7:3a:95:79:c8:72:dd:7a:00:4b:2b:ed:e1:11:90:
e2:4d:21:df:9f:83:4c:59:16:55:43:33:db:de:8d:4d:1d:83:
71:c6:f8:3d:62:25:42:ba:67:92:73:f9:c0:79:3a:70:d6:5e:
df:d2:49:45:f8:7c:03:0d:dd:48:3e:52:ab:5f:dc:e3:6a:dd:
c4:a0:fd:c2:46:1e:96:4f:d2:c6:f6:63:c2:6a:0c:4b:8b:91:
21:54:a3:61:19:b0:9d:4a:7c:ba:7b:59:df:5b:90:58:64:04:
39:07:2b:18:e5:c7:c4:6e:14:e0:eb:67:ea:5a:ea:16:1e:93:
78:5b:59:85:86:d4:a6:e7:dc:9f:57:8d:68:22:a4:8b:0b:61:
21:54:c9:2c:2a:8d:4f:19:06:be:27:30:8e:32:3d:30:d5:f9:
03:7d:f2:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:37:34 2025 by rpki-client