Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
File: ymRB2dgH4NeM51IToQNADuFKfNw.mft (raw, json)
Hash identifier: fgHvrDbWNB6BFVWgoHqiMrTw9sRowGYUZweBTRbnFxU=
Subject key identifier: 7A:9D:47:33:EF:18:92:C7:FE:DD:03:9E:5A:C2:06:1D:0E:87:34:DA
Authority key identifier: CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC
Certificate issuer: /CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc
Certificate serial: 019684A36A03901697C676BE1883E7689033
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
Manifest number: 82
Signing time: Wed 30 Apr 2025 03:00:24 +0000
Manifest this update: Wed 30 Apr 2025 03:00:24 +0000
Manifest next update: Thu 01 May 2025 03:00:24 +0000
Files and hashes: 1: DIvBgZwS0Tso3aVf8EICkFleMLM.roa (hash: uFxBmENfxdwwVihL06QRGFulr8RLsRLP+PeZmW4yvHM=)
2: DwPkZR2Fk3XTPYVDkun2x24bTHQ.roa (hash: aeDwVoyUuAcFcTkf4BEFb0mmAMaQsJhzjIfzb6y7vIk=)
3: hebYL6M-z610FLivX7dM3OowSRU.roa (hash: IcjCerJ7GmqoXjZHtfS/CxBpCm6nwEU8LVGTcI76v2s=)
4: ymRB2dgH4NeM51IToQNADuFKfNw.crl (hash: x2i+Yy4ZnYZgCp/TpIns35YOjQ//5+aJoXcTilAn1Fg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:a3:6a:03:90:16:97:c6:76:be:18:83:e7:68:90:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc
Validity
Not Before: Apr 30 03:00:24 2025 GMT
Not After : May 1 03:00:24 2025 GMT
Subject: CN=7a9d4733ef1892c7fedd039e5ac2061d0e8734da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f2:ed:0c:ac:82:82:29:dd:3f:91:e6:40:71:
e9:a7:61:5c:d9:48:38:e7:1e:7a:58:d6:e5:66:70:
37:b3:06:28:88:ba:ea:95:6b:3d:5b:14:cb:e8:f8:
ce:f0:5a:fa:5d:2f:d5:ce:75:1f:da:9e:ad:d1:59:
a1:71:92:0f:e9:1a:7d:63:20:05:d2:07:55:03:6c:
9d:70:e1:a7:04:bd:84:80:5f:84:bd:51:14:dd:66:
28:e1:94:1b:08:6e:5c:aa:fc:96:20:57:6d:6d:39:
62:f8:68:b4:1a:76:57:e7:08:ff:e2:3f:5f:7f:c5:
5c:2d:4d:de:65:cb:2e:32:2d:6e:02:a4:d1:cd:e5:
42:45:3d:4a:de:ca:8f:ce:9d:81:e2:bd:53:0b:cd:
a5:4d:94:4e:89:db:07:77:8b:bf:ef:c5:a9:f2:67:
eb:5d:96:4c:42:ec:0c:ef:e5:97:2c:64:b8:f4:29:
a1:94:e8:53:47:34:15:8b:91:35:51:4b:61:ef:1f:
cd:2a:e3:8c:f0:b7:84:66:6a:68:33:34:f5:bf:4e:
5d:6c:62:26:c0:4a:1e:b1:5d:46:81:3e:7d:3d:3e:
5d:61:2c:d5:9b:0a:ac:0c:cc:5a:b0:b2:37:1b:07:
55:b5:f7:03:e6:1e:52:b7:3f:2c:28:89:5d:33:75:
50:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:9D:47:33:EF:18:92:C7:FE:DD:03:9E:5A:C2:06:1D:0E:87:34:DA
X509v3 Authority Key Identifier:
keyid:CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:ae:6f:89:1d:b9:13:10:99:8b:c1:cb:04:6f:d0:b1:c6:63:
85:a1:b8:63:5e:87:5e:11:e5:d7:f4:7d:cd:cd:14:ad:2d:8c:
9b:6e:9c:0b:d8:6e:0c:6f:5a:a5:09:9c:31:ef:8a:ee:88:c2:
cb:88:1c:3c:fe:4b:17:c2:8b:20:12:50:61:bc:4f:f6:17:36:
21:5f:27:4e:7c:54:0e:7d:ad:f7:86:af:38:38:7a:73:f9:a3:
cf:83:66:33:b0:ff:35:a5:2d:b0:e1:62:7d:7e:a4:3a:9d:61:
a1:fe:f3:90:5e:51:3d:9f:49:fb:d4:a9:77:24:51:90:9b:61:
7c:cd:63:25:52:63:5b:3f:ab:43:cc:82:94:d7:d4:ba:49:3a:
32:f8:fa:bd:7e:aa:28:b5:58:ca:72:3e:30:13:92:e6:e9:2a:
2a:bc:9c:74:99:57:bc:41:96:f5:e8:a8:df:58:e5:b4:ef:08:
ee:0f:a4:0b:ea:50:3c:0a:69:c2:1a:b5:51:1e:67:b3:ee:31:
df:1c:63:5d:e2:4e:96:3d:a0:40:1a:4e:3b:f0:a4:92:d6:15:
5c:c3:b4:d2:00:26:01:b9:e5:6d:1f:41:da:2c:b6:7a:07:17:
fe:08:82:f0:7f:ee:3e:1d:37:b8:20:2a:ce:48:3f:5f:0b:6e:
ba:1f:2b:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 08:22:57 2025 by rpki-client