Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
File: yQs5SsYzN2B_obsOq6EUU6gx85g.mft (raw, json)
Hash identifier: 2F/uHhiO5XhHh7PSHQa6aHNHtNtOXutyHe/BYQV6z/Y=
Subject key identifier: 8B:93:3B:1C:85:01:DE:04:04:A1:0B:D8:C4:68:9E:55:EC:C2:09:EE
Authority key identifier: C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
Certificate issuer: /CN=c90b394ac63337607fa1bb0eaba11453a831f398
Certificate serial: 0196865B1E0AE0C76D95181F8A3B3F4B6139
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
Manifest number: 0BAD
Signing time: Wed 30 Apr 2025 11:00:40 +0000
Manifest this update: Wed 30 Apr 2025 11:00:40 +0000
Manifest next update: Thu 01 May 2025 11:00:40 +0000
Files and hashes: 1: 3DeOifSeLxMUCM20VxHQS5cXQE4.roa (hash: 783WmkyHs/Bvag8AxFOjFyrEJCCbAmS83HXavAaPMKY=)
2: yQs5SsYzN2B_obsOq6EUU6gx85g.crl (hash: gZHpR3JzRmgppjKbVmL7C3Enl09iLmE+j32/wErHaXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 11:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:5b:1e:0a:e0:c7:6d:95:18:1f:8a:3b:3f:4b:61:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c90b394ac63337607fa1bb0eaba11453a831f398
Validity
Not Before: Apr 30 11:00:40 2025 GMT
Not After : May 1 11:00:40 2025 GMT
Subject: CN=8b933b1c8501de0404a10bd8c4689e55ecc209ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:09:ec:a3:e0:a1:a9:bf:2c:97:3d:de:aa:35:
93:6c:47:e7:f5:35:d9:fa:a7:af:43:3b:01:01:98:
a9:ec:bc:fd:46:29:ce:95:f7:88:8a:ac:47:ff:b2:
fa:69:ff:c8:29:85:cd:bd:54:2b:bc:71:65:84:75:
dd:ef:a5:b5:84:8d:9b:ad:3a:b2:d6:db:ea:be:e1:
00:cc:02:48:29:40:84:93:ed:6b:b3:e6:47:9c:b0:
57:1b:2e:df:b7:42:d5:19:30:5d:f9:54:ca:77:7e:
8c:10:6a:ff:15:df:b9:ca:cc:b8:8e:48:3e:7a:00:
b6:04:b3:8e:af:11:5d:f1:d1:5d:e7:ae:2b:f2:e4:
18:bb:4a:25:8a:64:1b:41:ad:52:4d:b8:e7:01:d3:
c8:65:69:d3:53:f1:fa:d7:ce:c9:d6:69:d2:2d:3c:
96:f2:2d:23:2c:4d:6e:11:e3:8a:0c:45:1c:c7:6e:
b5:31:04:7c:ca:93:0c:72:55:18:7c:b2:5f:e0:ed:
51:47:d8:2d:98:74:3e:02:58:c4:ba:9f:46:d1:a3:
a3:5d:17:3a:de:4f:9f:e3:44:22:b7:d6:8b:5f:48:
4d:25:77:c3:a6:45:6e:bc:6a:d8:0f:49:38:00:c1:
dd:7d:b3:77:f7:2a:8b:f9:d6:5f:d1:15:5d:81:45:
bc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:93:3B:1C:85:01:DE:04:04:A1:0B:D8:C4:68:9E:55:EC:C2:09:EE
X509v3 Authority Key Identifier:
keyid:C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:97:9c:59:08:74:46:f1:66:63:d2:53:ae:ee:01:2d:81:9f:
55:4d:95:f4:ef:9f:a1:5f:f4:69:35:8b:f1:e0:be:db:ea:93:
e4:96:c9:33:21:d5:a0:34:0d:7f:be:af:29:5f:26:04:25:d2:
5a:10:91:95:a8:e2:ac:e2:1f:c1:c6:9b:e3:7d:84:10:d8:10:
52:d6:f5:9a:9a:8f:ba:e4:ab:82:e2:9a:b3:a0:0e:1d:00:44:
0d:83:45:93:08:47:17:14:66:0a:24:27:ab:0c:bb:43:f5:8d:
a8:1b:e6:b6:14:da:bd:53:f2:2d:8c:b5:2d:b3:21:98:97:6f:
49:4a:f8:a2:9b:e5:78:33:e8:7b:7c:d5:50:06:7d:8d:0a:a1:
6c:b3:9b:05:fe:8d:ba:82:8b:22:9c:c8:99:a3:2a:76:bb:83:
a6:b2:a2:9f:8e:7b:05:22:40:20:4b:31:c1:44:6f:0c:e3:25:
fa:85:b6:82:9a:13:0e:cb:75:4a:27:4d:67:cf:b5:92:58:fb:
90:6a:c3:68:93:10:d4:14:90:1f:3d:56:f8:03:ce:5d:ef:3a:
00:3d:c2:4c:d0:c1:4f:4d:c6:91:3f:c1:ce:cf:24:63:a1:0a:
5d:77:4c:f4:25:89:ea:37:ed:87:10:1a:ee:5b:d5:50:1b:33:
8c:c3:cf:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:41:12 2025 by rpki-client