Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
File: YNCwIHYDvkPYSS6YUTeLi08JWU8.mft (raw, json)
Hash identifier: 1cVpiMWnRslVM5+ys76e74iQJ53HNnqut0A/D9npy6A=
Subject key identifier: AE:EC:9C:A6:93:D4:C2:32:04:BF:CD:E2:21:72:FF:D3:1D:C5:12:AE
Authority key identifier: 60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F
Certificate issuer: /CN=60d0b0207603be43d8492e9851378b8b4f09594f
Certificate serial: 0196775631471FA7C569F34890AB9C818B03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
Manifest number: 14A2
Signing time: Sun 27 Apr 2025 13:00:59 +0000
Manifest this update: Sun 27 Apr 2025 13:00:59 +0000
Manifest next update: Mon 28 Apr 2025 13:00:59 +0000
Files and hashes: 1: TGCJDTG82pX-vT9LeK2kOQ4sDi8.roa (hash: zRKBbHZChcvp4qDJB7Pkx8ohWvBK1TWvnJD0kE9wiHc=)
2: YNCwIHYDvkPYSS6YUTeLi08JWU8.crl (hash: +WcPTogoEr5aCAYD5+y+f2mLWnValk1JG2a+GKURUWY=)
3: hmDTZOEMQo2FsgMZ2bH5HdU2vyI.roa (hash: NbIM1acTbudT3ToneHmDuzQP2dnfQF8A/BNgiqfCI44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 13:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:56:31:47:1f:a7:c5:69:f3:48:90:ab:9c:81:8b:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60d0b0207603be43d8492e9851378b8b4f09594f
Validity
Not Before: Apr 27 13:00:59 2025 GMT
Not After : Apr 28 13:00:59 2025 GMT
Subject: CN=aeec9ca693d4c23204bfcde22172ffd31dc512ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4f:cf:1e:1a:8e:d8:57:6a:ea:65:43:c2:8d:
02:3d:23:e4:b9:f8:73:23:04:ae:7a:96:3a:f9:10:
5e:47:d3:44:67:d0:41:7c:31:27:36:cf:d6:f4:0e:
be:93:32:90:2c:2f:76:a5:e2:11:04:54:dc:a9:89:
1e:8b:9f:a1:77:6b:3b:fc:12:4f:03:d4:11:b9:ef:
c0:3b:80:50:78:b6:e9:b2:0a:d0:8a:64:db:38:1b:
aa:18:a8:e1:8d:ef:09:6e:5e:27:89:49:0b:5e:2b:
46:86:aa:5e:50:b0:26:a9:33:bf:08:29:a0:3f:ec:
8f:41:00:56:a4:19:f5:ff:82:f4:bf:13:97:3e:33:
9a:7a:c6:19:cf:ca:54:2c:d9:60:b2:aa:56:de:b0:
a0:04:57:75:fb:c8:04:e9:58:f3:c6:48:d0:85:63:
24:5f:ef:fa:a0:fb:b1:b5:9c:d7:a4:32:bb:bd:83:
cf:68:86:64:87:95:8a:a6:85:e0:cd:59:62:49:29:
ea:d9:74:69:56:6e:95:9a:5b:d7:a2:b2:ec:07:b3:
26:0b:b3:23:5f:ea:02:7e:3a:e5:7d:66:8f:20:64:
57:6f:90:dd:8d:e1:b6:f3:33:b5:bf:2f:cc:03:1c:
4a:96:c8:42:95:0b:f8:90:2c:2b:07:af:89:82:65:
7c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:EC:9C:A6:93:D4:C2:32:04:BF:CD:E2:21:72:FF:D3:1D:C5:12:AE
X509v3 Authority Key Identifier:
keyid:60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:a5:7c:27:28:36:9d:52:c7:ad:13:53:4e:b1:f7:d1:15:c8:
89:26:39:57:26:74:a3:06:c1:28:c9:38:61:02:b8:aa:97:d2:
6d:78:09:5b:13:29:55:3b:37:e6:d9:66:b7:66:f9:9c:17:39:
09:2e:9d:4f:01:00:05:48:00:c3:84:cf:7a:c0:dc:6e:e4:a6:
80:59:2a:ea:2c:5a:4e:8d:0c:ec:75:92:84:08:04:3e:5d:91:
54:e4:b5:0f:2d:2d:8e:24:77:39:19:b7:26:33:a2:03:21:e0:
29:a9:cb:a0:5c:0b:c5:d4:49:50:d0:da:2c:8b:dd:c8:3b:e8:
c9:83:1f:96:fe:64:e9:53:26:78:6e:fd:05:6b:4d:50:ee:82:
4f:ed:03:7e:d6:5f:c9:fa:25:05:dc:95:a9:ec:dd:9b:86:88:
39:bb:85:ac:68:35:72:cc:86:5d:45:ca:71:c4:c6:7e:16:3b:
3c:f4:8a:fe:74:23:f6:06:95:8c:5e:70:11:7e:b3:27:28:c3:
c6:ee:3f:f7:86:10:48:8f:44:17:dc:87:05:a9:ff:1c:70:b0:
fb:b9:06:f0:9f:38:ac:f9:f9:97:cf:68:6e:ed:25:bf:20:54:
46:3e:85:3b:ec:46:83:da:59:28:1b:e7:ae:a4:d8:18:a0:34:
cb:02:0e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:40:36 2025 by rpki-client