Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
File: yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft (raw, json)
Hash identifier: xw3m1XGveBiWSzP5dBIIKyJWLsBzuBKT0ayta63P6z4=
Subject key identifier: ED:82:05:7E:AB:83:B9:27:FC:EA:4B:7B:05:78:D0:48:B0:BF:C0:19
Authority key identifier: CA:AF:C0:93:C3:C4:25:6D:11:4A:8E:DC:0D:06:C7:3C:B6:3E:18:6D
Certificate issuer: /CN=caafc093c3c4256d114a8edc0d06c73cb63e186d
Certificate serial: 01967BA0B6CB99D21961C13476EB676052A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
Manifest number: 1511
Signing time: Mon 28 Apr 2025 09:00:52 +0000
Manifest this update: Mon 28 Apr 2025 09:00:52 +0000
Manifest next update: Tue 29 Apr 2025 09:00:52 +0000
Files and hashes: 1: NUVu2dR1iocqmPEQ_D2e-q6eSn8.roa (hash: 1hCazZpKjVTtjQVFUWpkmXqPQOre2tDQ3dmWvgeOvfo=)
2: yq_Ak8PEJW0RSo7cDQbHPLY-GG0.crl (hash: 0WwUQmQO5CEmpaSEyOSxJpUGmgGLq6dYYh2SzFeE19Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:a0:b6:cb:99:d2:19:61:c1:34:76:eb:67:60:52:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caafc093c3c4256d114a8edc0d06c73cb63e186d
Validity
Not Before: Apr 28 09:00:52 2025 GMT
Not After : Apr 29 09:00:52 2025 GMT
Subject: CN=ed82057eab83b927fcea4b7b0578d048b0bfc019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:22:9d:1d:cb:b6:24:56:ea:4a:13:25:7b:b7:
dd:95:6b:ed:bf:e5:8d:9d:b3:cc:5d:ab:36:66:c1:
2f:7a:73:06:b2:f4:26:c7:6f:e9:a0:f7:cd:f1:e7:
8e:7f:54:a2:21:bd:29:25:3e:9a:de:0c:f0:4c:55:
e1:b0:99:26:1e:34:51:7a:f0:89:79:78:89:e9:f3:
fe:98:91:83:72:61:95:4f:3c:d7:13:1e:08:01:c2:
23:65:f3:0a:8c:24:3f:4e:cf:aa:f7:d3:36:17:65:
80:22:45:a6:50:d8:33:7b:64:13:de:af:06:67:53:
a8:ab:8f:63:23:0e:55:90:c9:ff:86:dd:f7:9c:ee:
9e:ae:91:4e:7a:82:e7:5c:a7:39:50:5e:cc:c1:c2:
aa:a9:25:dd:f0:7a:f6:3e:4d:b1:70:53:1e:68:21:
37:d5:f3:9c:67:a5:78:8f:1f:35:e1:aa:c8:27:1c:
26:f1:18:60:ac:34:c5:a4:a0:7b:e6:15:e5:f1:35:
6c:6d:01:21:c4:7a:50:09:c0:43:b9:a3:72:20:f3:
85:02:8b:91:ac:22:b2:15:86:3c:c6:60:58:89:d7:
88:a3:9f:e5:98:14:b4:2a:d2:ec:bf:14:d7:3d:89:
61:46:fe:9c:d9:e7:f8:64:39:52:bb:ad:e1:4b:eb:
30:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:82:05:7E:AB:83:B9:27:FC:EA:4B:7B:05:78:D0:48:B0:BF:C0:19
X509v3 Authority Key Identifier:
keyid:CA:AF:C0:93:C3:C4:25:6D:11:4A:8E:DC:0D:06:C7:3C:B6:3E:18:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8825b4-ff08-4916-ae05-893fbe5911b0/1/yq_Ak8PEJW0RSo7cDQbHPLY-GG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:fb:18:9c:35:6c:af:ca:4a:df:3b:6f:58:69:24:8d:9d:cc:
bd:da:9a:20:e5:cb:3e:21:3b:5f:b9:33:86:22:85:42:6d:2c:
15:e3:6d:96:22:17:69:dd:63:20:20:89:21:4e:9e:8d:f0:a7:
76:b0:f9:9e:6e:e6:07:ee:8c:e1:72:df:23:e6:e2:bb:25:be:
8b:a7:44:c8:e8:3a:3d:12:e3:b3:36:83:8a:08:70:e4:7c:bb:
9b:26:ff:96:e1:ec:fd:cc:f7:cc:c7:cb:5c:b8:10:e0:66:b5:
9c:2d:31:04:c4:c0:37:de:84:0b:6e:82:50:59:31:fb:ad:42:
c9:3b:2f:10:cd:53:bd:b4:ff:65:2b:9d:6a:26:0f:8a:4b:0d:
b3:68:a4:9c:2a:05:52:d5:e4:21:2e:ab:04:e8:4c:26:11:9e:
4e:83:15:88:e7:db:bc:cc:ff:ba:ce:fa:87:fe:f9:25:c5:13:
06:56:43:81:ce:5b:6d:3b:2d:83:dd:dd:63:e7:29:7b:1a:9b:
da:31:81:c0:29:79:43:e7:16:6a:8c:d3:b8:c8:59:ed:bb:6a:
73:b9:57:d2:f4:a3:3e:8b:b0:78:e9:d0:09:81:1f:31:5d:fa:
6a:ac:16:2b:07:86:31:c7:d2:ef:78:8e:25:36:ac:f6:ea:4f:
ef:20:6f:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 12:33:22 2025 by rpki-client