Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
File: YmFlv7I92h-YcLJBf0lkhebAinQ.mft (raw, json)
Hash identifier: aQSQb5OcTLvZqrawQVw/2oANP4HmussrED++46jMESM=
Subject key identifier: F8:58:F2:51:21:E2:7B:BE:72:64:12:FA:BF:4A:E1:F0:48:3E:9D:22
Authority key identifier: 62:61:65:BF:B2:3D:DA:1F:98:70:B2:41:7F:49:64:85:E6:C0:8A:74
Certificate issuer: /CN=626165bfb23dda1f9870b2417f496485e6c08a74
Certificate serial: 01967A56C4C4CC0B273444515AF8D56D1945
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmFlv7I92h-YcLJBf0lkhebAinQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
Manifest number: 029F
Signing time: Mon 28 Apr 2025 03:00:28 +0000
Manifest this update: Mon 28 Apr 2025 03:00:28 +0000
Manifest next update: Tue 29 Apr 2025 03:00:28 +0000
Files and hashes: 1: YmFlv7I92h-YcLJBf0lkhebAinQ.crl (hash: stTOh3/PQFflva57XAujeTBqRR8PfhCuIni/Gb2yjrI=)
2: sqHnWw_DTKSgc5zNQG4iPku5PBw.roa (hash: w6R1JeMOp3KdC2WjMvic0T8urUWBQwEZKMQrdXTts0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmFlv7I92h-YcLJBf0lkhebAinQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:56:c4:c4:cc:0b:27:34:44:51:5a:f8:d5:6d:19:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626165bfb23dda1f9870b2417f496485e6c08a74
Validity
Not Before: Apr 28 03:00:28 2025 GMT
Not After : Apr 29 03:00:28 2025 GMT
Subject: CN=f858f25121e27bbe726412fabf4ae1f0483e9d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:16:7d:40:85:3e:97:20:ff:0c:d0:58:e0:2d:
a4:59:68:ef:9a:f9:48:53:bc:1f:fa:62:7e:9b:55:
e6:ce:cd:83:fd:99:0d:17:62:54:a3:57:39:58:e2:
2d:b9:34:b4:8f:b6:00:3a:c3:3f:3c:f2:63:a1:37:
56:f3:0e:85:32:45:b2:35:75:b1:bd:96:fa:7e:27:
9b:7e:a3:b4:87:55:0a:9d:74:f6:ce:e3:aa:4c:98:
46:ea:5e:db:f2:33:88:27:d8:7c:e7:b6:5b:42:ab:
dd:01:ad:10:a1:6d:f2:7f:10:59:1c:bf:1e:3a:ea:
69:16:ad:19:d6:87:b7:f1:16:2b:c8:ae:44:5d:c2:
ae:c4:01:64:ea:11:ba:e9:7d:4f:b1:57:96:15:80:
b5:e6:5a:60:25:90:78:ed:4a:8e:e2:bb:38:bd:3e:
e0:85:e2:48:1d:10:35:0e:49:49:6b:2f:16:7e:8f:
fd:17:29:d6:c9:8d:35:77:67:e3:b7:80:8f:c4:73:
a9:7a:bb:8e:6a:06:6f:b4:ff:b1:ad:e0:00:3b:43:
fa:c1:12:92:7a:63:db:26:30:e2:c7:90:44:b1:59:
dd:fb:76:a5:1a:b4:28:ac:9a:c7:cb:13:2a:f0:43:
e7:c0:e9:a6:3a:d3:47:b2:b3:2d:d0:e6:a6:1a:a9:
44:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:58:F2:51:21:E2:7B:BE:72:64:12:FA:BF:4A:E1:F0:48:3E:9D:22
X509v3 Authority Key Identifier:
keyid:62:61:65:BF:B2:3D:DA:1F:98:70:B2:41:7F:49:64:85:E6:C0:8A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmFlv7I92h-YcLJBf0lkhebAinQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/72135d-e497-44a6-b4d0-460fb4bac2db/1/YmFlv7I92h-YcLJBf0lkhebAinQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:2e:c2:2b:e9:44:82:b1:9c:bc:f9:9e:1e:65:94:b7:40:2d:
ce:f1:21:68:5e:37:ce:1a:eb:77:d4:4f:56:c6:cf:8d:82:29:
05:a9:2f:26:25:88:be:2c:6e:2a:88:14:7d:91:02:22:3b:da:
f5:d0:bc:ab:b3:14:c6:25:af:2d:50:82:9a:e5:71:48:7f:2e:
b5:f0:9e:06:d8:77:b5:6a:d4:ad:26:14:87:4c:4d:7a:c8:d7:
1c:17:91:82:90:5d:5f:7b:e9:ab:de:9a:74:bc:9d:6f:15:95:
92:04:cc:45:14:fa:d3:28:c8:9f:72:88:31:c0:52:bc:f8:a1:
78:ec:2d:64:bc:18:ba:54:e3:1a:82:9a:14:31:85:b2:23:9b:
17:e9:d8:e1:bc:9d:e3:4b:44:19:5a:6c:b2:43:a0:0f:82:1e:
09:da:b8:b0:e9:f0:48:18:4f:c3:de:22:51:33:6c:ef:28:56:
d5:8f:2e:4c:41:92:f5:30:ef:79:ef:0a:a8:af:f1:03:56:44:
55:ca:85:a7:dd:d9:b7:93:17:8a:f3:6e:ac:88:51:43:09:3d:
e8:1b:ea:e5:f7:54:a2:3e:dc:c0:fe:9f:b4:9d:a7:f9:c0:25:
0a:1c:d4:67:ea:19:d5:ac:80:4e:fb:0f:43:28:ea:6e:30:92:
34:a5:2b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 04:30:35 2025 by rpki-client