Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: 7z/BYMAPoSCPR7DxHJ/6lVotjzoqoeLrixpPWl1XvU8=
Subject key identifier: 5B:A1:43:50:91:31:FB:92:F6:63:3C:BD:23:AD:AC:12:35:DB:C3:C5
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 0196759E44439FC3EA6BFF51A6B355170E5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 03BF
Signing time: Sun 27 Apr 2025 05:00:28 +0000
Manifest this update: Sun 27 Apr 2025 05:00:28 +0000
Manifest next update: Mon 28 Apr 2025 05:00:28 +0000
Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: P62lpNrk70htdyMEeYd77PmbjKZahvwCYJbnRQ/4zVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:44:43:9f:c3:ea:6b:ff:51:a6:b3:55:17:0e:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Apr 27 05:00:28 2025 GMT
Not After : Apr 28 05:00:28 2025 GMT
Subject: CN=5ba143509131fb92f6633cbd23adac1235dbc3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4a:52:28:ba:f6:83:7d:fc:a3:4e:f6:92:bc:
47:88:4e:69:b7:3f:42:10:8f:34:8b:30:ba:2c:fd:
28:79:0a:28:d2:e8:9c:81:c8:a9:c5:ad:91:b9:eb:
1a:c8:e3:32:ac:2b:14:33:2d:ea:45:31:f9:20:69:
1f:b4:7c:30:f1:81:44:e9:9d:9f:49:c9:23:e0:58:
8c:bf:ac:29:81:6a:39:b7:a0:7f:a6:d4:7c:f5:ff:
b2:18:2f:0d:45:10:9c:19:9f:05:84:84:05:a6:96:
4c:55:94:19:25:f8:d7:6a:b2:ec:e6:b0:8e:7a:d7:
16:d3:fa:9b:c7:2b:9a:a1:a5:e8:1a:92:6d:23:f6:
51:fa:ed:4e:b0:8b:ea:c8:03:8e:7f:06:4f:5a:b4:
49:9d:e2:ee:8c:10:19:47:36:f9:72:c0:09:fa:00:
99:67:e5:8e:7a:c9:a9:b7:ce:b6:9c:8e:8e:30:85:
2f:07:f9:b1:a6:d4:59:a8:7e:c6:fe:30:07:db:39:
04:50:cb:c6:4e:52:7e:ae:2e:0a:4f:ad:d2:e2:6b:
1a:01:5f:09:3e:08:e4:c9:47:4f:0c:85:49:ab:f8:
93:c8:c6:7b:30:f3:d5:02:35:3c:22:89:9c:8c:a7:
c0:ae:91:c0:06:68:a6:29:95:96:18:01:fb:1a:58:
96:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A1:43:50:91:31:FB:92:F6:63:3C:BD:23:AD:AC:12:35:DB:C3:C5
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:9b:27:b3:3b:72:9b:8e:e0:0e:2d:8d:57:0e:f3:a1:a0:c4:
94:c9:04:81:73:60:14:5b:49:c4:25:a9:f1:32:a1:d3:6b:5a:
4d:4c:69:47:e5:fb:26:57:ce:8d:f0:29:2c:1e:2d:54:cf:1f:
f4:c6:87:15:1c:99:b6:52:73:f5:de:b1:59:8c:a0:06:dc:62:
31:42:32:6e:72:b9:0c:5c:63:21:0b:5f:05:a2:40:45:53:e7:
fe:6f:db:43:28:43:ac:6e:eb:14:f7:49:c2:19:2c:5c:ff:fb:
0d:30:2e:7d:c7:4e:20:dd:c4:89:ea:66:81:6c:01:a0:f0:62:
19:ab:9c:c1:d9:67:5c:e8:32:8b:9d:2d:ea:d0:6e:9f:5d:a0:
4e:e8:07:ef:82:07:c7:d5:0b:95:d6:fe:1b:85:5c:45:d1:25:
10:77:c6:fb:3e:98:2e:49:b4:de:c5:b7:36:db:ee:87:ab:9d:
af:40:03:e2:6b:8f:99:9e:f4:0c:fd:12:17:8a:ea:63:e4:21:
84:96:0b:d7:c5:0a:8d:39:0a:12:97:a9:1c:6b:26:b2:a7:6f:
07:9c:b7:af:da:b7:ae:d0:d7:b1:cd:da:81:42:be:f1:46:65:
d1:71:15:fd:94:c0:23:35:c0:84:59:00:f9:0c:6d:c1:ca:4d:
33:25:11:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 15:37:18 2025 by rpki-client