Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
File: YQy4N7bSF3jkw9u5aWefDxxQtIo.mft (raw, json)
Hash identifier: TP9Uqn9SZ8DvXHzfMVBuyHOifdAPt78cy0ygOo6KeOI=
Subject key identifier: F4:9D:61:DC:E5:EA:1A:57:79:6F:C3:B1:D5:06:BC:DB:63:EF:08:16
Authority key identifier: 61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
Certificate issuer: /CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Certificate serial: 0196741DAE5193549702B91E1F41ABAFA96A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
Manifest number: 0D26
Signing time: Sat 26 Apr 2025 22:00:24 +0000
Manifest this update: Sat 26 Apr 2025 22:00:24 +0000
Manifest next update: Sun 27 Apr 2025 22:00:24 +0000
Files and hashes: 1: YQy4N7bSF3jkw9u5aWefDxxQtIo.crl (hash: m/Jy6RucTv15nFipw0991ctVyQFj8Yp9BWzI4ocQxQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1d:ae:51:93:54:97:02:b9:1e:1f:41:ab:af:a9:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Validity
Not Before: Apr 26 22:00:24 2025 GMT
Not After : Apr 27 22:00:24 2025 GMT
Subject: CN=f49d61dce5ea1a57796fc3b1d506bcdb63ef0816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3a:c4:57:ae:3a:3b:6b:56:00:71:74:06:e2:
4e:47:9e:dd:dc:f1:1b:89:d9:2b:e8:38:55:ee:ed:
53:45:2e:95:42:d4:cd:e7:08:30:10:41:c7:8c:78:
d8:04:1b:ba:7a:bf:d3:42:c7:26:12:50:16:60:bf:
43:32:5d:ea:fe:5e:66:f6:6b:10:c6:f2:4c:49:3d:
ef:37:7e:0b:28:00:48:40:f8:98:6d:8b:0d:d4:87:
7a:59:4b:58:e4:00:5b:38:41:17:70:92:1e:40:a0:
f2:d2:76:db:94:85:30:f5:bd:94:dc:80:27:9a:f6:
0d:1e:ed:e5:c7:af:c6:18:7e:fe:c3:a6:40:6a:4c:
e0:53:7d:e9:b0:1f:a8:2b:3d:65:5b:27:f7:d4:e4:
54:d6:6b:3e:84:61:fd:19:4a:1d:be:59:c4:c3:5d:
dc:14:23:8c:17:57:b5:c1:da:e3:96:97:80:8b:0e:
1e:7f:9e:6d:7d:b2:70:00:a2:46:43:65:0d:2d:79:
30:66:7a:1a:0e:35:28:96:f9:10:dc:d3:ff:ce:6a:
92:68:80:b0:f1:0b:b6:ab:7d:39:36:16:9c:30:e1:
3e:08:83:cc:6e:e1:29:24:d6:83:33:bd:1f:93:23:
91:ab:41:a5:ff:17:86:89:78:07:3e:f5:43:55:7c:
48:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9D:61:DC:E5:EA:1A:57:79:6F:C3:B1:D5:06:BC:DB:63:EF:08:16
X509v3 Authority Key Identifier:
keyid:61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:a3:a1:c7:40:22:67:ea:ff:03:e7:cc:ab:3f:e9:d6:13:b7:
5e:a9:48:99:6f:2a:45:bb:ff:44:59:3b:9e:84:14:f8:e2:bd:
cf:5d:62:cc:9d:a5:c5:7f:b8:4e:cf:85:9b:c8:e9:d0:6f:c4:
8d:40:20:0f:5d:a5:6c:62:f7:c1:f9:f2:2b:ac:4a:36:23:3a:
4c:e7:19:39:f7:94:02:01:e9:a7:d6:62:85:6d:f5:33:ef:57:
5b:25:42:1c:87:a6:05:f6:61:44:f1:44:d6:c5:59:43:5d:59:
9d:f4:33:18:1b:51:be:a6:45:c1:b9:f7:19:b4:80:d5:bb:ba:
49:76:0a:0b:f9:e2:e6:a8:a7:b8:f9:62:08:c5:d9:1d:a4:2d:
8c:f6:41:f6:0a:c9:f9:85:39:32:27:53:73:37:15:ec:8c:20:
18:67:2f:c6:01:be:f3:35:94:14:4f:4b:e0:93:f8:b7:2c:64:
bd:2c:9c:ed:b7:dd:ba:f4:5f:51:88:66:3b:5e:ed:eb:f7:8c:
3b:33:ab:11:31:60:ff:eb:1a:23:aa:e2:8a:8c:fa:20:26:82:
20:07:28:4e:9b:a4:ef:56:f3:cb:e7:0c:f3:10:9e:42:4e:f8:
b7:22:cb:b0:88:06:19:45:1d:95:0b:df:75:67:5d:83:51:49:
22:71:90:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:35:45 2025 by rpki-client