Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json)
Hash identifier: KEsFEXBIVzr2I+M7og+rPEuGEgin5P4+mUfxYLECb9Q=
Subject key identifier: 33:FF:1A:ED:61:E3:AC:EA:CC:88:8E:50:48:54:98:C5:CF:05:52:69
Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Certificate serial: 019682478F926D3981E5B5FF6A292B00AD50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
Manifest number: 1516
Signing time: Tue 29 Apr 2025 16:00:49 +0000
Manifest this update: Tue 29 Apr 2025 16:00:49 +0000
Manifest next update: Wed 30 Apr 2025 16:00:49 +0000
Files and hashes: 1: UvHXXFoVL7W8kRf_CmjRtC48uH4.roa (hash: E8q/i3b6Anio6852XqG98vgAFVWa9Xn560kQh/u0aSY=)
2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: nxqnqP2r4Go6OL1N9JT1ibTzXVQO8UJ+idVF4SJLRN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:47:8f:92:6d:39:81:e5:b5:ff:6a:29:2b:00:ad:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Validity
Not Before: Apr 29 16:00:49 2025 GMT
Not After : Apr 30 16:00:49 2025 GMT
Subject: CN=33ff1aed61e3aceacc888e50485498c5cf055269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:fc:a6:18:10:10:9d:9f:33:d6:64:4f:a5:e5:
d9:7e:05:ce:50:b8:1e:72:d7:15:73:2a:0b:6f:5f:
2f:f4:25:77:1f:73:d8:e1:1b:44:08:f8:a1:ba:2e:
9f:f8:41:1c:74:0a:86:5e:6b:bd:76:76:b5:a1:fb:
0c:56:83:41:15:87:7a:16:73:53:1e:c4:9a:87:e3:
56:0f:55:66:2d:64:76:44:86:6b:83:c6:6c:7c:12:
fa:41:06:4d:93:05:09:88:47:b7:5f:07:4f:3d:95:
7d:10:a3:5e:d1:11:f7:fa:97:7d:5d:54:b6:70:3f:
cf:df:51:4a:75:f1:94:2d:4d:b9:0c:06:e9:9d:bb:
de:53:44:d8:ce:31:8f:6d:84:6f:cf:ef:9f:8a:36:
7d:c5:9c:62:73:fb:ac:7e:40:30:8e:7e:cd:22:bd:
c8:8b:e9:90:92:55:cc:a7:ac:83:d3:90:f3:1e:d9:
0d:40:72:b5:d4:69:36:1b:64:47:b6:a9:ed:72:63:
83:82:f6:26:1d:73:e9:2a:80:10:53:70:be:6d:de:
c5:ce:a6:99:23:37:c6:21:26:18:5f:5e:3c:1b:e8:
dd:04:5d:59:3a:8a:5a:25:8d:ba:0a:c5:4b:0e:42:
ed:8b:d4:4e:5b:ec:2a:7d:b6:79:03:d9:be:2c:f0:
d2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FF:1A:ED:61:E3:AC:EA:CC:88:8E:50:48:54:98:C5:CF:05:52:69
X509v3 Authority Key Identifier:
keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:e9:49:e5:e0:09:01:0e:0b:0f:63:c4:de:8e:da:1b:90:c7:
91:82:5b:bb:46:37:2f:f0:fe:9b:22:9a:41:21:57:c4:22:83:
7e:04:5a:d4:c3:d1:47:54:c3:ba:95:07:9b:66:6a:a8:ed:da:
14:4f:2e:55:48:da:d7:9f:cf:76:05:f0:08:d8:0f:63:ee:38:
0a:61:df:e7:d4:27:fe:0f:50:3f:da:d5:93:39:55:35:3a:5a:
47:74:72:06:a6:bb:b1:c1:1f:53:c0:b8:94:60:37:59:0f:4a:
b6:68:49:d6:eb:46:10:9d:2b:4f:94:cd:52:24:3a:d0:31:4f:
4e:a6:4b:39:45:fd:30:e3:30:d8:60:bf:e9:d1:6d:f9:98:3d:
eb:ef:c3:bf:16:d8:8b:b3:be:0c:79:9a:3a:02:cb:95:12:0f:
a3:ce:34:36:68:1b:68:f9:10:de:c0:4b:d0:98:ff:99:53:cf:
5b:0b:f7:49:ca:24:05:9f:dc:ea:d3:af:5e:0f:97:6f:4b:5e:
21:bd:e2:95:c3:19:bd:23:67:ec:97:aa:85:3b:67:13:5c:87:
6d:76:63:00:f2:77:bc:1d:25:83:fa:a8:7f:ff:1e:8d:bd:e3:
4f:2d:be:3b:6e:c9:77:69:cf:c8:94:5c:ab:ca:b1:bf:0f:0b:
b8:7a:a4:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:05:12 2025 by rpki-client