Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
File: YMjVd0f3KXAO8vVhT2397I0Rny0.mft (raw, json)
Hash identifier: dgSK4K5M6eicAP73WA7Dfk6veVTIfrB/cjzV06x4pTY=
Subject key identifier: 08:25:0B:A7:A3:14:0F:19:5F:57:3A:77:73:7C:EA:96:BD:B2:4F:99
Authority key identifier: 60:C8:D5:77:47:F7:29:70:0E:F2:F5:61:4F:6D:FD:EC:8D:11:9F:2D
Certificate issuer: /CN=60c8d57747f729700ef2f5614f6dfdec8d119f2d
Certificate serial: 01968EF037AD97179E051712D23880CA78A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
Manifest number: 0DF7
Signing time: Fri 02 May 2025 03:00:29 +0000
Manifest this update: Fri 02 May 2025 03:00:29 +0000
Manifest next update: Sat 03 May 2025 03:00:29 +0000
Files and hashes: 1: YMjVd0f3KXAO8vVhT2397I0Rny0.crl (hash: HGvy/BfUEq9uZN85QcU8pzRZGkB/B/BSI6VymWpA1zo=)
2: qx-NGj8MV_Cd9zpPet-1VEa08Ro.roa (hash: cxZbSa6oQLmYFFxeIAfjlhTWw1+qGjLvscb3SdGJg1o=)
3: r2K_C06ic0Dj0a3NFZhhI6ooNvs.roa (hash: bne8Sm5wB0CMu858I+GoE6ZpkxWpdhA80NITFW1Cun8=)
4: yeRaarOsqQL6T8MId8Dw-zjDpyI.roa (hash: PcKi02vr0pDiDVlpa/LbtFTT0UyPuUQNtlWvZyQzOuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8e:f0:37:ad:97:17:9e:05:17:12:d2:38:80:ca:78:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c8d57747f729700ef2f5614f6dfdec8d119f2d
Validity
Not Before: May 2 03:00:29 2025 GMT
Not After : May 3 03:00:29 2025 GMT
Subject: CN=08250ba7a3140f195f573a77737cea96bdb24f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:95:34:d2:66:0b:1e:bf:c1:36:76:57:0f:a8:
aa:6e:58:b8:35:64:f0:d7:ba:82:d5:35:5e:06:6d:
04:37:64:b7:d7:00:f2:a7:68:8d:a9:d1:30:f2:f1:
a2:e0:d3:a8:af:c9:e9:5f:0d:d5:eb:db:09:19:da:
8f:f2:6b:44:26:8b:82:c3:95:fa:8f:3e:1f:fd:05:
c4:d0:28:d0:87:35:a9:44:a2:ea:72:89:b0:74:48:
d0:5f:40:d0:c0:f0:ce:a7:83:d6:11:9c:97:41:0f:
c8:e8:46:33:40:60:b6:90:fc:84:59:33:41:73:3e:
3c:5f:46:84:32:a2:d5:81:43:49:b4:e9:9b:df:a8:
33:8d:00:64:c9:68:5e:d0:6b:31:42:ca:a2:43:7c:
b5:1a:fd:9c:43:e1:41:bb:fa:fd:64:b9:c0:3a:fc:
df:5e:85:5a:e7:c3:a5:14:6b:e5:90:f7:38:f0:c0:
82:d6:9a:88:ee:f1:55:a4:8b:2f:07:e2:23:51:eb:
f5:00:bc:0f:3c:36:90:93:6a:83:c4:17:39:82:03:
aa:39:45:1c:7a:36:98:46:df:00:46:5b:1c:e1:e3:
79:8b:21:0f:67:03:27:3b:f4:6a:a2:48:c4:44:01:
44:e1:ad:bf:34:33:cc:fd:24:c8:92:18:99:81:31:
8b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:25:0B:A7:A3:14:0F:19:5F:57:3A:77:73:7C:EA:96:BD:B2:4F:99
X509v3 Authority Key Identifier:
keyid:60:C8:D5:77:47:F7:29:70:0E:F2:F5:61:4F:6D:FD:EC:8D:11:9F:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:1c:41:fd:1d:2f:64:7c:ba:fd:6c:a9:20:2a:98:30:19:c8:
28:1f:a0:1d:b3:5c:e8:7f:34:bf:1f:74:1d:b7:78:3f:28:f7:
54:04:3a:3e:48:1a:56:95:ac:b2:14:bd:43:47:84:52:63:f8:
55:e8:82:0d:d2:da:52:ce:fb:1d:c5:68:c3:f0:89:46:36:3a:
2a:87:ed:96:c4:31:64:40:46:45:82:90:d0:ee:b7:8f:1e:68:
82:ca:5e:c5:dc:87:77:4e:a8:d9:d4:11:6c:a8:f1:36:f9:1f:
ae:a6:fb:f7:ed:be:00:b4:32:21:f7:b3:3e:7c:f1:b5:48:82:
b1:29:fc:39:ac:d0:dc:01:f4:cd:fc:1c:0d:07:dd:4c:99:5c:
ce:1c:21:5d:ed:5e:3e:d8:0e:15:18:fe:68:21:68:f2:81:2e:
43:00:1f:13:38:d3:58:13:40:14:6e:88:ac:69:23:60:33:64:
79:f5:7d:fa:d1:ae:e3:40:cb:fb:8d:75:59:4c:0e:f6:d3:86:
09:5b:f5:ee:04:52:ab:92:ac:35:14:14:06:56:60:c2:34:14:
9c:5a:46:6e:e2:d9:cb:d5:84:06:57:76:a8:ac:a5:da:c5:25:
84:26:0d:a8:1b:af:2f:9c:c0:a3:80:b9:3c:fc:51:43:28:9d:
2f:f6:1a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 12:04:02 2025 by rpki-client