Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
File: yYDRnDv8xARxVndvAqNJiY5GuQ0.mft (raw, json)
Hash identifier: L+Tq45ahcgClw8KDoOms5cyF8yTFBuhCtwXPxXtn8oY=
Subject key identifier: 34:A4:DD:9D:96:3B:26:29:47:03:AA:A0:30:3A:03:57:A8:90:BE:21
Authority key identifier: C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D
Certificate issuer: /CN=c980d19c3bfcc4047156776f02a349898e46b90d
Certificate serial: 0196876E53BA846E0B06EEA91952A33DFD9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
Manifest number: 0833
Signing time: Wed 30 Apr 2025 16:01:16 +0000
Manifest this update: Wed 30 Apr 2025 16:01:16 +0000
Manifest next update: Thu 01 May 2025 16:01:16 +0000
Files and hashes: 1: yYDRnDv8xARxVndvAqNJiY5GuQ0.crl (hash: AvHFCz50xPP8K+B0MXY6BQ/MmRhF+G8Ba2CRJd8pbx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 16:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:6e:53:ba:84:6e:0b:06:ee:a9:19:52:a3:3d:fd:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c980d19c3bfcc4047156776f02a349898e46b90d
Validity
Not Before: Apr 30 16:01:16 2025 GMT
Not After : May 1 16:01:16 2025 GMT
Subject: CN=34a4dd9d963b26294703aaa0303a0357a890be21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a4:b1:de:e6:fe:48:91:cb:32:d5:fa:85:de:
c8:a5:d0:30:60:f9:5c:06:45:bf:f2:19:f3:8a:af:
d1:dc:d0:4e:f2:5f:65:37:4f:85:58:74:6f:51:e9:
b1:88:d3:44:be:f6:35:c7:d6:51:24:3d:ef:61:b3:
2d:dc:76:d6:78:e3:54:d0:f9:e4:83:95:28:e1:3f:
d4:05:a1:f1:de:98:a4:43:70:43:51:af:63:38:a4:
e0:80:87:59:52:3b:1c:3e:56:4e:c8:1c:bc:15:47:
f4:38:69:3a:56:4a:c8:62:dd:86:7e:c8:2b:b7:52:
2b:94:c0:ae:9c:d4:99:e2:5e:47:cf:67:6d:7a:b9:
cc:29:14:86:7c:06:3e:d3:08:93:f0:f6:d9:47:05:
2e:52:ba:f7:f1:61:51:bd:37:a6:b6:46:a1:bf:ce:
eb:13:af:99:4d:4a:d7:95:01:a3:a3:9e:83:1f:4e:
20:0f:87:7c:e3:e6:58:ad:81:e6:a1:c8:bf:ac:21:
b7:39:ac:af:4d:83:fe:83:90:d6:ca:8c:0c:48:e8:
fe:e3:c7:42:f3:56:b1:66:41:cc:e7:c6:0d:4f:d2:
53:f1:51:f8:ea:c4:13:eb:0b:a0:fb:1a:76:16:22:
e3:67:84:ea:95:ad:da:ba:c5:ba:83:50:79:2d:d0:
b5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A4:DD:9D:96:3B:26:29:47:03:AA:A0:30:3A:03:57:A8:90:BE:21
X509v3 Authority Key Identifier:
keyid:C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:88:2d:86:45:ee:0e:f6:8b:60:2b:c5:d8:b9:36:aa:0d:4a:
51:80:e8:26:e4:f3:47:f2:7e:bb:5e:71:7b:7a:d4:41:7b:83:
55:64:87:a7:16:56:54:a9:6f:f4:ca:ff:41:6b:7e:b1:b3:38:
c4:94:9b:5a:72:17:4d:27:fd:e3:cd:0d:15:47:5a:34:ad:47:
cd:b4:4c:38:5d:c3:ca:44:bc:e8:c1:33:f8:8d:50:5e:ed:6b:
d9:8d:d9:9d:27:67:d7:4c:13:65:34:e4:ae:9c:63:40:0b:55:
ee:37:69:e3:c4:b4:b0:1f:d0:18:86:b0:aa:6f:5c:fd:ff:20:
09:2c:df:a6:e1:3f:e5:0a:d5:9b:a6:7f:6a:1c:b3:eb:00:a0:
a5:3a:a4:53:e8:2c:1d:de:75:c8:1a:97:a7:25:0d:5e:4a:8e:
bb:8d:e9:14:98:7c:87:54:1e:86:75:0a:9f:74:d5:36:72:43:
aa:5d:fb:6c:28:36:90:bc:2a:22:c1:ac:85:38:fc:b0:86:3e:
37:53:0c:7e:35:9a:cb:06:86:e9:d6:5f:68:77:96:6b:d1:ad:
86:c7:aa:23:51:d5:eb:08:d0:23:29:ab:b2:93:62:31:ea:51:
7c:ce:2b:0d:d2:fa:ac:75:1c:55:20:ac:fb:fc:e5:3e:a9:e9:
60:cc:0a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 02:19:14 2025 by rpki-client