Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
File: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft (raw, json)
Hash identifier: 6pJYPY/2ldW30ez+zcqrigL/nFphvACBHLOO5Soxwzc=
Subject key identifier: 4F:E4:26:FE:31:34:0D:9E:E9:42:F1:13:F3:63:4C:FB:32:FB:92:EF
Authority key identifier: A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
Certificate issuer: /CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Certificate serial: 0196895C0D0ED9019B82E3AFC521725928B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
Manifest number: 1518
Signing time: Thu 01 May 2025 01:00:33 +0000
Manifest this update: Thu 01 May 2025 01:00:33 +0000
Manifest next update: Fri 02 May 2025 01:00:33 +0000
Files and hashes: 1: BfRloUJHji-lEUaufwMc19LxiqE.roa (hash: 94Vq30eYX4ShhMgHZx9s+4a5DKBY3zN9CTPT6BVaH44=)
2: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl (hash: 3B5A8286N+zX9iZL80N/JdL/KhCr8iHEO7s3M/XDC8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:5c:0d:0e:d9:01:9b:82:e3:af:c5:21:72:59:28:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Validity
Not Before: May 1 01:00:33 2025 GMT
Not After : May 2 01:00:33 2025 GMT
Subject: CN=4fe426fe31340d9ee942f113f3634cfb32fb92ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:15:01:ef:84:f0:54:38:40:5d:e4:1a:25:85:
6b:18:b6:29:64:93:a1:5f:cf:d1:a3:09:6d:78:47:
ac:03:3e:7c:05:23:e7:23:fb:42:10:29:4c:a2:17:
23:1e:10:14:1a:ad:a7:b2:75:da:7b:e6:fd:a0:c1:
98:01:cf:fb:cf:4c:ff:fe:87:1b:0d:ff:90:61:14:
56:11:3c:38:b5:56:d9:5e:9e:84:e1:98:6b:cf:8a:
b1:bb:57:90:4e:86:34:de:a5:b2:25:18:ec:31:6c:
ff:26:bb:69:b4:be:56:e0:3a:31:04:c3:13:71:fb:
4d:31:a6:53:47:8f:eb:27:84:99:78:15:fa:d4:35:
7f:79:eb:f7:40:fb:94:64:7e:e9:f8:5b:10:7e:51:
e3:71:26:71:1a:bc:76:d3:88:a5:28:6b:98:20:0f:
ee:a7:3a:ea:05:6e:53:78:c7:f7:cd:e5:b2:48:a9:
fb:59:e9:59:90:f3:48:15:b9:49:4e:04:df:53:0a:
4e:9c:93:a3:62:8c:5e:61:a6:3e:42:e6:60:2f:d5:
a4:f7:47:9a:a6:2f:15:b7:e6:0a:d6:6f:4a:37:15:
96:54:e7:f7:09:8b:4e:de:88:ba:e5:5a:9d:a3:86:
51:41:07:91:3a:1d:3e:94:9d:e9:35:a5:06:07:d5:
1c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:E4:26:FE:31:34:0D:9E:E9:42:F1:13:F3:63:4C:FB:32:FB:92:EF
X509v3 Authority Key Identifier:
keyid:A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:55:b5:de:a4:61:63:30:38:24:df:d9:d0:3b:1d:61:b3:35:
e8:61:0f:bb:84:04:c1:6f:fa:4d:4d:a7:89:13:19:37:ec:b1:
5f:78:b3:04:18:65:f1:5a:9c:cf:a1:56:46:e1:d9:b5:53:ed:
0e:38:7a:f8:11:ec:25:75:d0:9e:2b:6a:fe:e9:bc:11:a8:ee:
ca:35:01:71:6c:61:87:1b:41:1d:03:f0:30:7f:39:9f:14:11:
38:f3:f0:84:4b:c7:96:47:1e:30:c6:f9:a9:51:bf:ea:c8:a0:
97:06:bb:bc:ab:93:a8:3e:dd:6c:2b:2c:06:57:ac:f9:ae:14:
71:45:34:ea:6a:c8:0b:ea:54:d8:a0:e1:d6:5d:3b:6c:b3:42:
be:23:8b:ab:c6:6f:2c:75:26:1f:99:c1:7d:5a:e4:43:4e:c1:
ac:af:e8:c1:df:fc:8a:f8:40:45:b0:68:ac:87:1e:f9:20:9e:
35:70:ad:9d:65:d1:a6:fa:9b:ab:aa:c5:f0:f4:88:96:9c:00:
14:2c:f0:d2:6e:27:0d:6f:77:81:2c:15:bc:79:61:f3:cf:fe:
4d:8d:c3:03:8f:83:58:74:0d:eb:63:b1:5b:28:1d:f8:c5:36:
23:0b:9f:20:da:96:30:92:94:05:ea:f4:5a:33:87:b8:09:53:
c1:8f:de:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 04:31:15 2025 by rpki-client