Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
File: Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft (raw, json)
Hash identifier: cbXVRk5IgIlIZRV7AT/bCXpqQ249gcyJRduIRs04sWs=
Subject key identifier: 43:F2:CC:F3:27:5E:96:39:C6:05:FA:1C:19:C7:B0:64:1B:7B:BB:B2
Authority key identifier: 62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D
Certificate issuer: /CN=625b5cf9e29912448cbbbc86d20561899cdb104d
Certificate serial: 0196CE740617CFAECFE750CBEBAFC1C0D1AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
Manifest number: 10F9
Signing time: Wed 14 May 2025 11:00:32 +0000
Manifest this update: Wed 14 May 2025 11:00:32 +0000
Manifest next update: Thu 15 May 2025 11:00:32 +0000
Files and hashes: 1: 3ir5WkvJIRxtwZei2sctSN0sCz0.roa (hash: kbUd9aHqn6kQ8QUhYDDaCsn+6zI4AKFQfFGDo83vd6o=)
2: Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl (hash: KqMZJiJLtd3sdgNPq4GrQ2ECMX3MuBXw93yS/BQt93c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 11:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:74:06:17:cf:ae:cf:e7:50:cb:eb:af:c1:c0:d1:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=625b5cf9e29912448cbbbc86d20561899cdb104d
Validity
Not Before: May 14 11:00:32 2025 GMT
Not After : May 15 11:00:32 2025 GMT
Subject: CN=43f2ccf3275e9639c605fa1c19c7b0641b7bbbb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:84:15:d1:ba:02:cf:c6:53:bb:c3:4b:53:
b0:bf:f3:52:92:61:38:84:68:0d:d7:31:f3:b8:d9:
53:01:72:92:9d:84:da:34:57:c8:ab:1b:ab:8c:e9:
7a:b6:02:c5:f8:c8:7a:7d:a8:03:85:81:7a:a4:53:
40:45:ef:fd:d5:f3:59:77:07:1d:f1:3a:c9:a7:d2:
af:10:4d:e2:8e:98:69:d0:e5:b7:98:12:7b:19:fb:
e6:87:54:aa:fe:00:2e:c6:13:fc:d7:eb:6f:40:ee:
c2:76:d0:64:44:cf:2b:f4:1a:8f:e0:33:25:63:5f:
a0:c1:18:cf:8a:47:18:7d:57:e8:59:a4:30:c9:c7:
94:77:1d:6b:95:11:73:e0:99:f1:75:b9:8b:71:56:
3e:7e:2f:88:7f:de:9c:93:e2:ff:b8:03:93:e0:09:
d4:fb:b0:96:bd:8e:63:a3:6e:96:16:b4:ab:5a:95:
d4:56:9d:18:90:a0:2a:d8:fd:c3:76:2f:8c:a9:c7:
36:24:89:70:3c:6e:b2:25:6c:b2:01:87:5f:84:b0:
72:f0:fc:02:ab:df:8a:d6:17:0a:10:6c:3c:8b:9b:
68:d8:71:3c:4f:2c:60:0c:04:cb:c2:4c:17:bb:d6:
c0:73:d8:c0:f0:7d:ac:70:53:70:34:18:9f:9d:14:
32:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F2:CC:F3:27:5E:96:39:C6:05:FA:1C:19:C7:B0:64:1B:7B:BB:B2
X509v3 Authority Key Identifier:
keyid:62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:f2:ae:2f:ac:06:bd:0e:e9:10:48:8e:7e:f3:50:42:6b:ca:
bd:6c:4e:8e:85:2c:5f:8a:14:0a:0a:36:2c:4f:28:97:db:d2:
a7:7f:3d:df:50:37:7e:7e:c8:1d:2c:ba:60:e6:09:47:a5:2c:
e7:71:da:4a:6f:be:22:5a:78:71:04:47:4a:6b:98:19:45:d4:
d7:a7:55:1f:9e:d6:3f:15:52:3c:4f:c8:f0:d7:a0:50:8e:d6:
eb:6e:8f:d9:9d:6b:c3:64:d4:94:d2:af:17:56:82:9c:f2:c0:
2c:2c:f2:97:f0:c9:f7:28:6a:b0:e1:e6:e3:05:d0:8a:7a:30:
e8:1d:9e:d4:45:ca:fa:33:c1:21:f7:c4:b5:7d:e5:8e:84:14:
27:e3:de:e1:f8:cb:3b:02:62:4e:9d:71:0d:4b:0b:c1:43:fa:
f8:17:f1:2e:83:52:a8:d2:67:12:85:da:16:e7:19:3f:75:fc:
f4:da:96:89:2e:ef:6c:dd:72:15:8b:e7:1b:15:47:8c:d0:6e:
dc:21:49:f2:d9:e4:32:57:8a:70:22:ce:80:2c:f0:9a:b1:69:
b0:46:06:64:07:eb:26:21:19:fe:d5:0a:de:2a:7e:15:89:7a:
17:0c:c0:48:eb:cd:36:ef:8d:dc:15:a3:a1:55:09:76:11:43:
8a:95:d0:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 19:10:43 2025 by rpki-client