Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: K/Ddd3UG0B0HN1ScQWQzzyFibJOCCmkMZQQ3Au2IrDE=
Subject key identifier: 4F:A7:53:F6:29:7C:67:D7:74:77:33:AD:BF:D2:55:72:14:D1:48:0B
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 0196BA7F3BFC2297D6BA8EA0D7B7B91D5436
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 07D7
Signing time: Sat 10 May 2025 14:00:22 +0000
Manifest this update: Sat 10 May 2025 14:00:22 +0000
Manifest next update: Sun 11 May 2025 14:00:22 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: I6TdhMpJjb/ApBBKEB+JpOl/XtNJVUn0/VB6erc4FEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:7f:3b:fc:22:97:d6:ba:8e:a0:d7:b7:b9:1d:54:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: May 10 14:00:22 2025 GMT
Not After : May 11 14:00:22 2025 GMT
Subject: CN=4fa753f6297c67d7747733adbfd2557214d1480b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ab:20:80:76:d1:a0:33:c2:2b:b2:62:2b:9c:
49:50:db:2c:0f:3a:65:9c:ab:95:c2:ca:33:0e:62:
d4:76:f2:26:92:6a:3d:5b:91:8c:c5:e0:51:98:8e:
d2:c7:22:6c:ce:25:e6:f0:da:ff:5b:48:98:68:11:
cc:77:b4:ba:5a:e7:0a:cf:0a:d8:19:fb:76:b7:f1:
5d:7b:0b:47:6f:0f:4d:38:9e:ac:ec:54:24:8d:28:
72:ba:d7:71:2c:28:73:a0:c5:11:d7:8c:7e:02:4f:
62:26:97:13:ef:24:32:aa:34:0d:a2:40:b1:4a:03:
b4:ef:f0:4f:8c:ca:65:e4:6c:bc:63:a0:a7:f4:c2:
bc:2d:fb:a4:70:53:99:a0:23:b6:37:4e:5d:9a:a7:
59:ff:f1:96:5a:4c:ee:1d:77:77:f3:05:02:1a:71:
bc:fa:00:4b:bf:6c:e6:b6:86:3b:62:3c:8f:8c:3c:
d6:5a:1b:8b:ba:75:48:3e:f2:4a:53:ea:aa:72:65:
e1:89:3c:92:a7:32:61:4e:65:ca:62:77:fc:dc:7a:
be:d6:cb:10:ee:66:12:0f:f2:58:4b:6c:69:48:43:
a6:32:58:49:32:96:e5:7a:e0:c3:2e:a0:4a:75:fb:
e7:a6:32:e9:68:14:69:4b:28:97:26:8e:15:a7:b4:
09:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A7:53:F6:29:7C:67:D7:74:77:33:AD:BF:D2:55:72:14:D1:48:0B
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:dc:ca:59:55:81:c8:22:83:46:ef:7c:12:fd:24:64:7b:4a:
1c:41:8b:6a:de:c7:40:41:55:02:18:ca:3c:d1:0e:13:98:ea:
8a:31:da:5e:bd:3e:f3:67:34:ba:51:cb:12:83:ed:cb:f1:e3:
f2:ab:7a:e1:97:54:ab:ca:75:63:e4:80:a1:d5:0f:f1:fc:df:
1e:b1:e4:d0:c0:c9:83:f5:8a:4a:ed:ac:8a:10:5b:83:63:23:
89:63:05:22:dd:d3:ff:21:5d:75:e2:46:04:90:ee:4d:98:e3:
87:d9:1d:09:55:18:02:6b:84:2c:ef:27:56:10:e5:8d:e6:38:
f7:47:0f:6c:bb:df:c2:64:fc:23:f7:f0:1b:2a:6f:1d:64:3c:
62:fc:a9:80:0e:2e:75:9b:ca:17:3b:71:8c:ee:5f:30:c5:3a:
00:50:22:0e:9b:48:da:6d:60:dc:43:97:f2:05:3b:0e:27:bc:
ba:b9:de:0a:23:a2:6b:19:59:8d:90:64:fa:5a:c7:be:dd:7b:
ac:83:4e:00:20:06:ae:94:86:9d:14:fd:aa:e6:c4:a3:2b:b6:
db:44:fd:8a:be:1b:56:f2:70:50:2f:5e:fc:fe:30:18:d6:0b:
e0:41:e8:12:39:80:6a:fe:8f:66:2b:f5:a2:86:30:a9:b9:37:
13:24:09:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:06:34 2025 by rpki-client