Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
File: YIYxT4djXnk7wuPbvtZkBbisZ3E.mft (raw, json)
Hash identifier: FUyKRYjVYRKPH1ir0PtpCiz7ijKEgTdwn1h/ChCBHwA=
Subject key identifier: 58:F2:10:73:D6:BB:C6:09:BF:8A:C9:16:50:95:18:50:62:B2:B1:04
Authority key identifier: 60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
Certificate issuer: /CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Certificate serial: 0196BBFFD54C7A0B2C093A03AC38017738CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
Manifest number: 1532
Signing time: Sat 10 May 2025 21:00:27 +0000
Manifest this update: Sat 10 May 2025 21:00:27 +0000
Manifest next update: Sun 11 May 2025 21:00:27 +0000
Files and hashes: 1: YIYxT4djXnk7wuPbvtZkBbisZ3E.crl (hash: W1l4OY30s4/sXN7BoduL5RO5H+60ra9D/c99+SOXjkY=)
2: ul5EPC9Jg-xhzDe3-EnpTxgh7Dw.roa (hash: pDodgoORM1hTtwe+JSl0g3mWRdcfDqaXlT1wiKFyqck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 21:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:ff:d5:4c:7a:0b:2c:09:3a:03:ac:38:01:77:38:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Validity
Not Before: May 10 21:00:27 2025 GMT
Not After : May 11 21:00:27 2025 GMT
Subject: CN=58f21073d6bbc609bf8ac9165095185062b2b104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9f:78:70:28:2b:7d:7a:a2:61:bf:7e:28:81:
49:f4:83:06:8b:5d:dd:3e:a3:55:65:9c:1d:b5:a3:
4b:2d:60:be:0d:34:fb:14:b4:e8:1c:c3:c5:00:ed:
53:7d:e8:b4:20:94:1a:6b:3e:3d:08:3e:b2:91:fc:
df:be:1a:e6:9f:f5:54:f4:17:6a:fd:82:ab:d1:fd:
cf:e8:e5:8c:21:02:ca:70:b4:ba:7d:21:4c:b7:a8:
0c:73:97:46:8c:52:bd:c5:4a:28:fc:93:34:a7:a7:
d7:47:0c:37:81:6f:e8:24:3e:13:b3:58:a2:4e:aa:
d5:d7:70:00:8c:b0:cc:54:9c:ea:8b:7f:26:b7:47:
3e:31:56:c8:36:f6:9f:11:0e:c2:8f:26:93:3a:4f:
f1:28:21:cc:14:f1:33:53:6b:5b:bd:68:9a:50:dc:
93:60:dd:1c:eb:51:0f:8a:bc:e6:88:5d:06:a2:9b:
d4:de:95:eb:0a:4f:f8:85:0f:87:56:f7:8b:79:8b:
7d:63:ce:de:e7:2a:68:d7:22:e8:0e:ff:72:a0:6f:
a9:73:ff:6b:15:62:ad:c5:5c:2b:21:e1:d8:6d:2f:
e8:90:9b:22:4e:32:9a:b4:4b:eb:e4:f0:35:e9:52:
42:e0:6e:1d:da:50:88:4f:9f:2f:89:4d:93:3e:ee:
ad:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F2:10:73:D6:BB:C6:09:BF:8A:C9:16:50:95:18:50:62:B2:B1:04
X509v3 Authority Key Identifier:
keyid:60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:64:b2:e6:f5:fd:e5:0c:95:06:bc:9a:7e:4e:99:03:2f:9a:
a2:ef:bd:d9:e0:b5:9a:fb:20:9a:a1:a8:95:73:80:86:fd:51:
68:2d:ca:34:f4:45:ad:b4:0d:84:30:2d:94:c8:b8:f2:3c:92:
8e:02:79:06:41:cf:92:bb:15:9b:37:42:e3:75:c6:a7:e7:10:
01:c1:bb:c5:42:66:dc:63:fc:ce:1e:c2:0a:ed:8f:59:34:0a:
1b:8a:2c:b5:22:6f:e4:63:73:54:10:b4:d8:cd:65:e4:f8:a2:
68:94:5b:87:2e:59:82:dc:0b:87:f4:d1:95:e4:f1:e0:fe:5e:
1c:99:b6:5c:84:5d:bf:93:5d:ec:71:67:56:66:4a:58:07:1b:
1f:b8:22:f2:8d:60:4f:64:8f:38:9f:24:b7:15:4d:7d:3a:22:
d2:ac:60:e9:e0:92:7c:15:1d:02:8a:89:b0:51:10:b8:1b:32:
2d:48:88:98:cd:79:06:7d:fb:b8:e3:c8:24:02:c8:c0:dc:fa:
2e:c4:b3:47:4d:21:55:08:36:1f:31:74:3e:a7:06:d8:05:fb:
14:87:8f:19:8b:1e:78:68:86:b7:93:20:0b:eb:4a:b2:a7:30:
0c:d3:76:37:0a:fe:18:4d:3c:c4:76:7a:27:ed:0b:fe:34:6e:
ed:53:5b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:27:57 2025 by rpki-client