Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: ZYu/DxAoO8VM4TkJFcvuFjygx/JzeurI68fc+yaWkfI=
Subject key identifier: 53:3E:59:EA:0A:8F:7F:88:65:4B:B5:9A:51:44:F1:E6:18:E6:34:0E
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 0196CDCFE054085933EE1800C2E3712FAA27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 112C
Signing time: Wed 14 May 2025 08:01:14 +0000
Manifest this update: Wed 14 May 2025 08:01:14 +0000
Manifest next update: Thu 15 May 2025 08:01:14 +0000
Files and hashes: 1: Q9vdhvNHwOEEPnjfpoIoeq4pq_E.roa (hash: AjW64DrutKx53AvwTAQKpO/FJMGHUcE1ZDsQqqfuNRE=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: KKlM3YYk6sMVJqWP/3IM5vbRWC2jjRBlFrFDRlfVKiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 08:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cd:cf:e0:54:08:59:33:ee:18:00:c2:e3:71:2f:aa:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: May 14 08:01:14 2025 GMT
Not After : May 15 08:01:14 2025 GMT
Subject: CN=533e59ea0a8f7f88654bb59a5144f1e618e6340e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:62:de:78:5d:a5:7b:e2:69:ad:2b:3c:dd:22:
2e:3e:df:ad:0c:93:91:3c:75:f5:30:38:65:c3:7e:
90:7b:40:ab:6a:31:27:61:0c:a1:5b:6d:83:d6:22:
31:d6:25:6f:53:f8:d9:ce:f8:d8:a3:06:26:42:01:
b8:38:de:a3:81:b0:d4:9b:5f:da:d3:bf:b7:d9:0e:
e0:f4:c3:38:91:40:e7:00:75:3c:12:1f:2f:9e:32:
c4:b1:50:f3:64:d7:17:85:c4:34:85:84:85:e3:27:
b5:4b:af:04:45:85:a9:b9:2e:81:57:d0:bd:45:3a:
72:25:e8:f9:e6:56:34:69:fc:4a:e0:ab:04:d0:ef:
7a:5c:dd:5c:cb:4f:6c:ca:76:28:3c:ba:c4:f9:d6:
10:61:fb:6d:ab:b7:1b:23:46:2e:cd:84:fa:25:2b:
dc:ed:bb:25:7a:6c:5f:0c:a7:ff:3f:8f:0c:1a:69:
be:10:75:e5:ec:b0:fd:9b:07:30:84:bc:78:9b:61:
e6:15:3c:8f:2f:cb:7d:41:67:87:06:2c:05:4c:26:
bc:28:6b:aa:d3:b3:63:b2:5d:d2:d9:b2:a2:19:7b:
23:a4:0b:36:cb:72:81:ea:70:97:3a:fc:ac:4f:4b:
99:ff:fa:70:9a:40:ef:b2:79:e1:4f:50:7c:c6:39:
72:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:3E:59:EA:0A:8F:7F:88:65:4B:B5:9A:51:44:F1:E6:18:E6:34:0E
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:61:49:ca:1c:33:e6:fa:e0:67:93:db:50:9e:19:ab:12:ea:
a8:14:45:85:2c:f1:62:25:b2:16:78:6f:cd:5f:c3:7b:81:3a:
fe:2a:dc:65:84:13:2a:4d:8d:9e:33:14:a4:f3:80:de:b7:8c:
1a:1d:29:c4:05:7c:a0:ed:7c:41:41:c7:d4:5d:97:f0:e4:d7:
dd:3c:da:9e:c0:81:f6:a0:b3:11:43:64:68:ab:4b:66:69:1b:
55:08:6b:6f:f0:bf:9f:06:67:75:9b:1e:b8:12:da:90:22:0f:
29:1d:7c:8b:aa:53:94:49:46:6d:dd:79:2d:25:39:6e:a2:a0:
f9:b4:32:30:87:5b:e7:a3:35:dd:fc:1c:58:43:9e:53:ec:09:
91:47:8f:d1:e5:b9:80:83:94:3d:ab:26:97:bd:8f:64:34:ee:
9e:3a:8d:c0:bb:b7:fe:48:2f:49:85:04:da:95:df:53:9f:f2:
67:c3:9b:d4:5a:96:75:17:ea:c0:b1:06:72:bf:70:8a:84:75:
cc:90:4b:ac:09:f9:66:ff:c8:c4:0b:36:8b:01:db:2a:c4:70:
43:72:a7:98:1f:a4:f9:e0:45:aa:de:cc:5a:be:83:90:78:14:
32:1f:09:b1:23:36:06:6b:92:0c:a8:62:19:42:7a:a2:42:c7:
8f:c8:85:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 15:24:47 2025 by rpki-client