Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
File: YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft (raw, json)
Hash identifier: r4GF5ZcWZGFKzCBFdyI7+PEu2ZIquXaGa/RJbsvY5Qc=
Subject key identifier: 08:7B:E4:BF:23:2D:BA:CB:7C:39:AF:F7:A3:1F:53:58:E0:E1:22:75
Authority key identifier: 60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
Certificate issuer: /CN=60f31d820c32400dec0c60496178994d57752acc
Certificate serial: 0196DC66E1A2D9DE9B9A75450B2BDDB08512
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
Manifest number: 1540
Signing time: Sat 17 May 2025 04:00:52 +0000
Manifest this update: Sat 17 May 2025 04:00:52 +0000
Manifest next update: Sun 18 May 2025 04:00:52 +0000
Files and hashes: 1: YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl (hash: EuRATz9tP3jHakjqVC4js+1F8GW7kz4wByHO80pEBss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 18 May 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:dc:66:e1:a2:d9:de:9b:9a:75:45:0b:2b:dd:b0:85:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f31d820c32400dec0c60496178994d57752acc
Validity
Not Before: May 17 04:00:52 2025 GMT
Not After : May 18 04:00:52 2025 GMT
Subject: CN=087be4bf232dbacb7c39aff7a31f5358e0e12275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e8:12:2e:00:26:06:d7:bf:f8:16:72:d2:92:
be:a3:10:1f:b8:53:e8:fe:63:45:67:96:6e:90:e4:
f4:f0:88:ca:9d:56:95:f7:76:5b:2c:3d:2f:4a:8a:
7f:38:e4:95:7e:38:d4:0c:4c:9d:20:75:4c:13:a2:
31:68:1d:a5:49:1e:99:e5:df:4c:6d:a1:9a:dd:14:
ce:a0:94:fb:61:c7:81:8a:18:01:9a:4e:2e:1e:97:
97:2c:19:24:a9:09:63:c8:ea:8e:b5:2b:98:e7:64:
1d:9c:37:ec:24:90:aa:7a:38:5c:a8:f3:b5:8f:15:
8a:73:38:5e:8d:ec:9f:39:43:a1:7e:70:0a:a2:18:
ab:37:74:2b:01:ff:5b:d0:88:25:81:c7:49:89:9d:
aa:61:38:8c:84:d1:77:13:80:de:d5:c2:d8:ce:26:
5a:df:26:30:e5:43:b4:ed:f9:bc:be:8e:6e:91:86:
64:1c:0e:7d:78:5f:4f:ed:69:31:c0:b1:14:11:d6:
c8:7b:4f:31:d6:b7:3a:55:e7:24:ef:4d:60:99:75:
97:64:fe:65:3b:f8:b2:6f:9d:15:47:a7:96:cb:e7:
46:23:5f:84:fd:16:9d:74:4a:7b:cd:e7:32:36:eb:
74:68:13:6c:64:61:a8:84:64:cc:b0:9f:d5:cd:83:
a8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:7B:E4:BF:23:2D:BA:CB:7C:39:AF:F7:A3:1F:53:58:E0:E1:22:75
X509v3 Authority Key Identifier:
keyid:60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:c4:7d:88:34:5b:66:9e:83:37:65:e5:0d:cd:21:f2:41:0e:
f3:29:8a:bc:96:24:88:20:07:e3:53:a3:46:ef:cf:cb:e6:0e:
aa:3a:b4:d6:b9:90:be:7c:ae:9d:92:76:7d:e2:25:c8:22:7e:
8a:9e:90:97:88:8e:ee:c9:12:54:e8:6a:b1:4c:af:23:37:26:
59:d4:84:d7:1f:61:30:af:77:ae:07:b9:22:b3:89:7c:ab:13:
3d:f4:db:0b:fb:e7:d4:45:e0:46:a0:3d:6a:1a:88:1a:b6:98:
b6:ea:14:c6:2f:01:8c:8c:30:7d:9e:ed:77:1d:c7:bb:1e:52:
5e:20:19:7c:35:8d:b4:81:b9:ea:84:f6:2f:d4:bd:10:78:70:
41:c4:43:81:42:2d:ee:75:16:62:6a:1f:8c:7c:3b:ee:aa:c5:
32:a4:ec:48:63:a8:d9:eb:0b:b8:3b:d2:49:3a:16:cb:1d:4d:
cc:84:d0:14:3b:ff:0d:1a:c9:4d:17:3a:8a:c3:a3:3a:99:00:
2b:13:73:fc:ec:52:d6:28:0b:ac:e3:2a:af:f3:97:61:75:29:
09:a0:98:6a:98:6a:0c:7f:a1:7c:b0:42:0c:63:76:eb:44:6d:
16:69:bc:06:b1:da:14:53:9f:79:7a:27:31:e9:21:81:a8:7d:
c5:d0:58:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 12:12:22 2025 by rpki-client