Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json)
Hash identifier: K7c6aLn+0QzU/aZSgGAZE7ZC26+haJd0xwzSBRFUCRw=
Subject key identifier: 4F:57:7F:5E:65:5E:7D:AC:C5:95:15:95:58:6D:0A:87:D5:A8:1C:AC
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 0196A1D2851126C7870E8C7E9A87916DFCAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
Manifest number: 154C
Signing time: Mon 05 May 2025 19:00:50 +0000
Manifest this update: Mon 05 May 2025 19:00:50 +0000
Manifest next update: Tue 06 May 2025 19:00:50 +0000
Files and hashes: 1: N1MG3ptUi6lRkgCQgC4sjQwbS5E.roa (hash: JXk8TsLqv4eNpEsTxzdAoUG6ec7BUvgM4Lyhjc+WI9U=)
2: pMIZZEHYcO0IlQ8lJ-JaDY1xnJs.roa (hash: KI7tUZnJYI1JaBjFs0d5L727l5SVVoE+xByQFUZQZZI=)
3: uiLIHzK4-mf16_OjnZc2yUpW0us.roa (hash: RlQY7OlYxlif+RwnDDphDKPVhonzC8U4YVG2wYszXJM=)
4: wmxHtvcKqJtTUqnf5sR3cyCPMeg.roa (hash: /EPsVJFiMZ3O3IoH+IOAZdQSfyIhjr2V/FlxWvt6e5c=)
5: xF5VKoGOYu4SuTkWFtzR0bzZqmI.roa (hash: rdwu1BaRed5RxmIo/GH4jXiyNp3cFaIjeNX4kVrFm70=)
6: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: jIrdN2stR02+c9FTk8Yga2wwt0m+AZOV20OlzpVtjoY=)
7: zPFc5xzrxxMWf2K11uBlgIiWqTo.roa (hash: 3x/T35aDdfP5Wrtlu3UJYc2NEgecLDM5KH+dyoNyYx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:d2:85:11:26:c7:87:0e:8c:7e:9a:87:91:6d:fc:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: May 5 19:00:50 2025 GMT
Not After : May 6 19:00:50 2025 GMT
Subject: CN=4f577f5e655e7dacc5951595586d0a87d5a81cac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ad:c4:21:e9:62:cc:2d:d9:87:96:64:0c:c0:
09:39:24:13:e6:2a:f2:50:c8:89:4d:b5:0c:b4:b8:
f6:5a:af:bf:5a:48:2a:6b:03:d2:38:38:d3:d6:96:
42:da:be:91:21:a2:e8:0b:16:9b:a4:02:10:37:b5:
d8:11:4a:7a:8b:76:60:e8:4d:e0:58:fc:a4:f7:cc:
57:b2:e8:76:80:9a:b5:88:4b:ef:99:3b:0f:8d:82:
d6:3f:eb:59:a0:08:4b:3b:7a:58:80:26:79:a0:6d:
05:6a:77:6a:7e:38:b9:de:ee:1d:ef:44:8b:c6:e9:
50:21:2a:d6:69:a4:56:a6:fb:93:5c:c3:fb:93:3c:
10:39:8b:13:5c:52:66:a2:e2:29:7e:87:ea:b5:d6:
ac:59:87:ea:d2:88:51:35:a6:a1:1a:c2:33:ad:b2:
ab:ed:1a:68:a0:e5:d1:b4:2a:c1:30:fc:b9:07:8b:
ec:08:9c:3d:91:02:29:ae:1d:f7:2c:68:81:f1:34:
c7:92:08:67:68:3b:c7:0f:2f:15:b5:d1:37:25:38:
61:a6:cf:58:aa:c9:89:9d:21:ff:15:ec:b0:cb:53:
fa:0c:54:f3:8b:90:3a:73:61:f2:5b:b9:c3:4a:4b:
37:3e:33:af:65:b0:56:f2:18:dd:26:0f:f3:e2:ba:
d8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:57:7F:5E:65:5E:7D:AC:C5:95:15:95:58:6D:0A:87:D5:A8:1C:AC
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:7a:78:b3:99:29:89:14:6c:5e:8f:a7:25:42:01:38:c2:29:
6a:24:50:35:b4:98:a5:40:44:20:0d:9d:ea:86:72:9f:cd:ef:
e0:77:a3:f9:19:61:db:48:73:e6:bb:77:9f:49:5d:0d:af:89:
cc:0b:5d:8e:e5:a6:5b:26:dc:13:cb:bd:99:ea:66:ba:f5:f5:
7a:1c:a5:b4:6b:cd:d8:86:9f:20:b4:39:6f:87:57:36:ba:ff:
d0:0c:da:77:c5:f8:66:1d:a1:09:08:9c:d4:9c:ff:64:e1:37:
21:50:af:29:e9:13:70:d4:d1:43:dd:27:5d:9d:ec:20:7c:59:
9f:0b:55:60:69:62:54:23:58:22:77:7b:90:05:ef:cd:cc:ce:
41:9e:fc:6a:d0:bf:33:ed:9a:9b:86:b5:05:58:be:a5:4c:08:
d0:26:28:be:44:4c:5e:94:fa:fa:a7:b2:54:0a:5b:2a:f1:e5:
bd:8f:3d:a1:99:bb:3b:e5:27:32:d7:b6:8b:11:61:0a:27:f9:
ea:76:e0:0a:4e:da:31:6d:ff:03:9f:69:e4:31:53:f4:74:a1:
b7:01:a7:d2:b1:0d:77:0e:aa:e0:53:15:2a:e5:b4:e0:46:b6:
da:f4:8c:6e:a5:7a:48:55:dd:72:10:59:6c:2a:0f:a0:b8:76:
67:ae:c8:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 01:42:39 2025 by rpki-client