Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json)
Hash identifier: MJ775Vugs6yKaJuKYZ+g99Ko8RaPihDiGEvyLsOf7VU=
Subject key identifier: 28:88:8C:53:0F:7C:9A:17:96:33:37:98:12:C4:40:9B:40:96:33:56
Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848
Certificate serial: 0196C9F2EA8E1F5887BB8AEC72524D23F855
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
Manifest number: 153B
Signing time: Tue 13 May 2025 14:01:02 +0000
Manifest this update: Tue 13 May 2025 14:01:02 +0000
Manifest next update: Wed 14 May 2025 14:01:02 +0000
Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=)
2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: 3em6FQWNYm5AyxUdhK6e1iOODl08WtqI4l68j4s0Lyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:f2:ea:8e:1f:58:87:bb:8a:ec:72:52:4d:23:f8:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848
Validity
Not Before: May 13 14:01:02 2025 GMT
Not After : May 14 14:01:02 2025 GMT
Subject: CN=28888c530f7c9a179633379812c4409b40963356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e3:5c:92:40:c6:02:e1:b5:22:26:c2:3a:7c:
a7:70:99:75:e6:67:c8:aa:4e:a1:af:7e:58:9b:1f:
9c:c7:4d:8b:98:dd:3d:92:79:b6:5c:6b:34:16:05:
96:3e:5e:8d:c6:c5:a0:8c:c1:67:68:3d:36:a5:f8:
65:44:b8:ff:d8:d7:92:1d:0e:f8:36:7a:14:e1:10:
20:9f:81:a7:46:cb:1b:8f:0a:e3:27:f3:e8:36:9c:
39:cf:75:a9:ab:34:d7:b7:09:bc:4e:c1:2b:71:7f:
76:34:49:d8:34:07:74:94:4f:31:0a:ec:78:ee:cf:
f2:c1:35:d7:62:33:1b:3c:ac:db:3b:94:a7:71:ac:
ca:d8:b7:4d:53:80:4f:fe:ef:35:8d:04:07:08:3a:
be:c2:2e:ff:cd:9d:4c:12:f0:0b:c3:2b:a5:b7:14:
a2:93:95:1d:a6:99:82:58:88:70:d3:c6:3c:9c:b7:
58:1c:fa:0c:aa:2b:0b:78:d7:5b:e1:2c:70:68:d9:
79:53:b5:bc:01:c8:cd:ce:32:d4:f6:ac:58:32:07:
03:59:f9:d0:aa:4a:64:2e:1a:7a:f3:d3:5e:01:88:
7a:4b:e4:79:fe:a3:93:26:9e:fc:88:85:c0:94:9a:
51:ea:6c:50:10:e7:e2:31:b7:6b:c2:23:d4:b6:17:
aa:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:88:8C:53:0F:7C:9A:17:96:33:37:98:12:C4:40:9B:40:96:33:56
X509v3 Authority Key Identifier:
keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:b2:e7:fe:26:e4:de:21:0e:59:80:06:50:3d:30:8d:f9:60:
c3:3b:74:e4:72:9a:7f:66:b5:55:fb:ec:56:b8:1c:7a:9a:6a:
03:7e:04:1c:ad:35:2e:46:85:bd:56:fe:36:05:1f:f1:0c:a5:
dc:88:68:20:98:e1:07:d6:0c:2d:89:fa:51:21:fc:3e:ac:83:
aa:32:0c:4d:5e:d7:38:c0:59:e5:5a:af:e5:ff:b4:b5:4e:8a:
04:dd:10:bc:e8:f0:fc:fd:04:5b:33:da:6a:c3:57:42:a6:c3:
6e:22:b8:ba:e4:81:07:45:e6:ae:97:ae:c1:5d:f4:18:59:07:
07:2c:12:5f:aa:60:65:24:1e:24:1f:c1:f0:4e:bc:45:b2:17:
99:d6:52:3b:5e:b5:70:4f:63:0e:dc:01:8d:f3:83:28:ea:e7:
ce:45:eb:62:27:7c:91:2d:fe:05:46:b0:a7:e5:81:40:f1:e0:
92:b4:b6:27:4e:c4:70:09:9c:79:58:21:5e:b1:81:27:ff:47:
7e:8d:c2:98:cd:7c:31:6b:b7:0e:f0:bb:9e:9f:d4:f1:70:98:
1e:e0:4d:07:b0:51:eb:7a:87:c7:d5:ee:d2:c4:3e:42:e6:53:
40:56:71:9d:10:d2:d1:73:00:ff:41:57:a7:77:9c:f0:c6:53:
69:1d:e9:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 19:49:04 2025 by rpki-client