Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json)
Hash identifier: l8dAVhQfeD6n5jHAB5kTjOoFenUklot9PyxYtceekSs=
Subject key identifier: E4:BB:47:75:98:2F:E8:DC:19:F2:E3:D1:2A:B6:C4:D6:95:10:53:F2
Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Certificate serial: 0196B7B554F22D53F21D01D56CC47D00CF74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
Manifest number: 1531
Signing time: Sat 10 May 2025 01:00:36 +0000
Manifest this update: Sat 10 May 2025 01:00:36 +0000
Manifest next update: Sun 11 May 2025 01:00:36 +0000
Files and hashes: 1: FcPpw1IibzSy4BenkulclpDum4U.roa (hash: HSUDUncC0CCpqaUKBhWSJTD0GmSsEAzCocsfF6H1tqA=)
2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: TB3vDUxmCzejVqrwtej4TZhym763kR6axPsCspbHjdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b5:54:f2:2d:53:f2:1d:01:d5:6c:c4:7d:00:cf:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Validity
Not Before: May 10 01:00:36 2025 GMT
Not After : May 11 01:00:36 2025 GMT
Subject: CN=e4bb4775982fe8dc19f2e3d12ab6c4d6951053f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c2:e9:7d:d8:40:bc:99:7c:76:59:53:bc:ed:
d4:56:e9:f5:b3:d7:a0:96:46:8b:cc:ec:23:94:73:
2a:6a:de:c1:18:7e:08:c1:7d:85:d8:ba:43:f1:c9:
cc:27:49:90:a5:e3:2d:f1:f9:84:88:1e:4b:0e:6d:
03:fc:04:90:15:3c:e9:14:93:05:8c:bb:fd:37:77:
af:60:02:36:ea:7d:31:83:cf:0d:44:5a:4b:4a:36:
85:4d:3d:c9:b7:e1:4f:a4:7f:86:60:2d:e2:9b:8d:
03:e7:01:37:15:cf:b8:84:f7:f1:ee:3c:44:f9:08:
c9:98:e8:e1:48:1b:b7:98:8b:b0:78:c2:e5:44:9f:
80:5f:9f:5c:93:ba:5e:ea:b1:47:10:a5:88:92:5d:
2a:5e:fb:39:c1:a0:3c:69:d5:fe:2f:f7:d0:9b:d5:
c1:69:35:11:13:6c:a9:ef:1c:00:98:0d:c6:ef:4a:
44:86:2e:39:af:d1:c9:5b:c0:4d:33:fb:6d:c0:1b:
ec:c3:d0:43:f3:7a:15:04:d8:b6:bf:45:06:31:cb:
d3:d3:9f:d9:6c:15:dd:8b:a7:c8:0e:36:a5:96:9e:
88:78:f8:7b:ec:66:53:41:4e:9d:f5:2a:1c:51:1c:
f1:63:da:45:f6:a4:8e:0f:07:18:ec:b7:fc:53:ca:
cb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:BB:47:75:98:2F:E8:DC:19:F2:E3:D1:2A:B6:C4:D6:95:10:53:F2
X509v3 Authority Key Identifier:
keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:61:a7:56:a1:78:b6:ff:66:88:9d:54:c9:2e:45:c7:dc:aa:
61:b3:68:0d:07:a2:29:2a:d6:16:fe:78:b2:8e:fc:25:64:91:
b9:7d:4e:74:06:8d:68:6d:5d:f6:65:61:1c:de:42:d0:61:a4:
34:23:f7:6b:b9:cb:da:b5:14:6c:9a:21:d0:5e:0f:ab:4e:d1:
c5:3a:b0:cd:1a:a4:48:5b:12:f7:a3:69:bf:ac:e8:87:4a:4e:
a0:8c:be:f2:eb:bc:3f:dc:76:d2:c0:9b:44:1f:9a:cd:8e:9b:
21:72:3d:62:cf:7d:cd:0f:5a:4c:2b:81:24:5e:ce:19:d0:e0:
2a:c1:d5:88:fb:71:1f:db:16:a6:31:96:e4:f1:00:75:82:0d:
61:5f:c2:64:d9:8c:d2:53:9a:50:a2:1a:73:ac:21:e4:7e:7d:
a7:f0:35:e6:0f:37:a9:88:bb:7b:2a:ce:e8:2e:ea:b9:04:3a:
25:20:21:17:53:a6:83:de:0b:46:95:19:35:5d:55:43:36:a5:
d8:82:a3:e8:29:7e:18:37:73:8a:bd:e5:2e:bc:1f:01:7e:1a:
d9:3e:c2:c5:77:5f:f1:ff:93:af:87:00:85:2c:11:b1:52:78:
5f:0b:8e:b5:6b:90:8f:09:00:40:8a:b4:3f:a7:9d:c6:0c:8a:
9d:d6:0b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 04:41:15 2025 by rpki-client