Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
File: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft (raw, json)
Hash identifier: wSJQqHxZrMRVJ/iky/D/h8j1bNORwLHnhpPnTdU7r4g=
Subject key identifier: B6:EE:D0:A0:3D:20:A5:3B:F3:42:D2:F3:DE:80:B3:9B:66:69:23:46
Authority key identifier: 62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B
Certificate issuer: /CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b
Certificate serial: 01969D87B8A398FD293C50943EF41C1A95B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
Manifest number: 0111
Signing time: Sun 04 May 2025 23:00:39 +0000
Manifest this update: Sun 04 May 2025 23:00:39 +0000
Manifest next update: Mon 05 May 2025 23:00:39 +0000
Files and hashes: 1: FRrrM4yAfnu6pnFh5wowlvqVDWA.roa (hash: Hv8/4ynB8VDf7OX62BWXwwqyCndg3mMaA+WdwhpJSlw=)
2: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl (hash: KJdW7gNo+6hH6ecgINid2QOInro8V2IiCb7GmCA+60o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:87:b8:a3:98:fd:29:3c:50:94:3e:f4:1c:1a:95:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b
Validity
Not Before: May 4 23:00:39 2025 GMT
Not After : May 5 23:00:39 2025 GMT
Subject: CN=b6eed0a03d20a53bf342d2f3de80b39b66692346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b7:6f:aa:f9:23:a7:6b:0b:d5:2a:7d:d1:b1:
0b:0c:b7:c3:e8:e4:44:7c:08:e3:16:ae:5f:27:b5:
c7:e1:e7:6e:ae:b3:35:b4:c5:d2:6f:41:1a:a8:f6:
09:1f:d7:c6:78:0c:0a:82:01:e1:ed:4e:51:7b:36:
41:78:1d:20:29:4c:3a:76:63:49:54:59:bb:d1:9a:
61:71:68:46:39:ce:89:c0:57:30:dd:21:87:e5:7c:
44:6b:e3:65:66:98:e3:c9:a7:e0:82:d6:01:ab:be:
7b:99:a1:32:ce:a4:7d:12:aa:f8:07:b6:4a:2e:d3:
87:58:ba:be:d3:dd:bb:8c:cf:d2:93:f6:5d:11:00:
ab:63:75:fa:96:26:3f:2a:fc:3f:3c:7a:db:26:6d:
41:bf:29:16:5b:68:08:31:66:04:a3:3f:8d:1d:3d:
28:21:5e:1f:b2:1e:3d:ba:fc:85:f6:9d:fa:e9:81:
d1:14:21:41:1f:5b:c3:88:a4:63:5a:7c:25:2a:07:
39:12:25:0d:b5:c5:26:22:27:de:a3:40:4e:5f:7a:
cd:a9:0b:1f:05:20:fb:97:b6:f0:06:7e:fa:9f:fe:
fe:64:72:10:e2:37:eb:c7:42:f7:63:49:df:a8:91:
ca:3c:b9:bb:b6:ac:1b:4c:8a:49:13:42:c5:41:b4:
90:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:EE:D0:A0:3D:20:A5:3B:F3:42:D2:F3:DE:80:B3:9B:66:69:23:46
X509v3 Authority Key Identifier:
keyid:62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:7a:03:f0:ea:2b:d3:24:4c:63:5d:7d:77:11:43:e6:1a:2e:
e9:23:b6:48:08:4e:08:5b:36:51:9b:54:41:da:3b:3c:ba:c8:
e0:e2:f6:29:ef:c9:e8:6f:f4:7a:b2:73:41:e7:e6:31:e1:34:
ac:b5:d6:72:aa:76:38:fe:23:f6:23:ed:14:8b:ca:10:45:fc:
6b:dd:91:b1:3c:c8:eb:2f:6b:a9:f2:81:91:e6:1f:67:1a:b7:
3b:df:a5:a1:d6:04:89:2c:f5:5b:28:31:5b:7d:0b:ee:dd:5d:
cc:0d:69:bc:fe:51:68:54:e1:11:79:01:bd:75:9b:11:72:e0:
95:b6:26:d0:9c:b3:ca:55:8e:0e:6c:50:ce:7c:1c:5b:14:e6:
ae:01:6d:7a:34:f8:47:c4:8f:38:ac:a7:1f:64:b5:22:3e:31:
6f:b1:d6:13:24:b9:a1:9f:c9:d7:fe:ae:85:f7:24:e1:de:d6:
44:01:84:dd:99:5f:ac:d0:26:eb:89:65:18:35:82:03:87:7a:
ac:21:e8:73:58:4f:8c:c7:19:ce:47:1f:d8:ad:53:cd:9d:92:
91:6a:8e:ab:f6:34:0a:2e:a0:54:b7:09:28:00:07:9b:66:cc:
6c:88:e2:d3:83:8a:06:25:db:6b:83:54:b4:ca:df:a2:e6:0f:
02:8b:1d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 07:09:19 2025 by rpki-client