Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft
File: yQDj7qi7474R-IxoK9E4wmUH99w.mft (raw, json)
Hash identifier: 9+MT0+IcsEMdg8tnMJLcQ/Jr8xb32Mea7852a221/9o=
Subject key identifier: 8A:18:40:56:C8:8E:99:FD:5F:41:E2:AA:DA:C1:2E:71:AE:F0:B3:F4
Authority key identifier: C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC
Certificate issuer: /CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc
Certificate serial: 0196C15D956DA066E4AB0082FDB3CC81CB8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft
Manifest number: 0C1B
Signing time: Sun 11 May 2025 22:00:57 +0000
Manifest this update: Sun 11 May 2025 22:00:57 +0000
Manifest next update: Mon 12 May 2025 22:00:57 +0000
Files and hashes: 1: yQDj7qi7474R-IxoK9E4wmUH99w.crl (hash: yPjiQyzH5x32eX/mPg+eNhw9xxi+8UxCMCkyDYAFyhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 22:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:95:6d:a0:66:e4:ab:00:82:fd:b3:cc:81:cb:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc
Validity
Not Before: May 11 22:00:57 2025 GMT
Not After : May 12 22:00:57 2025 GMT
Subject: CN=8a184056c88e99fd5f41e2aadac12e71aef0b3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6c:5b:fc:20:c1:72:6b:e8:c4:d5:89:fd:8e:
53:ae:c4:37:27:20:b2:ac:6f:a0:6d:ab:96:4f:ed:
1e:16:91:89:7b:fd:eb:e8:27:bd:86:d4:31:ec:83:
e8:9b:8a:fc:6a:d5:19:14:61:b6:63:76:5c:79:0d:
37:c6:4f:11:66:67:68:4f:ee:8f:5f:8b:bc:d8:70:
0a:96:49:9b:16:42:ef:22:93:8a:3c:d4:fa:1b:d9:
b4:2e:89:5d:23:9f:57:34:5b:57:84:d2:98:c3:45:
5c:25:fc:09:4a:46:c9:57:5e:c8:ba:b9:32:5f:89:
b0:e7:04:98:12:90:45:8f:df:18:9f:01:5a:8b:84:
6f:30:77:c9:91:6b:1a:e5:d1:1d:a1:db:d7:e4:47:
2b:89:b1:91:56:a3:f9:8a:f9:08:d1:f3:8c:41:36:
c8:e2:c1:3b:bb:0f:cc:53:b8:60:dc:a9:12:18:8a:
6c:85:0b:06:41:d0:fa:a7:8a:c1:e1:96:9a:78:c9:
3d:f2:a4:0c:2e:e9:2d:ab:fb:ef:9c:eb:c0:ab:0f:
4d:b4:14:28:93:b4:58:fc:01:a5:14:9f:0c:bf:e7:
74:ac:e3:03:8d:48:d2:9f:fc:01:c1:54:83:a3:a0:
a8:cf:2c:3f:cc:08:b8:8e:88:fd:61:b8:b5:ac:5d:
f7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:18:40:56:C8:8E:99:FD:5F:41:E2:AA:DA:C1:2E:71:AE:F0:B3:F4
X509v3 Authority Key Identifier:
keyid:C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:2e:17:b6:4d:dd:63:21:e6:dc:83:77:69:36:b1:2c:48:7e:
03:ef:f1:95:cb:91:ac:23:68:20:99:27:74:5b:7c:d7:54:25:
c8:a8:1a:91:48:cf:49:e8:50:1d:06:23:09:5b:49:1d:7b:7b:
0a:57:93:58:bf:44:61:fe:ca:16:69:7d:2b:30:cd:ac:85:88:
19:99:04:02:2d:1c:53:aa:8d:d3:4f:36:0d:2f:48:23:09:29:
73:d9:4e:a0:cd:10:cf:b0:6c:22:ee:bd:9b:bf:f6:e7:c7:d3:
b1:58:43:68:98:5c:bd:ba:0c:67:52:aa:ca:29:08:bd:0f:38:
08:1d:e6:a7:3f:9a:66:b0:ad:77:dd:46:74:03:a3:7f:1a:6a:
f8:bc:9e:b5:9d:fe:f8:f7:e2:0e:4a:0d:b0:dc:be:06:1a:ba:
90:59:b9:8c:a6:a7:bc:58:3a:83:50:c0:c9:a6:eb:5d:ea:f8:
6e:94:fd:06:6f:a6:3d:6c:97:3f:21:ef:d0:31:bf:26:fc:83:
59:61:4b:02:b3:b1:33:fe:f5:93:91:8c:d2:5b:de:77:fa:43:
cd:85:d2:e3:d1:99:82:7d:af:9a:3f:f1:40:a4:31:7c:e5:39:
08:92:01:df:54:39:95:e7:07:c1:82:92:0c:73:2d:e8:de:10:
6a:d7:74:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:22:42 2025 by rpki-client