Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
File: YNxaADaNiuH7qZVDHwOkExrdipo.mft (raw, json)
Hash identifier: 3QFIZqynuiPf0Gtnbcsnk55fwHzLcNeXFEm/LaAXMdY=
Subject key identifier: D3:6A:91:56:2B:B5:63:22:70:56:C3:12:E8:CF:ED:7E:D4:DC:FE:43
Authority key identifier: 60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
Certificate issuer: /CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Certificate serial: 0196A6C23AEB9B44FBA5A3CEB05214AF6FE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
Manifest number: 06D4
Signing time: Tue 06 May 2025 18:01:09 +0000
Manifest this update: Tue 06 May 2025 18:01:09 +0000
Manifest next update: Wed 07 May 2025 18:01:09 +0000
Files and hashes: 1: 2eWTXc6MdHH3SvAeJM9n6ydZI5Y.roa (hash: XnJT5JSjqE4Adj+ylm025sl/JK+1c1iwTV7Ra2tEO8w=)
2: YNxaADaNiuH7qZVDHwOkExrdipo.crl (hash: F2GiDsQ9kDjmVe7L1t2WTqdk+m+6UnVoqf1OxLRFpqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 14:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a6:c2:3a:eb:9b:44:fb:a5:a3:ce:b0:52:14:af:6f:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Validity
Not Before: May 6 18:01:09 2025 GMT
Not After : May 7 18:01:09 2025 GMT
Subject: CN=d36a91562bb563227056c312e8cfed7ed4dcfe43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d8:c9:ee:69:c0:3f:b3:d6:9c:d5:b8:e7:2b:
e9:97:33:86:8e:e1:68:91:ca:40:2a:43:85:c1:fa:
07:d9:a1:f7:1b:cd:fe:87:b6:9d:3d:c5:49:8c:61:
9c:87:b4:7d:21:df:8d:a6:b1:25:0d:8a:72:55:81:
ad:44:ff:0c:c8:c3:c1:4b:f5:1d:33:4c:b8:47:33:
45:18:39:09:93:81:4f:08:95:03:0a:f1:e5:58:b9:
ea:77:26:a9:b7:9a:22:ea:6f:fb:50:5a:d1:a4:64:
a1:9e:00:00:89:a9:ea:42:07:4e:03:6e:8f:de:ad:
3b:eb:a1:bb:00:25:25:4a:5a:8a:68:91:b4:c7:91:
a4:75:2c:bd:8a:09:58:75:f3:94:cd:8e:b1:2b:cb:
c0:a5:92:c6:a6:82:b6:62:33:69:b1:40:c5:8e:07:
17:4b:b5:39:dd:7d:75:33:c2:13:77:1c:8d:54:81:
88:19:9a:06:3c:1c:6e:58:ac:70:17:45:14:88:77:
61:ac:27:64:fc:fc:1d:02:45:2d:fd:d8:02:e5:5b:
cc:33:2b:61:aa:2c:9b:a5:7e:98:07:21:d8:ae:d7:
a1:8c:46:68:98:01:c0:77:58:1a:dd:4f:f4:c7:6f:
48:07:43:1b:9a:71:3b:dc:75:70:3f:5a:44:e0:91:
c6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6A:91:56:2B:B5:63:22:70:56:C3:12:E8:CF:ED:7E:D4:DC:FE:43
X509v3 Authority Key Identifier:
keyid:60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:1c:62:28:f8:27:2a:3e:b9:d1:7a:2e:94:6e:6f:ba:f6:c9:
e6:99:da:a8:a6:a8:93:7d:00:0b:1c:30:53:57:6f:03:ce:8f:
cc:9f:41:f2:70:f5:78:73:eb:53:38:94:d8:60:d8:35:16:37:
94:d1:2b:52:55:c0:b5:f7:aa:96:25:8a:35:db:7a:e3:1d:9b:
61:a7:84:52:3b:62:1e:8a:66:a3:cf:13:18:05:9f:54:e9:0d:
2f:26:61:84:14:74:6a:c7:e0:55:bf:46:d7:e7:c9:c7:1b:b7:
e1:96:a0:48:1c:5f:d2:37:70:bc:36:04:eb:11:11:85:f2:32:
8b:a0:00:ed:45:70:ed:13:6c:cf:53:2e:77:c4:40:44:89:58:
03:7c:0d:3d:d9:9d:49:db:57:fd:86:fc:7a:18:c7:94:98:27:
02:5b:06:99:06:20:29:2e:89:30:ff:b1:78:91:36:ea:0d:1e:
66:10:35:fa:6a:2d:1c:64:02:b7:c9:bb:5a:d9:d4:cf:e5:f9:
9b:03:27:b6:92:6d:09:3f:17:c8:d0:6b:b2:29:12:05:51:33:
0f:51:00:e4:9d:50:56:32:5b:b9:6f:8a:cc:d3:7b:9b:81:63:
74:50:c7:73:93:1f:8d:a8:a2:2d:e4:80:41:94:f2:cd:4f:ac:
1d:3c:e4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 23:06:16 2025 by rpki-client