Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: hpGNTBVfEzTM+Uyg9pWHSoyubcT3NjYtCsbXn7xVrKY=
Subject key identifier: AF:7A:01:72:1A:35:4E:48:17:E2:83:A5:93:1F:2A:FA:7F:AB:C1:DF
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 0196BC36DF1E344756F0C8E505AA857DBC86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 109B
Signing time: Sat 10 May 2025 22:00:34 +0000
Manifest this update: Sat 10 May 2025 22:00:34 +0000
Manifest next update: Sun 11 May 2025 22:00:34 +0000
Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: JB2vbKv6hPWJjvJ2FBl1xBOEbSnSI3Gt/ykmIkl3vEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:36:df:1e:34:47:56:f0:c8:e5:05:aa:85:7d:bc:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: May 10 22:00:34 2025 GMT
Not After : May 11 22:00:34 2025 GMT
Subject: CN=af7a01721a354e4817e283a5931f2afa7fabc1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:32:5c:49:87:2a:88:55:18:bb:c6:c3:36:83:
88:d7:d1:2e:43:ad:3b:9e:8a:9c:74:f5:73:55:95:
75:47:7d:f5:91:56:4e:39:11:eb:8e:48:6c:16:42:
bc:7a:b7:4c:12:66:cf:6e:b8:96:54:a7:17:98:4b:
a1:39:ca:60:c3:b6:23:87:4f:29:2d:30:08:db:e0:
fc:16:f9:1c:fa:5e:4a:1f:6d:e2:47:46:ed:d8:bd:
ee:43:8d:ed:55:8b:5c:62:0e:33:19:ad:75:db:dd:
01:64:b9:2a:1f:6f:c7:2f:29:73:67:be:25:f5:7a:
d3:2e:68:3e:10:63:24:33:69:b5:d8:44:be:c9:45:
f0:0d:4d:08:b2:3d:fa:4d:d2:a9:36:bb:2b:49:7e:
32:90:30:06:54:a1:ec:ad:f7:7d:2e:2e:34:59:4c:
e6:ee:04:0e:42:dd:18:c0:09:d1:80:b6:25:dd:e2:
6d:b0:95:0a:37:27:cc:00:c9:17:30:e6:80:6f:bd:
b8:4f:c2:6b:bc:aa:2a:e9:ba:7e:0a:43:33:a5:e8:
a8:42:4f:24:1b:bb:1f:39:56:61:47:84:16:25:af:
09:23:cd:83:de:17:e1:df:43:b0:55:35:e0:dd:93:
54:94:ec:f4:a3:1e:7e:96:a1:57:7a:7c:c6:06:71:
8b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:7A:01:72:1A:35:4E:48:17:E2:83:A5:93:1F:2A:FA:7F:AB:C1:DF
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:45:7f:7e:00:f8:bd:14:b9:cb:6f:29:65:59:f5:4f:41:34:
f9:05:a2:35:89:81:5d:38:42:70:c1:1e:ed:d6:29:b2:9b:0e:
26:4a:c9:54:da:b7:17:09:4a:ab:e4:66:56:65:24:28:82:3c:
a7:3c:b0:e0:df:22:10:e3:3d:55:2d:d7:19:28:e4:18:5e:07:
cf:b1:05:21:d7:39:fb:56:22:f9:a0:aa:e7:25:c6:dc:a1:ad:
0d:e6:76:f2:75:ba:5b:43:49:34:50:f0:22:47:e0:a3:22:e2:
bd:d2:b9:97:b2:6a:67:64:8f:c4:3d:b0:a1:8b:ec:d9:61:56:
a5:f7:24:97:a0:a5:11:c0:e2:a7:47:c7:fb:65:13:18:c9:9e:
82:1d:4d:43:7b:fe:5e:ff:2b:9a:11:82:ac:13:09:c9:49:b0:
36:80:aa:05:de:49:ea:1e:66:2a:de:bf:62:a0:4c:43:65:b2:
bc:e4:8d:72:5a:2e:d6:db:05:5e:b0:37:60:14:bf:0d:b7:72:
7a:9c:65:1c:90:06:c9:4d:c3:25:e2:a7:72:43:83:a3:30:92:
c5:97:e1:36:42:fe:31:17:97:55:2c:e8:3b:9a:66:21:dc:52:
38:e0:99:be:54:f1:93:85:84:fe:57:52:ee:cf:9b:84:b5:ec:
34:98:34:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:37:36 2025 by rpki-client