Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft
File: yyDpqru2GRVGEQI1z3bEg4S0UdA.mft (raw, json)
Hash identifier: cPng0SChTjO0eJPRNvz9+az43hgvzJ9uXPK/5IlDxUQ=
Subject key identifier: 24:04:88:45:96:C8:76:0B:1F:C9:BF:04:54:EB:58:7B:3C:DE:0C:F5
Authority key identifier: CB:20:E9:AA:BB:B6:19:15:46:11:02:35:CF:76:C4:83:84:B4:51:D0
Certificate issuer: /CN=cb20e9aabbb6191546110235cf76c48384b451d0
Certificate serial: 0196B0D7D55C6654FD09BBD1F295601A733C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft
Manifest number: 047A
Signing time: Thu 08 May 2025 17:00:56 +0000
Manifest this update: Thu 08 May 2025 17:00:56 +0000
Manifest next update: Fri 09 May 2025 17:00:56 +0000
Files and hashes: 1: FrgpiGySO2oWsL9iFngnI7PbElc.roa (hash: K8ZOrdKMvikDUKQOk+LhYtaLYhJs3NNoQsJnp3Y9dfE=)
2: yyDpqru2GRVGEQI1z3bEg4S0UdA.crl (hash: 9hiF+yyHBLaLSXZlUzXBCV05YGoTerLHdWqCMwAhOMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 15:42:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b0:d7:d5:5c:66:54:fd:09:bb:d1:f2:95:60:1a:73:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb20e9aabbb6191546110235cf76c48384b451d0
Validity
Not Before: May 8 17:00:56 2025 GMT
Not After : May 9 17:00:56 2025 GMT
Subject: CN=2404884596c8760b1fc9bf0454eb587b3cde0cf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b1:5d:7b:7c:28:98:e6:81:a9:88:1d:d3:c5:
18:55:3e:9a:0f:13:31:24:0b:3d:10:a7:aa:e1:fa:
84:6d:3b:af:41:6c:98:a1:bd:69:32:1d:a0:85:24:
ec:6b:25:43:9f:ee:d2:ef:b9:87:df:1c:82:0d:07:
dc:19:c3:79:a8:20:9b:7d:c3:58:af:ac:c1:d8:8c:
7b:70:ae:9e:a0:7d:f2:ed:45:41:c6:59:45:91:c9:
a0:3d:a1:45:f2:68:55:b1:f2:f8:ad:9f:aa:7d:c7:
f9:94:7c:4d:7d:e6:62:84:38:6e:06:38:5e:01:e2:
3f:7f:4d:d9:82:a0:23:0d:88:24:aa:9d:0e:35:78:
56:b0:6d:16:6d:ce:12:12:6f:9f:75:f2:f0:00:59:
f6:bb:f0:e1:d5:49:9c:fa:73:1c:aa:c4:3f:7c:75:
18:b2:01:4e:7c:35:f4:70:76:f0:7b:60:08:b7:5e:
2e:ff:5f:e8:28:ba:a9:f1:30:0e:94:82:d3:27:9b:
c9:31:98:d7:36:02:9d:bb:05:78:47:ce:94:84:06:
27:d9:bf:86:2c:d2:ce:68:23:b8:fc:be:2a:4e:1e:
4b:71:9b:59:9c:36:b4:6c:15:c9:ad:b7:b2:1a:b6:
82:02:82:a8:3f:ed:4c:9c:2b:a3:53:99:bf:cf:37:
12:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:04:88:45:96:C8:76:0B:1F:C9:BF:04:54:EB:58:7B:3C:DE:0C:F5
X509v3 Authority Key Identifier:
keyid:CB:20:E9:AA:BB:B6:19:15:46:11:02:35:CF:76:C4:83:84:B4:51:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:06:5f:cf:3c:fa:4c:b5:8d:f1:46:d6:0b:04:91:e7:39:ff:
2a:a6:9c:92:2d:3c:15:e8:0a:9b:ba:31:cf:37:aa:c8:60:1b:
ac:21:91:06:92:70:c3:3e:4a:dd:8f:d6:e9:83:fe:66:f9:b3:
88:a7:ff:52:f6:04:b8:e2:94:0f:60:d8:11:88:6f:5e:df:bc:
91:12:0d:74:d3:09:dd:18:8b:61:ea:af:9b:18:bc:c3:60:da:
97:02:68:f0:fa:04:20:22:ae:bc:38:a1:3d:fe:98:54:c2:34:
4b:92:91:dc:34:12:02:63:df:7f:e9:89:d8:aa:f5:e8:f4:3b:
2c:63:a4:c8:2a:51:e5:cd:7f:ac:9a:63:d4:aa:d6:bb:a0:28:
30:f8:64:c0:fd:b1:ee:e9:fe:1a:fe:8f:25:51:5f:63:a0:bc:
a3:56:93:09:45:55:e6:fa:9f:14:7a:74:0c:b4:f7:f9:6b:55:
2e:a7:85:06:e8:63:3b:b6:74:6c:14:93:76:c3:c4:a8:0b:b7:
2e:e0:5a:d0:ec:1b:8e:14:6b:17:c5:04:cf:5b:c2:99:e1:c9:
87:8a:a1:54:ed:44:a4:ca:f9:b8:6c:c8:89:93:8e:24:06:07:
64:19:21:b5:41:40:84:68:cf:3c:44:eb:c2:db:fb:19:be:71:
fa:b3:cd:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 21:33:48 2025 by rpki-client