Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
File: YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft (raw, json)
Hash identifier: /eFYMc07Ec9iGTf2LzPEAwP70X+HH06qg8ULOIdNyHE=
Subject key identifier: 39:74:35:F7:16:7C:F9:99:C8:C4:91:B0:07:77:F2:A8:41:85:7E:D6
Authority key identifier: 60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C
Certificate issuer: /CN=6052e1592b12ad2cd39f5be57c058535edb12b9c
Certificate serial: 01969F07F7362505D5BC322E3809B2D6E248
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
Manifest number: 0AB7
Signing time: Mon 05 May 2025 06:00:21 +0000
Manifest this update: Mon 05 May 2025 06:00:21 +0000
Manifest next update: Tue 06 May 2025 06:00:21 +0000
Files and hashes: 1: 4ohGnWINC3iPFe6nDpOqBOx7d2s.roa (hash: 9AbJKb6HLl4DZwmq7R7PVZTsMXxo/QDCXs2EgLL85AU=)
2: YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl (hash: t5PzlW6CQWaX8SCt8S44D44dqCcruE08O6UBzHovC/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:07:f7:36:25:05:d5:bc:32:2e:38:09:b2:d6:e2:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6052e1592b12ad2cd39f5be57c058535edb12b9c
Validity
Not Before: May 5 06:00:21 2025 GMT
Not After : May 6 06:00:21 2025 GMT
Subject: CN=397435f7167cf999c8c491b00777f2a841857ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:53:c9:96:81:1b:85:e8:fc:74:fe:96:18:33:
0e:76:c8:19:b6:16:41:f2:96:63:b7:73:9e:a2:dd:
ed:96:ad:ed:a6:db:73:90:b7:2d:45:39:c0:e7:76:
05:32:06:3d:c3:5c:94:51:9d:d8:67:7b:4c:6b:b7:
23:44:c1:7a:97:82:8a:ce:32:0f:a8:20:1a:20:92:
40:1a:41:57:ad:2b:66:df:87:1b:90:8f:be:c4:4f:
0c:74:50:46:85:9f:86:84:ce:fb:46:df:32:56:fa:
51:81:5b:61:a0:53:dc:d3:3b:e8:88:87:8f:d6:f0:
66:59:d5:29:c4:22:82:4d:5f:2d:e7:7a:53:9e:d5:
d7:69:ef:b5:9f:6d:e8:cf:7d:ab:33:af:00:72:de:
2b:e5:4b:ef:36:1c:3b:41:0d:b6:d5:50:c7:88:08:
dd:14:a0:11:19:f4:f8:8b:4d:52:48:af:b4:91:db:
12:c4:d6:9e:1f:8d:73:0b:7f:93:23:a2:75:c1:9c:
f0:c4:dd:47:34:f8:e9:53:06:b5:ba:a0:2f:36:33:
5c:a6:9f:08:9c:62:e7:0b:64:0d:e8:cb:7a:af:76:
55:6d:2b:53:b6:29:4a:7d:30:ec:19:dc:ec:76:20:
ec:98:de:31:cb:4d:81:2c:60:15:c9:8e:16:1f:96:
d6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:74:35:F7:16:7C:F9:99:C8:C4:91:B0:07:77:F2:A8:41:85:7E:D6
X509v3 Authority Key Identifier:
keyid:60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:58:3b:ae:13:60:29:a4:c6:25:f9:ea:ba:ef:be:b6:cf:92:
59:1c:fd:e3:66:38:dd:1d:d7:7f:d7:21:54:c8:92:6d:d3:75:
fe:36:b1:e8:6c:34:e8:2e:da:90:92:55:8b:78:39:19:19:b6:
2c:00:d2:db:07:86:95:41:17:d9:2c:4d:92:2e:a6:2c:f9:88:
e1:ee:90:12:7d:3b:56:a3:bf:ac:ca:e4:12:09:a8:cd:b5:35:
fc:45:87:81:f2:34:bb:c7:7a:d8:50:3b:1c:7c:f1:8b:d8:94:
88:16:4f:88:44:f0:a8:a4:19:29:7b:e7:a8:e0:12:fe:a1:bf:
f7:de:3a:ad:12:43:1d:d6:9d:d4:8a:79:33:5b:d4:ff:ab:e8:
74:5f:54:ee:53:ee:ce:59:01:96:fe:8a:1f:5a:3f:6c:15:a3:
97:f5:a3:c6:80:e1:34:27:3d:9e:18:e0:4d:23:20:71:c0:e6:
0b:35:e7:66:14:61:d8:93:67:60:53:68:e5:da:a8:18:ea:80:
d9:4c:0c:61:5f:3e:ad:b3:61:4c:48:07:2d:17:38:56:21:5d:
43:e6:e5:93:68:90:b7:bc:0c:5f:99:72:c3:b1:47:b0:39:44:
9e:81:db:96:8a:6c:e7:68:3d:a1:2f:ea:07:a9:33:fc:da:94:
c2:f6:c5:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 14:24:42 2025 by rpki-client