Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
File: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft (raw, json)
Hash identifier: tP6uLg2U9Cuo/SPLSPLobvjgymrMsmwIyTmrWeFCUnI=
Subject key identifier: D0:0A:A9:31:1B:D5:BC:4E:03:51:DE:5D:2C:4A:A6:3F:E7:8A:B0:09
Authority key identifier: 62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9
Certificate issuer: /CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
Certificate serial: 01969E9A5DA34762E0587E535CBA4460473C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
Manifest number: 060C
Signing time: Mon 05 May 2025 04:00:38 +0000
Manifest this update: Mon 05 May 2025 04:00:38 +0000
Manifest next update: Tue 06 May 2025 04:00:38 +0000
Files and hashes: 1: RwKWDh9I_VhT28gEF3k9tJ9hdSk.roa (hash: CWqw/aMDA6ZuqW+g16a2LFyjcXoDj/1ZGqdzZueDSNs=)
2: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl (hash: myl8mXi4faCK5DnAYFwC9FeCpEBDKxR2boJlq+uF7JE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:5d:a3:47:62:e0:58:7e:53:5c:ba:44:60:47:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9
Validity
Not Before: May 5 04:00:38 2025 GMT
Not After : May 6 04:00:38 2025 GMT
Subject: CN=d00aa9311bd5bc4e0351de5d2c4aa63fe78ab009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:bb:c9:aa:a6:38:1a:df:dc:e1:c9:c1:d7:3d:
92:47:77:ad:1f:56:e7:20:bd:5f:57:55:56:7c:83:
f0:35:e2:95:14:9b:b7:1d:8d:86:5a:03:01:3f:6b:
9f:74:0a:48:3e:f5:87:50:ad:d5:47:9d:99:68:27:
4c:fe:46:80:65:94:7d:38:b0:fb:cf:2f:dd:95:30:
52:f8:7c:dc:f8:de:b0:51:b9:1d:08:12:72:15:7a:
46:2a:64:5b:60:ee:72:71:6e:65:36:c9:06:3f:80:
d2:46:81:f9:51:bc:b5:1d:3f:11:67:b0:9a:7f:1c:
3e:59:c2:c2:cc:80:1d:53:ed:83:5a:48:9f:eb:22:
b8:01:ca:2e:e0:00:73:d6:22:e5:43:43:58:b5:89:
89:59:c4:6a:48:6e:c3:92:4a:d1:b9:d8:b1:7b:fc:
bf:fe:33:32:87:a4:9f:5b:80:07:19:50:9e:2a:d4:
e0:c0:97:84:47:a2:cf:3d:20:ea:76:9b:1c:19:82:
76:c7:3c:72:1b:a0:44:59:e3:11:4a:0f:4a:e2:33:
a5:37:77:cc:f0:a3:43:04:f6:e9:2a:73:3f:36:aa:
bc:71:46:b8:c6:97:8f:e0:f8:23:54:22:a5:9d:53:
97:4e:5b:ac:8d:30:58:a4:9f:c6:d7:4a:2a:f4:ca:
9b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0A:A9:31:1B:D5:BC:4E:03:51:DE:5D:2C:4A:A6:3F:E7:8A:B0:09
X509v3 Authority Key Identifier:
keyid:62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:e5:2a:06:45:a6:76:41:77:0d:4e:12:c0:c9:6d:21:d0:88:
5e:8e:8f:3d:49:7a:d6:1c:80:fb:f5:96:d8:b8:62:30:67:8a:
eb:72:78:19:40:f1:34:e2:3a:d6:a9:81:3e:2d:f8:02:96:ed:
45:f6:fb:b6:87:f9:2d:7c:80:e9:70:50:8e:b6:fa:b5:83:b2:
2b:f6:c8:15:40:2b:2e:b5:d6:45:1f:a3:7a:42:e3:24:24:ba:
8b:2d:60:ca:e7:b2:34:d8:1e:74:3f:c7:98:24:59:47:34:c2:
b7:cf:75:b1:2f:c2:56:fb:97:59:ed:96:69:3b:2a:71:9f:9d:
b4:40:da:2a:26:e3:ef:d3:cd:a9:27:a0:39:6f:5d:c1:7a:8d:
60:5b:21:35:b3:31:b7:49:ce:14:97:d7:07:f0:a1:81:b4:61:
98:77:c2:07:48:d7:ad:74:66:f4:f1:8c:1c:9f:4e:bd:7b:89:
6a:76:8b:da:f9:12:ad:67:72:f9:85:d7:84:98:1e:c6:f0:a4:
bd:f5:1e:c9:e0:c2:4e:60:4c:89:dd:33:08:5f:fb:5a:57:a1:
83:0a:4b:cf:84:ef:6d:30:c2:0a:12:8e:66:c7:eb:bd:23:9d:
61:76:00:ea:32:e1:d5:11:78:62:36:5c:92:41:68:ad:50:66:
74:21:fd:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:06:57 2025 by rpki-client