Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
File: yy2f-G42PbNNBVbsFkUfL38wPSQ.mft (raw, json)
Hash identifier: 1VgJwyOx8HlxjVzgpY8Zxah5caKbeONBbBiH0Ao0gL8=
Subject key identifier: 87:DD:44:D7:89:C4:CD:AA:F3:67:A9:DA:5D:F8:1F:DF:2E:7A:A3:38
Authority key identifier: CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
Certificate issuer: /CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Certificate serial: 0196BE255DC8F2851542C5A8ED7EEAE62C43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
Manifest number: 1534
Signing time: Sun 11 May 2025 07:00:41 +0000
Manifest this update: Sun 11 May 2025 07:00:41 +0000
Manifest next update: Mon 12 May 2025 07:00:41 +0000
Files and hashes: 1: 92Huf3IHz49yEZcp8laODPaay4A.roa (hash: fHDvsxbqA8PNa+801vhXYVjpC3kLuwr6JG2deunc2nA=)
2: yy2f-G42PbNNBVbsFkUfL38wPSQ.crl (hash: 9xQ3Jae4PU6+rJnLT+S6PERXtjXD0I4CI61lpFyyVkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:5d:c8:f2:85:15:42:c5:a8:ed:7e:ea:e6:2c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Validity
Not Before: May 11 07:00:41 2025 GMT
Not After : May 12 07:00:41 2025 GMT
Subject: CN=87dd44d789c4cdaaf367a9da5df81fdf2e7aa338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1d:20:d8:42:73:bf:4e:64:8f:41:fc:93:ad:
e0:c1:97:65:5e:9f:c2:8a:55:86:34:00:27:6b:db:
62:11:f4:16:bb:8e:e4:54:b2:7d:f7:9c:38:94:d3:
3d:ee:9f:88:b7:0a:98:cf:ca:b7:74:19:6e:4e:15:
2b:05:bb:98:db:75:e2:5c:6b:4b:09:22:42:5f:c4:
ac:c5:6e:dc:0d:7a:4e:c9:79:8f:34:3b:82:ef:08:
26:58:e1:d6:35:50:6b:cb:01:c8:15:83:6f:f2:eb:
aa:ff:7c:f1:7e:69:57:af:c6:9d:32:a3:9e:d5:52:
a4:34:33:d0:19:28:fe:68:83:71:f3:7b:c2:d9:1c:
c1:5f:a9:a8:81:ae:38:e3:15:8f:7f:0a:1c:0c:32:
c6:05:87:e5:15:17:5d:14:99:c4:d3:19:e3:3f:a8:
6d:c9:75:32:21:b3:22:88:92:14:e8:13:dd:10:83:
3a:ae:53:df:85:8b:c1:c7:e1:fd:54:81:ef:d0:f5:
96:7e:65:33:da:ea:48:9c:30:d2:76:5d:76:c4:f4:
ab:fa:d8:0a:f9:00:2d:32:41:d3:28:de:ac:96:48:
42:25:9e:05:8d:87:8e:47:f5:94:1d:18:c6:5f:55:
fb:8c:f6:8e:3b:da:d7:3a:73:ac:41:36:75:e0:3d:
d6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:DD:44:D7:89:C4:CD:AA:F3:67:A9:DA:5D:F8:1F:DF:2E:7A:A3:38
X509v3 Authority Key Identifier:
keyid:CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f7:68:8e:1d:cc:6a:09:db:0e:16:9d:0c:10:64:e6:a8:9c:
c2:97:45:52:76:61:49:a9:28:29:b8:72:e2:a2:a2:b0:05:3d:
16:c0:83:d6:45:00:0a:2c:7d:c9:b1:3a:7a:db:a6:58:dd:e1:
24:72:de:53:7b:87:fa:21:f2:8b:6f:70:86:6b:64:10:75:05:
64:a7:a6:1e:89:42:18:44:63:dd:8e:ad:4d:fa:e6:8e:d5:4e:
a9:39:09:c8:85:26:2b:eb:30:a0:84:de:72:3a:66:89:ff:d6:
e9:91:f8:85:35:b7:67:00:7a:0c:16:62:06:e0:90:b3:da:d4:
04:31:fc:c7:70:7a:60:f6:4a:c5:31:33:70:c5:40:48:7e:79:
24:2f:71:35:16:8c:4a:d0:19:73:56:66:47:1a:63:4e:e4:f3:
7d:0e:f9:ba:19:aa:94:d0:d5:4e:c0:ac:cb:7e:13:34:5b:83:
12:3c:fd:ee:0b:4e:f1:32:6b:39:f3:61:e0:c0:f0:de:af:fd:
ce:61:c3:18:48:6d:4c:78:79:9c:cc:8a:37:ff:d2:13:53:c3:
9e:9b:34:94:c6:fb:8c:57:fa:d7:17:aa:7c:1c:e6:be:10:19:
b5:cb:4a:7a:5a:39:30:73:b7:46:09:34:7d:55:1e:1f:6e:31:
a1:cd:aa:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:54:23 2025 by rpki-client