Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
File: YhuOSG7srmEk3hBJT9OROe1KN8s.mft (raw, json)
Hash identifier: QgaHCFuMhcv+TK+5cdcWomXjXl8gfP4lWrzdIbY7yos=
Subject key identifier: 7C:C2:BB:66:4C:01:A4:5D:C8:3A:AF:26:7E:9D:8E:D8:38:C2:15:7D
Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb
Certificate serial: 0196B40F4067CE6B13964FBAE98E71F633DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
Manifest number: 152F
Signing time: Fri 09 May 2025 08:00:20 +0000
Manifest this update: Fri 09 May 2025 08:00:20 +0000
Manifest next update: Sat 10 May 2025 08:00:20 +0000
Files and hashes: 1: YhuOSG7srmEk3hBJT9OROe1KN8s.crl (hash: Fw4mTlatYzDOP0MSRhXKQwBxGusRaJzbrlUIaZpeF3Y=)
2: eKGme1_RE2Cve029wfoTPnjkx8E.roa (hash: 7e5ken09Fa398flHkK+xPpARVfWAIKVd53mQhTUCt6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:0f:40:67:ce:6b:13:96:4f:ba:e9:8e:71:f6:33:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb
Validity
Not Before: May 9 08:00:20 2025 GMT
Not After : May 10 08:00:20 2025 GMT
Subject: CN=7cc2bb664c01a45dc83aaf267e9d8ed838c2157d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:57:ac:6d:e4:fe:4d:9c:7d:d0:72:72:6b:4c:
75:5e:9b:32:83:2a:f8:d7:22:43:7e:42:1b:26:ca:
93:ab:0e:f7:74:f1:46:2c:8b:06:e2:bf:69:93:41:
de:a6:40:34:39:52:64:ab:6a:ca:6a:48:e4:a2:88:
55:79:ba:75:0b:bf:f5:bd:c2:f9:1f:6b:cf:fd:a5:
a3:3a:22:e3:10:fb:2d:de:fc:ff:5b:49:57:a4:4e:
e0:56:05:52:0e:6d:1a:e2:8c:b6:11:61:3e:16:36:
ea:d4:ef:cb:5b:1b:73:e4:7a:c0:60:86:d0:8d:59:
42:46:50:02:29:c9:42:7b:55:49:e9:43:07:db:dc:
3d:26:20:ed:53:8a:7e:60:6c:71:2e:e1:21:8b:72:
98:2e:61:87:3c:dc:52:9d:e3:5c:21:d8:db:1e:f9:
9c:a0:53:55:26:42:62:0a:e9:64:0a:c6:ef:bb:32:
5b:3d:be:27:67:f3:8a:e0:58:29:21:a2:bb:26:71:
c2:27:80:00:90:17:3c:e6:fc:a1:7b:1e:b0:5e:c4:
93:03:11:f9:65:34:f5:98:46:a4:de:0f:3c:7a:a7:
38:79:f5:81:41:5a:6e:57:24:53:78:26:89:8c:77:
7d:95:c6:72:d2:01:00:60:e9:a5:29:11:70:db:df:
55:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C2:BB:66:4C:01:A4:5D:C8:3A:AF:26:7E:9D:8E:D8:38:C2:15:7D
X509v3 Authority Key Identifier:
keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:b6:ea:65:87:d9:74:cc:e7:77:db:8c:7a:69:e1:13:bb:bc:
ba:09:6f:b3:b9:e6:4c:28:35:b0:d4:02:65:cf:f1:7d:9c:6a:
7d:7b:48:cf:d1:84:45:40:8d:70:82:a6:7a:58:db:86:18:54:
4b:4e:b2:db:f6:af:b9:48:9c:1b:8e:a8:f3:e9:92:0b:b1:b3:
f6:c1:80:4f:9e:3a:64:f9:f0:99:8a:94:fa:b3:95:ba:1c:c7:
37:34:86:23:37:7e:d4:74:55:85:b0:7d:26:6f:07:89:2f:25:
ab:69:bb:68:d1:48:1b:d5:f1:ae:d5:b3:07:04:02:7b:d6:bb:
d3:18:31:28:2c:51:e5:e0:00:b9:2e:16:d3:5d:21:a8:24:43:
5a:01:88:18:10:75:5a:28:e3:ce:99:1b:c0:ee:2a:70:fe:92:
63:20:d0:9b:35:bc:4e:9d:20:13:f8:08:00:e0:66:46:f6:80:
fd:50:ca:c4:2f:3d:57:e7:f7:52:c2:6a:7c:0d:24:da:6c:69:
b2:a9:20:1f:9a:bb:65:40:84:2f:c1:ea:75:4e:0e:10:85:e2:
36:85:c4:3e:62:e0:12:ab:9d:da:af:dc:0f:79:5b:ee:88:6c:
a4:c2:2d:19:f5:74:f5:34:39:6a:16:4a:98:c9:65:46:bf:60:
fe:03:a7:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 09:17:57 2025 by rpki-client