Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: 4OrUVsNUxbqShYJpnSEeudpe5npbL9fLPLd0YC5MplI=
Subject key identifier: 2B:DA:F6:28:25:3F:C1:B1:29:99:E3:6E:B9:3A:0C:C0:9A:B9:7D:58
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 0196A01AE0626D26535A75C111016F73D1E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 03D5
Signing time: Mon 05 May 2025 11:00:38 +0000
Manifest this update: Mon 05 May 2025 11:00:38 +0000
Manifest next update: Tue 06 May 2025 11:00:38 +0000
Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: N7JtLeFBR0dE4XU0koNIn/TeeNHgqVfWLpFnU8bOuVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:1a:e0:62:6d:26:53:5a:75:c1:11:01:6f:73:d1:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: May 5 11:00:38 2025 GMT
Not After : May 6 11:00:38 2025 GMT
Subject: CN=2bdaf628253fc1b12999e36eb93a0cc09ab97d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4f:fd:99:8c:49:5b:58:56:58:2f:a2:4b:bd:
b7:54:db:fa:b2:34:cd:db:af:41:73:e7:1c:d6:47:
d4:91:87:f6:a0:45:64:eb:30:fe:7f:08:be:2a:43:
d9:01:00:fb:2a:75:47:d3:6b:0b:4d:17:19:44:5f:
96:43:82:91:d0:e9:fe:73:fb:c0:f5:06:9a:9a:76:
bf:10:95:5b:02:f1:6c:d2:1a:64:91:c4:9a:4e:50:
e0:ec:13:ff:b0:3f:a4:d6:6a:b7:bb:a0:b1:39:ea:
60:b8:d1:1c:81:09:75:c0:50:8e:e9:1a:6a:3d:24:
c7:1d:94:75:6d:b0:2e:9b:07:9d:51:79:a6:e0:51:
73:3c:5f:bc:b7:fc:cf:05:6e:b1:31:50:b0:7d:d9:
66:5c:e6:9e:d3:61:be:5a:0f:4e:18:f4:15:c6:fa:
ca:21:91:eb:48:5d:09:cb:3e:bf:45:b9:f9:07:57:
11:30:0b:bc:ae:30:ce:6d:84:01:af:47:f7:b1:de:
55:45:91:68:65:ad:b8:e4:9f:7f:1a:1e:ba:37:fe:
0c:38:a4:f1:39:9a:c5:73:08:9e:e1:1b:5d:81:a9:
45:3e:e3:95:41:8b:e9:65:70:0a:5e:9e:a3:da:70:
f7:4a:3d:b3:78:d7:26:ac:b8:28:53:6a:be:10:8e:
dd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:DA:F6:28:25:3F:C1:B1:29:99:E3:6E:B9:3A:0C:C0:9A:B9:7D:58
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:d8:24:3d:a9:e2:38:b9:99:16:7f:ab:66:b8:90:14:ec:84:
04:27:28:5b:1b:fc:76:c7:33:ba:eb:6f:d9:a9:26:a6:71:cd:
1b:d4:e4:4d:49:c1:30:7b:3e:38:c4:df:5a:fe:c4:86:26:f0:
4f:93:f0:4d:f2:2a:06:df:e2:78:83:66:ea:0a:db:27:d0:1c:
a3:cd:b8:e9:0c:5a:d8:fe:e1:60:ab:29:f0:4c:fd:57:23:c0:
cb:ac:28:07:d4:c2:cf:e7:ee:a3:c4:ef:6b:72:74:61:03:b3:
83:11:91:71:24:8e:28:1c:93:ae:d1:ea:e8:13:cb:2e:de:f6:
3e:5a:e3:1b:83:c6:5c:a4:48:2b:87:ac:01:6e:8f:2d:f9:20:
b8:bd:b7:2c:b1:d2:c1:b5:68:2e:e8:ce:b7:cb:b2:a3:f8:1c:
f9:59:bd:73:89:e2:98:de:32:88:d3:17:03:b8:6a:bb:61:64:
08:25:47:cf:83:ae:6a:d7:6c:e7:a9:37:4d:b5:bc:ea:8e:2d:
05:07:6e:ec:7e:14:f6:32:4f:97:55:1b:a0:90:c3:c6:06:65:
39:a4:0e:a9:d9:01:7f:95:b9:09:74:b7:86:65:27:a9:06:cf:
9e:15:c1:96:88:df:d9:d5:5e:50:e0:6b:79:93:b5:4d:32:fb:
cb:cd:56:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 17:28:31 2025 by rpki-client