Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
File: yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft (raw, json)
Hash identifier: VukmpbQmMcfiLvDnO1kCIvbpWN1r/CVDMoqjZWGdwIA=
Subject key identifier: 40:D2:F0:DF:59:16:10:C2:95:93:67:CE:6B:D7:E8:D0:20:2F:03:63
Authority key identifier: C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
Certificate issuer: /CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Certificate serial: 0196D0D008B3F087B76211B093FDB4C368A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
Manifest number: 153F
Signing time: Wed 14 May 2025 22:00:16 +0000
Manifest this update: Wed 14 May 2025 22:00:16 +0000
Manifest next update: Thu 15 May 2025 22:00:16 +0000
Files and hashes: 1: fewPOq5Sy5alJvzpYZYieD6pmV8.roa (hash: nQVFjlDzgmj3SLHG29wBX3sEI4Pk0MW5juplwGFMB6g=)
2: yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl (hash: xxpBMNkUaQeFJ5XKsjGHmBUHP6AoGH/WdbUUVtzfJgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 22:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d0:d0:08:b3:f0:87:b7:62:11:b0:93:fd:b4:c3:68:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Validity
Not Before: May 14 22:00:16 2025 GMT
Not After : May 15 22:00:16 2025 GMT
Subject: CN=40d2f0df591610c2959367ce6bd7e8d0202f0363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c2:b0:b8:fa:ab:8c:b1:ea:1c:4b:b2:ea:e6:
d9:4d:12:35:f0:9e:55:60:3f:38:f9:29:b2:c8:75:
47:65:b3:ae:fa:e7:70:a0:c8:1b:22:db:ac:73:14:
cd:f7:69:fa:db:f8:2d:cb:99:4f:3e:77:54:fa:6b:
bb:fc:6a:8c:f8:73:6a:01:71:af:4f:a6:9d:5b:91:
ab:33:60:62:88:2b:ff:84:33:e2:d5:45:78:3b:cb:
ee:31:51:f3:21:47:7a:9f:68:9b:e3:52:b6:0d:4a:
95:ec:50:11:55:e7:1c:b7:e3:6e:e2:7c:9a:cf:d0:
b0:27:74:df:33:4d:ef:21:0d:86:9a:cb:c7:8f:c3:
bb:33:80:8b:16:c9:e8:08:47:aa:55:e7:65:2a:71:
9c:f7:be:66:db:40:ab:14:30:d9:d1:01:f5:2e:b4:
3e:c6:a7:ce:6e:1b:72:ce:5c:ae:af:d1:29:03:cf:
60:fc:b4:28:e5:7a:0b:81:46:b1:84:02:0d:81:df:
c0:f2:00:ad:be:c9:21:f1:e3:10:36:6b:dc:8a:81:
ad:9d:42:af:92:cf:b2:78:70:25:56:3b:16:1b:75:
9e:bf:35:11:43:2a:32:c9:83:39:fc:77:09:aa:30:
b9:13:15:9d:c9:72:24:55:1c:2d:6d:17:93:c9:91:
ec:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D2:F0:DF:59:16:10:C2:95:93:67:CE:6B:D7:E8:D0:20:2F:03:63
X509v3 Authority Key Identifier:
keyid:C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:9e:13:f4:28:89:72:5f:b2:3a:3c:d3:35:3d:e7:e3:00:c0:
00:4e:b6:a2:18:20:81:a6:60:26:6b:ee:a7:75:45:0c:fd:08:
7b:61:b6:c3:7b:59:cd:f4:fe:6d:3e:88:79:14:6d:0a:7e:c5:
90:d4:cf:f7:cb:b4:fb:2c:c1:20:72:2a:3f:ea:8c:46:fa:be:
fa:53:d8:c4:d2:34:21:f9:1c:ae:9e:02:ee:2a:78:d0:35:e9:
81:e3:b9:d2:97:6f:12:0c:e0:11:a0:74:70:e1:09:d1:70:ba:
cc:32:14:94:23:75:88:ff:a6:20:eb:cf:36:4b:53:f2:5e:45:
d5:7c:54:50:a9:33:61:97:d0:5d:c8:97:de:6c:07:ab:e1:90:
53:9d:60:f8:79:32:23:82:e7:e7:18:e8:35:55:2b:50:45:eb:
47:d9:ab:fa:25:33:99:3d:1e:80:de:0e:3d:72:f3:d7:76:8c:
4a:f8:89:bf:54:42:43:d4:bc:22:ed:de:a7:ec:45:b4:c7:99:
a7:0e:d2:0d:b6:83:15:71:79:e0:68:f5:7e:85:a2:fc:96:cb:
ab:84:38:0b:83:09:5f:f0:94:36:09:3e:5e:43:2a:f7:30:9e:
2a:1f:c5:77:43:c9:f4:f6:be:09:8e:e0:ef:a8:d3:b7:ef:f2:
c5:08:a8:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 07:21:17 2025 by rpki-client