Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json)
Hash identifier: UXbGXeVL3Ax3NKg43MmS8+5jSHh18+evYeJyqncdHU4=
Subject key identifier: D2:6C:8D:D9:BC:A9:22:DF:BB:80:20:2D:24:B4:78:05:B9:2E:9C:B4
Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb
Certificate serial: 0196BD814BF98FF0525D6C2272C012DDAF16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
Manifest number: 1533
Signing time: Sun 11 May 2025 04:01:29 +0000
Manifest this update: Sun 11 May 2025 04:01:29 +0000
Manifest next update: Mon 12 May 2025 04:01:29 +0000
Files and hashes: 1: KXik7lH7rXobKNDojQJvsYz5RkY.roa (hash: OmHOyyMTUBadMMSlHfFTN/cjiEKBhDbZve1q3aoF8Wg=)
2: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: lTBiGiFG5/iTgfqih0QOtcO/GVyKf95wXnDrsGtf7+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 04:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:81:4b:f9:8f:f0:52:5d:6c:22:72:c0:12:dd:af:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb
Validity
Not Before: May 11 04:01:29 2025 GMT
Not After : May 12 04:01:29 2025 GMT
Subject: CN=d26c8dd9bca922dfbb80202d24b47805b92e9cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:40:c1:b3:5c:e2:3a:7b:71:ed:c8:40:be:f8:
e4:58:00:96:a0:fa:40:d9:94:40:6b:74:31:c9:9d:
4d:42:8a:36:20:73:6e:02:c5:c3:47:78:29:7d:d1:
44:09:c0:19:83:7e:f2:3e:78:c8:81:7b:0d:4b:2b:
c4:55:5c:fe:5e:2e:24:f6:ca:fe:28:91:ed:e1:63:
20:22:b5:8b:78:54:a6:8a:2f:85:c3:8f:d5:c6:42:
5f:7c:ff:b2:99:5b:c7:7a:c0:c6:f2:67:87:7e:fa:
19:e6:8a:b3:2b:ab:24:bf:1f:d6:47:af:6f:20:66:
78:9f:8a:45:be:c1:54:73:6c:3b:38:75:9a:d8:97:
3c:0b:a1:cc:07:a2:b3:fb:35:24:75:04:be:c4:6f:
76:c3:bf:a3:aa:fc:13:d8:d4:74:38:f8:ef:70:35:
41:15:5e:25:76:b6:4a:f0:42:a5:1e:e4:e9:e7:a5:
d0:ad:ca:58:b9:83:42:ce:32:3a:2c:8f:32:ce:92:
5d:40:53:9f:08:9a:f8:8f:88:14:7c:3b:6a:4e:1d:
a7:ad:25:e6:ab:bd:e7:40:af:26:15:18:69:c3:c4:
2a:d1:3c:b5:54:62:a2:00:97:c2:f2:e9:34:59:37:
64:12:f0:4c:ad:e1:cf:df:b5:f0:db:c9:db:06:c2:
8f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:6C:8D:D9:BC:A9:22:DF:BB:80:20:2D:24:B4:78:05:B9:2E:9C:B4
X509v3 Authority Key Identifier:
keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:b3:64:09:73:26:bd:b8:e7:8e:dd:14:6c:5d:73:36:da:fc:
74:ec:4f:93:0a:06:9c:63:79:98:ca:9e:d2:ea:69:84:58:98:
c2:6d:47:11:db:f0:8e:ae:aa:dd:e5:ff:9a:6e:b3:69:65:4d:
b7:a9:3e:e5:90:7a:af:cb:7c:5c:ec:48:d6:5f:33:33:cf:27:
d1:73:3a:31:b0:ae:3f:a7:cb:2f:8c:be:e5:c2:ec:ea:4e:5c:
50:db:4f:1f:96:68:1b:b3:ca:17:32:d1:99:67:94:aa:5d:80:
38:69:12:2a:76:25:6a:cc:b4:6d:4c:19:bc:ed:26:48:1b:fc:
40:43:f0:52:4b:dc:51:97:8b:ec:f3:04:cf:be:ff:b2:3a:40:
42:a2:60:b5:6d:13:54:70:f1:d6:5a:6f:b5:15:ac:b3:48:72:
af:fe:92:75:b6:e0:78:0c:09:3b:81:2a:bc:c4:43:b9:66:39:
bd:20:39:ce:a6:d5:3c:49:ad:ed:47:35:93:70:87:0b:03:4d:
f5:64:4d:91:9a:76:d9:9d:cd:7a:6f:f4:96:19:09:fc:98:81:
25:8b:9b:f9:77:99:9f:8f:cd:be:4d:29:5d:14:5a:cd:c8:f6:
68:b7:a5:d6:eb:81:f4:b9:80:e7:e3:1a:0b:91:3f:ca:3d:2a:
ef:26:87:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:54:18 2025 by rpki-client