Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
File: YKzX2WuVbeXbA2c80dHjo3uN2d0.mft (raw, json)
Hash identifier: hv24lHqCLs/vjnuxOpoPD8Yiu+3/u7roydIW8lDzdvg=
Subject key identifier: 67:0A:0B:B2:09:1E:DB:44:F1:CE:5F:16:66:01:29:1B:49:3A:46:8A
Authority key identifier: 60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD
Certificate issuer: /CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd
Certificate serial: 0196AF8DCE7550FC28E5C72F616DCA7FA481
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
Manifest number: 047E
Signing time: Thu 08 May 2025 11:00:28 +0000
Manifest this update: Thu 08 May 2025 11:00:28 +0000
Manifest next update: Fri 09 May 2025 11:00:28 +0000
Files and hashes: 1: WR90m5DgvTuhngQTVt_A_5zUod0.roa (hash: FY/boCiP1n6kQ8OnKj08oNsixb1HE3QlDcsMak5j0Lc=)
2: YKzX2WuVbeXbA2c80dHjo3uN2d0.crl (hash: kSIcPHu6PGT4b6k8wOnzeNlQ7QscMarOYAhnzmasnlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 11:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:8d:ce:75:50:fc:28:e5:c7:2f:61:6d:ca:7f:a4:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd
Validity
Not Before: May 8 11:00:28 2025 GMT
Not After : May 9 11:00:28 2025 GMT
Subject: CN=670a0bb2091edb44f1ce5f166601291b493a468a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c1:57:58:af:36:85:10:99:68:4c:66:94:e5:
2c:2b:5f:8a:86:3b:bb:e2:88:c4:64:ee:96:e6:27:
ac:c9:9f:75:3e:9f:6a:28:0e:98:43:a1:09:f5:1b:
4c:79:64:7a:08:da:03:da:8f:4f:06:e0:98:a1:90:
57:fc:d2:3e:b3:36:62:56:c8:7d:4f:96:2d:cd:2e:
46:84:73:31:90:44:c8:cb:4d:94:1f:53:85:5d:f3:
a7:b8:5a:ef:95:58:18:ab:1c:a0:91:5c:90:d5:f1:
db:09:51:69:96:e9:a8:00:8b:89:08:61:d7:8b:1f:
8a:38:bd:28:31:88:c6:a0:44:01:74:1d:b5:c1:b4:
01:ba:9f:e2:4f:e6:0d:ef:1a:06:dd:7b:da:ce:7a:
7e:0c:c3:fd:69:9b:a1:29:aa:9e:2c:9c:ab:a3:7e:
c8:36:e0:64:92:ec:a1:d9:3b:b9:85:bc:8a:50:c7:
f1:3e:90:1e:27:79:82:15:4d:43:63:5e:ab:82:98:
a8:a2:d1:c9:9f:b3:9a:a4:27:5a:91:b0:11:0d:d1:
eb:91:2f:ea:2a:1a:cb:1d:cd:60:18:a7:45:a9:38:
d7:c3:23:60:70:65:ad:ef:f1:35:92:78:27:67:b6:
50:6f:cf:db:c4:b9:e7:7d:de:be:84:7b:7a:d8:86:
2c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:0A:0B:B2:09:1E:DB:44:F1:CE:5F:16:66:01:29:1B:49:3A:46:8A
X509v3 Authority Key Identifier:
keyid:60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:66:03:f4:8c:88:0e:c0:35:da:c0:81:e3:9f:d7:69:04:40:
fd:73:c7:e8:d4:22:b7:86:2e:65:ec:be:96:40:b1:49:4e:e6:
ff:c0:c9:a1:21:66:01:26:56:8b:34:33:43:e1:2c:73:44:cd:
bd:13:51:61:fc:db:6a:e5:8c:dd:37:47:0d:3e:de:65:8e:be:
e4:c3:74:c6:df:fc:fc:e6:3e:00:d0:67:29:41:39:a2:52:07:
9e:df:d2:a9:0a:44:cb:ee:46:0d:aa:89:39:d6:38:20:fb:f6:
35:e4:4c:14:f5:77:af:9b:04:8d:aa:85:10:ef:8c:f6:4d:f7:
aa:88:25:78:ec:53:d9:7f:fe:c7:cc:eb:11:d2:72:12:53:1f:
ab:40:eb:60:ce:df:89:c8:44:72:70:43:03:1a:c7:ec:51:20:
f0:cd:fb:29:1b:3f:79:57:25:73:c8:f2:48:66:e8:2a:58:05:
8b:2a:4b:e0:89:55:39:4e:65:b6:96:ac:08:d5:43:80:9e:80:
5b:92:c4:a2:33:8b:60:00:f4:05:f2:c2:69:43:fa:56:45:69:
c2:12:d5:1c:49:9c:ef:7f:97:4e:e9:f2:cc:93:a6:c5:1a:bd:
a8:e5:41:18:af:8c:bb:2a:ff:01:8a:c6:65:6c:9a:4a:c1:88:
7b:78:a0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 19:39:02 2025 by rpki-client