Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
File: Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft (raw, json)
Hash identifier: L8BLAg4/3pfJJXFMcZ2TmCYqHIRk4uh9pwL/ameXt9o=
Subject key identifier: 44:07:1E:2F:44:E7:75:66:7F:2F:B0:39:6E:79:E5:BF:58:DD:96:BD
Authority key identifier: 63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
Certificate issuer: /CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Certificate serial: 0196D66466451F6E6858DE76A5FD80B7C565
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
Manifest number: 0F5C
Signing time: Fri 16 May 2025 00:00:25 +0000
Manifest this update: Fri 16 May 2025 00:00:25 +0000
Manifest next update: Sat 17 May 2025 00:00:25 +0000
Files and hashes: 1: YFIa0scc_xVUT5FKi7LKvASoEWc.roa (hash: V1CwEQLm9iXZGzptcaHc4LFmcOryBT2Kfmx1HSv4RTc=)
2: Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl (hash: YnjTVNpRO+6C5vDfvO3q5dejedF4PnmlEatNbJDbQPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d6:64:66:45:1f:6e:68:58:de:76:a5:fd:80:b7:c5:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b
Validity
Not Before: May 16 00:00:25 2025 GMT
Not After : May 17 00:00:25 2025 GMT
Subject: CN=44071e2f44e775667f2fb0396e79e5bf58dd96bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:35:e8:e2:89:55:44:a8:37:97:2c:96:e6:db:
b8:73:0a:db:8d:d8:f1:0d:ae:13:8e:f1:11:38:04:
f7:31:7b:c6:ed:c3:d6:b0:1e:48:46:d3:60:48:fb:
e4:42:48:ae:be:f9:08:18:4f:ff:dc:8f:28:0c:59:
5b:d5:e1:28:c4:fb:90:c8:f8:07:94:10:32:8d:02:
80:02:dd:3b:02:2c:8a:7c:31:09:3e:2e:86:59:ff:
fe:80:8c:a6:14:bc:a1:1e:95:67:c2:25:1b:28:97:
a6:75:24:06:8d:ce:a0:0a:f8:dc:09:32:e0:6c:e0:
be:9f:69:a3:0d:a4:0b:47:16:3a:ac:6e:c5:d1:18:
51:c3:7d:ae:ee:5e:81:1a:05:1b:cd:b9:22:3c:49:
dd:0f:c4:bf:56:56:76:75:e4:66:1a:fa:8d:50:c5:
11:a3:52:f4:53:c2:64:45:56:0c:86:c3:15:16:4b:
06:dc:22:42:28:66:81:07:34:75:2c:36:93:3a:f1:
84:b8:22:2f:9c:f7:af:ff:4a:e0:43:dc:f4:41:85:
1e:8d:20:78:c0:df:19:7c:77:62:f2:01:15:6b:91:
42:d5:fc:9a:3c:29:09:66:d2:8f:cf:ee:dc:91:63:
c8:be:75:72:c7:e7:ce:7c:e9:c6:67:84:59:ce:5a:
a2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:07:1E:2F:44:E7:75:66:7F:2F:B0:39:6E:79:E5:BF:58:DD:96:BD
X509v3 Authority Key Identifier:
keyid:63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:20:c2:7f:22:9c:2d:36:b3:2c:18:39:88:b0:67:70:df:79:
61:96:30:2a:e3:1b:27:52:52:c7:84:22:69:28:6d:a6:82:ae:
4c:1b:68:54:1c:b5:88:49:92:04:f8:3e:a2:e9:59:3e:ad:d9:
83:b3:69:5d:cd:00:96:7f:96:81:ac:25:a5:52:4a:2f:43:8b:
6f:6f:8f:c2:51:6d:d9:ae:53:39:d9:eb:f3:18:d0:a2:b6:58:
f0:37:88:64:8d:15:01:4b:8d:be:bf:ca:49:3f:e5:ad:ca:ff:
dd:c7:02:8b:ae:fc:62:80:e4:01:12:46:da:fe:eb:b6:14:28:
54:33:87:ee:9e:b2:c8:7c:d8:c7:5a:96:cf:20:b0:17:2a:d8:
26:36:7c:40:ad:8a:34:88:7c:ed:cc:9f:fe:42:98:96:dc:86:
ef:01:c4:21:cb:9e:d2:6d:c5:c2:23:fe:d1:0d:50:ac:31:75:
6d:e8:32:ad:81:c1:e3:58:31:39:45:b8:62:ae:17:62:2b:6f:
00:b8:d4:dc:0a:d4:c2:5c:5c:02:9d:58:a1:e4:3d:08:17:59:
22:06:eb:eb:35:a4:91:02:66:b6:74:88:11:7a:22:d6:7c:bc:
54:a8:a4:34:44:51:55:95:d4:8d:66:fa:cc:58:01:81:1a:ba:
c3:34:5f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 07:56:22 2025 by rpki-client