Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
File: yBi-GcEJgPFbze4HZpAHhJGoqiE.mft (raw, json)
Hash identifier: 477WAWSxBZQuUYxr5W6mXRLytKIlN7OrPz4sFOjzdt8=
Subject key identifier: CB:3C:15:39:21:04:C9:2C:D5:50:F5:26:C8:54:EE:49:42:09:D1:4D
Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21
Certificate serial: 0196A50A765582551BED57D03935CB647022
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
Manifest number: 0B55
Signing time: Tue 06 May 2025 10:00:48 +0000
Manifest this update: Tue 06 May 2025 10:00:48 +0000
Manifest next update: Wed 07 May 2025 10:00:48 +0000
Files and hashes: 1: gZMQxr61w0P4Si-B6lBsVj_b8vM.roa (hash: 3Vc/pW8ygtdQIimX5iqQ/MSW6PLhJ2nbGCIzRJsZshI=)
2: yBi-GcEJgPFbze4HZpAHhJGoqiE.crl (hash: 6tldgM3yeU5hiiYzvQ/j0rEU40bNa8yvMXKqyTD2B30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 10:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:0a:76:55:82:55:1b:ed:57:d0:39:35:cb:64:70:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21
Validity
Not Before: May 6 10:00:48 2025 GMT
Not After : May 7 10:00:48 2025 GMT
Subject: CN=cb3c15392104c92cd550f526c854ee494209d14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c4:74:28:70:64:86:ee:dc:17:ec:73:94:0b:
77:b3:b6:f6:7d:cf:ca:39:74:d0:db:14:69:57:49:
06:86:df:52:07:cd:53:f1:25:fe:af:47:1b:59:52:
a4:1b:19:c4:2e:5d:27:0f:4e:15:d0:35:96:bf:21:
b7:ce:85:ed:06:16:fc:c0:04:7d:01:d6:8a:2b:1d:
ee:5a:6e:12:81:71:b7:7a:f7:2a:ee:15:43:ab:a3:
c8:82:7b:d8:bb:da:8d:8a:5a:2f:f9:d2:45:84:9d:
ec:e5:45:31:08:0b:81:8d:2a:b2:fd:3a:cb:75:d9:
ae:66:6e:0d:6f:40:2b:f5:d4:f9:6a:a5:8d:2d:c8:
c3:37:29:58:db:1a:61:f7:ed:5d:de:58:c7:5a:fa:
6d:da:dc:fe:20:be:93:f7:c9:46:cf:f3:c5:37:67:
8f:27:c8:9a:be:a0:e3:11:20:32:89:5a:17:86:77:
39:04:be:22:f3:c7:35:b7:d4:09:56:f7:af:02:91:
22:89:07:ef:8d:ab:7a:88:07:a2:6f:3c:55:d7:de:
ca:3e:1d:7a:2f:a1:4c:a9:7e:04:09:ea:48:30:c5:
a2:1f:78:53:f5:bc:01:d7:4e:08:e0:5e:8b:bb:d4:
b0:ca:88:61:24:1c:0d:7f:b7:a1:3e:4b:a2:72:88:
90:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:3C:15:39:21:04:C9:2C:D5:50:F5:26:C8:54:EE:49:42:09:D1:4D
X509v3 Authority Key Identifier:
keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:91:b5:af:ff:a8:0d:9f:ba:83:2b:27:af:5d:2d:1f:c8:5a:
a3:4a:89:d7:1e:63:a3:31:2e:ee:5b:fa:78:b8:b3:52:aa:89:
7f:d3:5b:e2:5c:ca:26:fb:88:34:e5:0c:a2:c7:5f:ef:f0:6f:
1f:bd:e2:7a:3b:b1:2f:26:12:c6:93:28:5e:69:c1:6d:2a:18:
50:a9:55:74:1a:72:a7:eb:3a:ac:4f:f9:db:8b:39:0a:58:27:
13:e8:44:ca:6f:ef:f4:12:3e:ba:ee:25:37:84:20:1b:6c:cf:
c0:bc:71:aa:46:07:04:84:61:81:f0:96:6d:39:3b:56:38:e9:
af:4f:68:0c:d3:9a:04:6a:f4:3f:39:39:30:e9:e7:63:f7:6b:
7c:b0:9b:c2:02:de:43:be:39:c2:9b:5a:a7:e5:d5:35:53:d9:
03:4d:2b:eb:c5:a8:84:21:a3:e5:45:92:98:2d:60:69:f0:27:
85:15:0d:cd:6a:19:16:4e:2f:4c:a3:58:25:90:a7:c5:17:c8:
bb:d2:79:6d:79:d8:92:7f:19:dd:ac:1c:70:21:44:39:30:43:
a6:cb:58:dc:0b:94:c0:b1:67:23:55:a1:ea:dc:34:8c:09:de:
87:53:ec:58:f0:05:cd:97:e5:f7:74:11:f7:71:fd:b7:fb:58:
94:22:5b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 18:54:27 2025 by rpki-client