Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: m2dnhJE6Enj74CtBOjAYDGmPopJsf69XRomyu/DWryA=
Subject key identifier: D8:DB:94:1E:C6:09:71:AE:00:AB:E0:B0:D8:11:0F:72:DE:31:D1:E9
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 0196CFF4CA033F4C8B3D43FFC135F6EAFE7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 0394
Signing time: Wed 14 May 2025 18:00:48 +0000
Manifest this update: Wed 14 May 2025 18:00:48 +0000
Manifest next update: Thu 15 May 2025 18:00:48 +0000
Files and hashes: 1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=)
2: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: xV68C/Iu7RHNLqi0M/TJel0amAMqsfsosVlxdv7QyGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 17:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cf:f4:ca:03:3f:4c:8b:3d:43:ff:c1:35:f6:ea:fe:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: May 14 18:00:48 2025 GMT
Not After : May 15 18:00:48 2025 GMT
Subject: CN=d8db941ec60971ae00abe0b0d8110f72de31d1e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b1:21:97:0f:86:70:ac:b1:0d:4d:25:10:f5:
fb:ec:74:08:22:b0:19:6b:b8:73:ac:ec:37:3e:8b:
c2:7f:d7:3e:fd:8b:1d:52:76:a3:c4:c3:66:d4:b1:
82:60:20:a4:57:27:bc:a0:0b:f9:23:5c:21:57:a0:
88:72:03:6b:1d:22:84:1f:35:5e:f7:70:3f:27:b5:
30:6a:f7:79:8d:47:c0:48:c7:59:25:fb:fe:16:dc:
d0:1c:44:3d:b8:24:f7:2c:12:50:be:df:48:7b:a0:
f6:e9:42:5b:4a:17:3e:22:97:37:db:72:66:0f:1c:
13:bc:6b:da:40:9d:27:f5:3e:75:97:80:23:3e:91:
68:df:85:2a:db:19:ac:02:5a:a1:1a:0c:41:46:a7:
33:13:61:4c:ff:48:06:79:f5:93:67:1f:37:ca:66:
21:e3:fb:8b:19:06:67:be:3c:91:ae:d1:3a:6b:40:
6e:aa:15:e4:a2:92:20:38:f9:50:84:46:f6:6e:d1:
0f:e8:0e:5a:81:c5:9a:06:af:82:9c:b0:b9:26:9b:
28:62:03:cd:76:1d:be:88:76:43:43:ba:c7:ea:93:
5d:00:f5:59:f4:7e:b7:e2:8e:b6:4d:68:83:71:a4:
54:d5:4c:4d:c3:0c:3b:c3:36:48:4b:8d:e8:f8:08:
87:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:DB:94:1E:C6:09:71:AE:00:AB:E0:B0:D8:11:0F:72:DE:31:D1:E9
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:65:3d:89:cc:89:6a:9c:d5:b6:8d:df:0c:0b:d2:7f:66:01:
d9:a3:2f:ee:58:34:5e:b1:de:f4:2d:9a:64:5d:75:3e:6a:b5:
08:ec:42:35:98:d3:cb:16:91:3b:43:80:ee:7f:1d:51:b5:90:
77:73:9d:98:43:18:d5:2b:c8:e3:0c:3c:c6:27:65:9a:d3:0b:
ec:d5:ef:21:3e:0e:8e:8a:60:f6:95:d8:a6:cf:76:61:00:5d:
83:82:a0:fb:59:17:85:bf:82:26:e3:de:32:f2:05:5e:d2:61:
f1:27:65:89:57:ed:93:83:3f:c4:25:41:ac:48:e9:71:14:0b:
e7:62:f6:14:26:b4:c3:a9:2d:1a:70:a5:b8:4f:83:30:44:ab:
75:1b:ec:c8:83:cb:39:12:18:06:22:39:71:f0:cc:8d:77:ac:
ee:75:5c:66:1b:8c:1c:56:cf:84:d5:ec:03:9a:de:e3:8a:ae:
de:c9:b3:54:8d:84:01:f3:42:a0:44:0c:a1:21:59:8c:4c:04:
4d:f9:88:68:b6:78:b6:46:94:a4:f2:b8:29:b1:d0:b3:3c:95:
b5:66:5f:df:1b:9a:ee:b3:49:97:53:9d:0d:5c:09:81:c3:d6:
1c:c2:6d:22:5f:20:4c:a2:e8:ac:1f:bb:4f:52:7f:9e:e0:94:
74:77:29:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 02:41:36 2025 by rpki-client