Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: uaESbuR/5V/6BV3lWCr6Hd7F1e1QkFGJ6d4F3qZakqE=
Subject key identifier: 7C:E0:71:69:8E:F4:3D:AA:13:B3:6D:58:E5:7D:CE:7A:EE:37:48:0D
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 0196C7CD4CF82DEAEDFE8A281E8752341DE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 055A
Signing time: Tue 13 May 2025 04:00:42 +0000
Manifest this update: Tue 13 May 2025 04:00:42 +0000
Manifest next update: Wed 14 May 2025 04:00:42 +0000
Files and hashes: 1: 6KeHOxxWviP0lluNL5sOXVdQY7c.roa (hash: kUeVBsIsjzs7OuA1c4/VFEC1ddAvMO/ONIYaR+/BuFA=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: D0AO1i7xIA6eU3yWfJ7ttficMDm6+LFtuwB2blzD1T4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:cd:4c:f8:2d:ea:ed:fe:8a:28:1e:87:52:34:1d:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: May 13 04:00:42 2025 GMT
Not After : May 14 04:00:42 2025 GMT
Subject: CN=7ce071698ef43daa13b36d58e57dce7aee37480d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9d:6e:0f:4f:2a:43:77:df:7c:2b:c2:77:ed:
11:be:50:49:11:c9:a9:95:55:d2:3c:3e:f8:97:e3:
a6:e4:15:2b:5c:74:a0:97:d7:9d:75:4a:dd:99:b4:
5e:cc:39:b0:f6:03:40:b7:9f:a3:ba:e2:87:f7:ca:
f0:eb:8a:85:d6:ed:c8:3a:70:a5:f9:6b:57:1d:5d:
42:2f:48:e9:85:44:3f:d6:e9:bd:53:b1:21:8b:a0:
1d:48:86:99:c4:ff:2a:72:cc:e8:f1:92:6e:0e:6f:
36:df:d1:54:29:40:84:64:dd:07:58:8d:95:48:9b:
98:c3:df:f7:de:00:3d:88:21:47:9a:3e:95:7f:b3:
52:d1:7e:02:19:52:81:4e:41:51:bb:ea:f4:2f:58:
ba:1c:e6:75:0f:85:7b:00:16:bd:60:c5:ea:e8:85:
5d:94:27:16:90:94:a5:d7:2f:fa:d2:78:5f:37:83:
60:dd:53:a4:b6:5e:f3:c6:de:88:94:d9:a5:a0:4e:
20:2d:9e:13:b4:64:fc:67:da:eb:9a:b5:88:35:92:
4c:d0:e7:39:4c:28:af:9d:e3:99:d0:5d:3b:41:d2:
98:52:15:fe:50:4d:6e:84:5a:d8:c7:74:b6:64:4e:
ca:51:c7:23:18:58:b4:4e:93:66:05:b0:bf:93:f6:
56:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E0:71:69:8E:F4:3D:AA:13:B3:6D:58:E5:7D:CE:7A:EE:37:48:0D
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:07:62:31:2f:11:5b:df:21:6e:f7:a8:3c:64:c8:39:3a:71:
89:56:c7:5a:b1:b4:3a:2d:da:9d:43:ac:d3:7d:0a:46:6f:70:
82:75:dd:1c:60:6c:85:c6:53:d2:85:c5:99:b2:1d:1a:94:21:
a9:6e:ab:0e:56:41:6c:71:17:1f:9e:82:b8:8b:a9:e0:19:ae:
50:91:57:9f:d4:0d:56:35:98:d7:59:f1:4d:35:57:71:4e:ea:
c2:5f:a5:70:cb:e6:a8:21:a1:53:98:08:c1:61:4f:5d:de:ff:
be:65:17:55:11:ad:58:f2:ef:a8:e6:be:a6:fc:05:5b:67:44:
3a:2c:1c:19:bc:e3:2d:af:81:6c:6f:c2:39:b6:68:d6:2c:93:
0d:60:85:34:da:9a:a2:c8:37:b7:69:61:02:d6:3c:31:dd:e7:
84:02:60:9c:c4:39:00:5c:08:9a:4c:c9:5b:e3:16:de:f1:1d:
cd:c3:f7:0d:ec:fd:cf:d0:17:4c:c7:a9:34:d9:6b:58:3c:00:
22:50:1c:0a:9a:e4:8f:8d:45:df:ed:39:5a:d1:f0:5d:3a:e4:
4a:7a:b7:a9:5c:ad:c7:44:74:8d:62:3a:1b:10:04:f7:5f:df:
2d:96:59:e7:c4:f3:c3:a4:16:d3:bc:e2:64:52:f7:4e:48:37:
fa:0c:09:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:55:20 2025 by rpki-client