Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json)
Hash identifier: HLiST8Yq+OcTSwMvNXd7UgwAXTaHH0GebYaomdZfyl4=
Subject key identifier: BE:79:EE:E9:16:D2:91:0E:55:59:68:82:8D:30:8B:FF:B7:E5:7F:0A
Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Certificate serial: 0196A8B0B684A491908782EABA3B718DEAA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
Manifest number: E1
Signing time: Wed 07 May 2025 03:01:15 +0000
Manifest this update: Wed 07 May 2025 03:01:15 +0000
Manifest next update: Thu 08 May 2025 03:01:15 +0000
Files and hashes: 1: knggMszGXslbbJ2_Oh2Jaifz1gc.roa (hash: 1NY+pqUYlKwDvhTu3JTqY8SDs7jlakZ17fJjnTdwI9Y=)
2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: /JNRR3Ob1GKvX9ntF/YMWrOpGREaoaKeAK+jNJqUvnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 03:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:b0:b6:84:a4:91:90:87:82:ea:ba:3b:71:8d:ea:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Validity
Not Before: May 7 03:01:15 2025 GMT
Not After : May 8 03:01:15 2025 GMT
Subject: CN=be79eee916d2910e555968828d308bffb7e57f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0d:28:2f:86:6f:66:08:34:c7:74:2b:df:e9:
99:fc:24:c8:c6:25:a3:96:40:59:ac:85:46:65:86:
32:2c:d9:15:16:02:04:51:c4:cf:70:86:9b:f5:1f:
0b:93:32:b3:a5:ab:02:6a:03:5b:02:d0:9c:88:c9:
58:b3:42:5d:2d:19:fb:47:37:e2:19:ea:94:85:05:
34:08:23:f7:60:3f:7d:c2:11:58:05:b2:7c:92:98:
50:e7:af:86:e5:93:9d:ae:74:a5:13:9b:bf:40:10:
20:db:4a:44:3d:90:43:17:3a:67:0d:4e:67:fe:12:
8b:5a:7f:bf:21:99:54:88:85:27:b2:e8:c8:99:e4:
ea:5d:03:82:15:9d:ed:29:71:e6:0a:91:40:12:6d:
8e:dc:46:d5:b2:e0:fb:de:fd:16:5a:93:49:b9:fe:
8f:07:1b:c5:f4:71:3b:7c:35:37:00:fd:5d:6a:b6:
8a:a6:e5:9a:73:30:09:22:37:f0:de:99:32:07:3a:
c5:f2:a4:a0:b3:a0:02:bc:ff:58:64:9a:cb:e2:9b:
b6:05:8b:d0:68:71:7c:b2:2b:b5:84:c6:c3:22:b1:
ea:bc:83:09:14:31:87:5c:59:ff:9f:c4:89:e7:af:
8a:4f:0d:39:a2:77:0e:82:41:10:7f:e4:c5:b5:03:
90:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:79:EE:E9:16:D2:91:0E:55:59:68:82:8D:30:8B:FF:B7:E5:7F:0A
X509v3 Authority Key Identifier:
keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:ac:44:d7:60:0c:a5:98:f3:ec:1a:0c:45:5a:02:f0:5e:d0:
36:ba:a9:17:82:31:bc:71:5b:20:2e:10:2a:f8:ba:e8:b9:3a:
ea:42:da:26:fa:63:6b:3b:d8:3e:e1:9e:c7:44:ac:d7:68:5a:
52:11:c3:df:e9:57:9a:8c:52:66:4f:4b:d9:d4:2e:fd:fd:53:
81:19:74:21:56:d4:a0:61:c4:10:97:7b:5a:99:74:48:70:9e:
8d:3d:97:a8:92:12:3e:cd:e9:f1:fc:04:da:b0:72:92:26:37:
dd:35:50:ed:55:a6:af:2a:1f:e0:70:10:cd:94:89:e2:0d:b4:
c1:d1:6d:be:a3:9c:7a:51:6a:d1:00:64:a9:f7:53:b1:19:77:
6b:10:b1:da:5d:ed:69:cc:5d:f1:54:de:63:14:78:ec:c8:19:
4c:9f:96:7a:f8:7e:b4:10:b6:94:08:31:a3:43:8d:9a:29:f4:
56:5d:4b:0a:d7:ed:ad:a2:6b:22:cf:54:e2:d0:04:5c:e2:88:
1f:7b:ce:14:1b:66:6b:e8:f3:19:2c:13:bc:99:7e:44:e9:14:
bb:46:09:35:d3:9a:29:2a:d6:c4:36:5d:0e:05:c4:10:81:f5:
5b:7f:52:75:c4:f4:b7:60:3f:3a:b9:6f:50:2f:28:02:90:46:
aa:64:c4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 13:44:20 2025 by rpki-client