Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
File: YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft (raw, json)
Hash identifier: nqN5rdFXvGu3QGuuq7/leLCA7a72Tvnb120IsWmZ6BA=
Subject key identifier: 8A:9C:B1:52:63:1D:8C:92:0E:B4:72:52:FB:C0:20:35:37:E9:AF:44
Authority key identifier: 61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E
Certificate issuer: /CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e
Certificate serial: 0196AB0C536F9F9971700E30282F53AE21B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
Manifest number: 152A
Signing time: Wed 07 May 2025 14:00:33 +0000
Manifest this update: Wed 07 May 2025 14:00:33 +0000
Manifest next update: Thu 08 May 2025 14:00:33 +0000
Files and hashes: 1: YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl (hash: j+UHSj8l5huAQI54goZnEWmS7UimTdFeKwpeI6Df9dw=)
2: lpQpCVUUyuieF-my1hQ69F4PEZk.roa (hash: WA4/OyJVwgJx0ERp2sKecmZzmYmPwtki2xCkuF+SczM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ab:0c:53:6f:9f:99:71:70:0e:30:28:2f:53:ae:21:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e
Validity
Not Before: May 7 14:00:33 2025 GMT
Not After : May 8 14:00:33 2025 GMT
Subject: CN=8a9cb152631d8c920eb47252fbc0203537e9af44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3a:36:6a:07:96:22:ca:f7:8b:19:26:ce:6c:
8e:4c:13:4e:ca:da:bb:51:fe:92:d5:8e:45:12:0d:
80:e8:96:9e:da:b4:d2:51:f2:75:b8:05:71:64:4a:
17:59:ff:23:a1:20:1b:1e:01:3a:d1:19:91:45:f6:
2e:40:f7:97:da:7a:53:5d:e2:ea:93:06:50:83:28:
82:36:e8:51:c0:e5:ea:40:13:a6:a2:76:fa:b9:2f:
b8:85:db:59:26:79:97:26:a3:85:4d:de:9b:62:58:
05:40:c9:be:f1:92:f8:66:76:c3:59:cb:25:a7:bd:
39:79:74:ba:50:29:d5:9d:9b:fd:c6:4d:fb:d8:c6:
d2:35:ae:78:fe:a5:1b:11:b7:7e:b7:41:e6:bc:5b:
9c:8c:cb:da:74:3a:be:c8:f4:41:6f:2c:e3:99:01:
d1:84:77:0c:74:57:58:9e:07:2c:d1:d7:44:09:8f:
c3:ed:fe:05:e7:57:00:a7:5e:a0:e1:3e:17:d6:ec:
da:20:4f:53:97:ae:9d:b0:a2:e1:37:c1:bf:b1:ad:
72:97:8f:e9:9e:72:61:45:0a:10:16:fa:fb:52:e7:
a9:fb:62:ba:60:24:8b:2a:74:46:4d:24:f8:cb:e9:
88:32:47:46:69:f4:d3:c7:8f:de:47:f3:3f:f9:4a:
af:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9C:B1:52:63:1D:8C:92:0E:B4:72:52:FB:C0:20:35:37:E9:AF:44
X509v3 Authority Key Identifier:
keyid:61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:78:50:b4:e6:17:b0:40:0b:b3:1a:e1:7c:57:9d:52:1f:d8:
74:fe:f6:dd:92:02:74:51:a7:b8:78:cd:39:6e:9d:c4:1b:11:
99:c8:70:ed:a2:0c:c4:22:23:8d:9b:5a:a1:db:a8:0d:e6:05:
82:09:b8:d3:b7:99:53:0f:a0:d1:f5:2d:92:74:ed:b0:0e:09:
e3:b9:e7:df:a6:eb:aa:cf:37:4b:26:73:4b:e5:37:50:13:b8:
79:61:a8:78:c4:9f:05:79:6f:f3:81:84:9d:1d:88:31:c3:e6:
67:2b:92:b4:b1:68:fc:3c:bd:a2:43:c7:8f:c1:82:8e:89:ef:
07:b4:26:ba:75:d9:93:9d:25:1e:6f:64:5f:dd:00:cd:71:e1:
8a:37:ad:cb:ce:f2:e5:b0:1a:06:39:44:cc:37:8b:ba:53:18:
04:07:f8:ef:d7:15:f0:fd:0c:48:a1:5e:09:7b:d3:f1:0d:91:
c7:7a:fa:bd:58:6c:28:bc:86:fe:75:b2:92:b6:6a:62:9e:b0:
b2:c9:53:cc:75:4d:0c:ec:2a:f1:8d:0b:f7:3c:56:55:c6:75:
b9:48:c1:fa:7c:6f:17:3c:2a:a3:72:4c:53:8a:2b:7d:bc:51:
d4:d2:73:9f:85:bd:80:47:d2:a7:9f:27:45:9a:b8:c8:9f:50:
d7:f3:1d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 23:02:41 2025 by rpki-client