Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: CmCtnwnIXxedlKQbOmNFPjb9uGBycj5eMhtCFu8bC6M=
Subject key identifier: C4:4C:99:B1:FC:E4:3A:47:BC:1D:5F:9D:F9:B5:50:75:CE:53:68:83
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 0196A91DF12DD50476FE92EF4DD48DC0FCA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 0351
Signing time: Wed 07 May 2025 05:00:33 +0000
Manifest this update: Wed 07 May 2025 05:00:33 +0000
Manifest next update: Thu 08 May 2025 05:00:33 +0000
Files and hashes: 1: 8tq6vUxikXVafkdQNOumeQjFfpc.roa (hash: UpmsMokgr2OHdk8MVVsUZdaiVZYh5g21JKYfdCc4ZA8=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: qrLtuQFNc88mC1mDNIt7M4a3lInzlCvf45Qd9QU/Fa0=)
3: j89ASOslTb0sA8qPaNCnvdarbHI.roa (hash: pTH6+0WVaBMdNBqgh83yrPXmlHTEaPDbAotvSzt0CT4=)
4: vSrVfCiFhwuThaFge_HlQGTrHjk.roa (hash: Bc63krCzWLaf7LOD/k916HgQOiH2H7M6asbeefYBGos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 05:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:1d:f1:2d:d5:04:76:fe:92:ef:4d:d4:8d:c0:fc:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: May 7 05:00:33 2025 GMT
Not After : May 8 05:00:33 2025 GMT
Subject: CN=c44c99b1fce43a47bc1d5f9df9b55075ce536883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:13:d7:ab:90:8d:6c:a6:e8:b7:78:d8:a9:67:
d9:20:26:ee:86:da:cc:7c:b7:41:0c:08:f2:3b:ea:
73:07:b0:80:e0:25:24:17:97:64:16:5b:fa:18:6e:
45:70:a2:5d:d6:b1:0a:31:ad:72:11:b2:3e:bb:a3:
2d:0d:2d:93:00:6f:78:87:a3:7d:81:85:b1:10:cc:
12:ae:cb:27:40:2d:48:6d:86:2c:d5:75:d0:33:93:
5a:e2:87:f0:ac:e8:06:85:02:c3:02:91:96:b2:41:
f9:f1:b0:4e:a6:f4:c8:ab:fa:45:39:d3:92:de:30:
bc:db:3f:50:7e:f5:6f:3c:a4:c1:e7:88:24:59:1f:
81:98:34:e6:20:2f:59:63:40:b7:b6:93:5a:be:e7:
ab:94:68:26:e9:db:53:28:4b:79:86:b1:b6:8f:1b:
98:1f:90:13:8d:05:d3:46:60:d4:49:6d:5f:ce:b1:
62:a1:43:69:97:8a:08:fc:55:ac:05:65:2a:61:49:
cf:a8:84:8f:04:7c:f8:53:6c:ce:81:e3:27:34:5c:
39:99:64:82:b0:18:f0:57:31:c7:0b:02:09:21:e0:
4f:0c:93:26:34:d0:50:a2:c8:d6:ac:7c:48:48:b9:
df:b3:06:a1:27:54:38:dd:d2:c9:dd:bd:b1:dc:7e:
36:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:4C:99:B1:FC:E4:3A:47:BC:1D:5F:9D:F9:B5:50:75:CE:53:68:83
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:14:ee:14:8f:1c:fb:f7:e7:34:ce:54:8d:c3:b3:aa:38:2e:
c5:66:bd:29:b2:a2:da:b3:e2:f0:a4:b7:fe:69:a1:b3:ef:d0:
a5:d8:12:6f:0e:df:64:8b:ed:6a:a6:a8:40:fc:8f:1c:7f:7d:
6c:96:a3:1b:ea:91:a7:c3:b1:7c:2b:75:c7:51:9f:00:b5:19:
37:4d:e8:62:e2:57:f0:5d:0b:d9:6d:8a:e4:c1:0f:3f:08:cd:
8f:f2:be:2a:38:25:9c:05:5f:19:e0:c6:b4:37:3a:b5:c6:3a:
16:8e:48:a8:ab:6b:f8:20:7a:70:e6:66:9f:ba:c1:3c:c5:a3:
e8:dc:98:14:00:0b:3f:41:26:b7:7a:98:dd:fa:78:ef:50:32:
cb:94:52:27:83:82:9a:74:bb:eb:f9:40:b3:a2:53:a1:a4:02:
c7:4b:0c:88:99:c3:a8:f5:ce:43:75:32:77:53:b1:5c:1e:a7:
29:e3:c7:3d:eb:07:92:5a:19:b9:ed:3c:3d:e9:29:56:c3:84:
bb:dd:4d:c6:a2:8b:ea:e8:61:e2:76:15:0e:56:93:15:b3:71:
65:69:35:f1:a7:b2:67:81:69:8d:d6:3d:35:d5:b6:a0:0e:fd:
1e:69:bc:fd:11:5b:6b:36:2e:42:34:3d:f1:95:17:95:03:85:
39:3c:39:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 10:30:09 2025 by rpki-client