Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
File: mHyvDLazMBzAhKJdXCFBCpLKfjY.mft (raw, json)
Hash identifier: pRHUUcJiQp6InvPo1v2WL1bDH5jHLYJH7x7Yx/X3AJY=
Subject key identifier: AA:0A:DD:5B:89:E2:A6:83:67:21:39:DB:2E:93:95:57:69:E9:35:7E
Authority key identifier: 98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36
Certificate issuer: /CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36
Certificate serial: 01964E90B33EDE0BDC22C64C9627F85AA850
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
Manifest number: 066D
Signing time: Sat 19 Apr 2025 15:00:28 +0000
Manifest this update: Sat 19 Apr 2025 15:00:28 +0000
Manifest next update: Sun 20 Apr 2025 15:00:28 +0000
Files and hashes: 1: mANtdvjrwJb7CPzwvDq9bTI0qtY.roa (hash: bxccQm8ZlD2A8QhBkFeAoasQeWmGc7036H8m3hd3seo=)
2: mHyvDLazMBzAhKJdXCFBCpLKfjY.crl (hash: nG8fMuyDG5AAIz/VbNHMcfUsZEhVrbpWf9RkH5wn1iY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:90:b3:3e:de:0b:dc:22:c6:4c:96:27:f8:5a:a8:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36
Validity
Not Before: Apr 19 15:00:28 2025 GMT
Not After : Apr 20 15:00:28 2025 GMT
Subject: CN=aa0add5b89e2a683672139db2e93955769e9357e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:66:70:e1:14:ae:ba:d3:3d:4a:cf:68:ea:63:
e6:e5:b6:03:e0:22:3d:6a:3e:bf:73:1c:f4:4f:e5:
03:d6:0a:0d:fc:16:3b:0d:ab:4a:3f:d8:f4:4c:89:
6e:3f:8b:51:5b:6e:ff:16:38:93:6c:c1:50:8b:e5:
b0:be:96:63:ad:b3:16:52:cc:7e:c4:7f:ef:df:99:
70:dc:9e:61:01:0c:66:2e:a9:98:c8:b0:11:e8:78:
2f:e9:d0:cb:98:44:16:b5:fd:42:44:53:2f:bf:c9:
f8:93:cc:cb:09:80:68:6a:4c:b2:a6:fe:ae:ba:86:
b9:95:bb:08:b9:cd:09:4f:55:bd:31:b2:c9:a5:64:
6d:bd:6b:9b:3c:fd:2b:ce:30:e0:a3:27:ff:d9:81:
fb:e0:42:13:03:d6:1b:2b:36:79:4e:45:62:4e:24:
86:17:68:03:fa:57:a9:55:8e:f4:d6:8f:8c:47:35:
87:9f:40:85:16:39:d4:4f:e8:c1:d4:9d:8f:4b:20:
f3:9e:6d:42:a7:90:ed:ff:de:af:6b:fb:51:6c:25:
b9:c3:f7:d9:f3:10:ba:b5:23:f0:fe:2d:a3:0d:45:
df:d4:d0:36:b9:73:b0:35:27:bf:4c:7d:37:07:e1:
08:ec:c0:71:76:94:b6:96:de:41:03:86:61:08:73:
76:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0A:DD:5B:89:E2:A6:83:67:21:39:DB:2E:93:95:57:69:E9:35:7E
X509v3 Authority Key Identifier:
keyid:98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:7c:ba:7f:97:e2:32:df:5b:5a:a4:2a:d0:6d:67:36:9d:9e:
b6:8e:1b:9a:74:9f:47:33:5b:4b:23:d3:fa:d1:4f:06:ab:81:
0d:ad:08:aa:62:5c:d4:0c:a4:1c:a6:ef:2a:a1:fe:9f:c9:8f:
96:cd:f6:19:7e:52:51:78:14:65:99:83:6f:21:a6:7e:a4:e2:
8e:a9:a9:2d:30:4b:b0:17:28:eb:38:18:52:9f:0e:0b:f6:5c:
2b:7d:61:0d:f0:53:70:3b:37:8b:fc:5c:15:da:f0:f9:58:30:
63:45:5d:7a:39:c3:d9:0d:48:d5:1b:1a:a4:c7:c6:d2:f9:f3:
20:ea:94:1c:c3:b6:23:1f:3e:ab:db:1f:4b:63:9b:bf:d9:32:
1a:35:de:5c:55:0c:60:1d:a1:31:52:a9:02:8e:c5:a2:e3:0d:
87:56:41:59:16:f2:ab:37:6d:c6:74:07:06:e2:1e:2e:5a:ba:
d7:de:98:e7:ee:dd:b5:34:cb:c5:d3:46:d8:f8:5a:f7:3e:72:
ae:3c:31:d6:ee:48:87:51:c1:27:c0:cd:c9:2b:3d:87:87:b4:
4b:f1:60:cd:19:5d:01:99:51:ad:5c:98:f9:33:b9:78:69:8c:
34:1f:f0:3a:2b:0e:66:71:12:95:8c:be:de:5a:b8:bb:a1:2a:
4e:04:5b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:36:39 2025 by rpki-client