Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
File: y9dX6ROqzkNObdbW1Qp-33LOiIw.mft (raw, json)
Hash identifier: I+lYZHn3AW/TOe+wy4wV9hBcoi3/AC/aKx+yWS1dzdM=
Subject key identifier: C9:E9:97:9A:AE:A0:83:CA:2F:E1:DD:41:A4:78:10:B6:38:58:CA:77
Authority key identifier: CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C
Certificate issuer: /CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c
Certificate serial: 01965801A8E61A6266FFB8F31C15277C1202
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
Manifest number: 0ECC
Signing time: Mon 21 Apr 2025 11:00:25 +0000
Manifest this update: Mon 21 Apr 2025 11:00:25 +0000
Manifest next update: Tue 22 Apr 2025 11:00:25 +0000
Files and hashes: 1: xXYCNUnm-3UsiS0Y2j4IJt8GJmU.roa (hash: kfa/1BPOG2GKMxXo/zgSWZ2DSaf3+pCaWIgYdprI0TU=)
2: y9dX6ROqzkNObdbW1Qp-33LOiIw.crl (hash: 9JzOULc6YOsjeb1wQY4weN72pdkxwooM8ebvxt/jCNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:01:a8:e6:1a:62:66:ff:b8:f3:1c:15:27:7c:12:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c
Validity
Not Before: Apr 21 11:00:25 2025 GMT
Not After : Apr 22 11:00:25 2025 GMT
Subject: CN=c9e9979aaea083ca2fe1dd41a47810b63858ca77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:66:ab:6d:4a:63:ab:c9:7d:d5:26:2a:d5:19:
85:7d:73:58:c8:01:51:e8:63:b1:6e:ca:48:39:e5:
34:cb:37:f3:f8:08:c3:ad:11:c8:77:79:14:db:37:
63:9f:e8:1f:81:22:28:ac:18:38:ba:e7:34:da:74:
db:fa:d2:8a:9d:a0:30:19:78:55:81:e6:1d:fe:97:
2b:3b:e9:2c:41:1b:4e:10:87:d1:70:d7:02:6f:1f:
8f:23:35:3f:33:79:2d:19:23:f4:b3:87:7c:21:b5:
a9:98:d4:64:1c:05:aa:55:82:b3:b0:0b:14:25:c4:
a2:34:f4:c5:35:e8:ec:39:0d:c5:c0:6e:92:9a:91:
5d:dc:77:39:de:32:4d:4f:19:bf:49:a0:4e:65:8d:
87:0c:82:9d:03:2e:2f:7d:7f:b0:db:33:67:5c:cf:
18:3f:ab:02:62:30:05:e2:e7:88:06:75:28:66:3c:
01:21:ff:4c:a8:4f:a1:06:ac:d7:b7:2e:d2:a7:7a:
0f:5e:76:b7:5b:df:a9:07:30:66:13:bc:97:e1:8a:
14:04:82:44:67:fc:37:44:72:24:9d:6e:50:dc:37:
0b:f6:01:24:d0:ef:07:a3:55:3c:26:83:31:98:cc:
fa:36:2c:2d:dc:fd:16:21:dc:ea:b8:9f:b0:28:68:
24:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E9:97:9A:AE:A0:83:CA:2F:E1:DD:41:A4:78:10:B6:38:58:CA:77
X509v3 Authority Key Identifier:
keyid:CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:19:29:0c:cc:05:2d:21:41:ac:81:ca:de:a9:1f:bf:e1:96:
da:fd:5b:6a:7d:32:c2:f9:07:0d:f3:0e:60:28:9a:26:06:f4:
16:f7:53:32:58:5d:00:ec:f5:ba:68:87:1d:cc:66:34:de:cb:
ba:16:59:0e:53:24:7b:f8:98:98:47:ee:50:fd:fc:e1:91:f3:
a6:70:1c:db:69:17:df:1f:cf:ce:d6:a6:02:42:77:c1:96:7e:
bd:74:e3:b8:3d:17:4e:e7:96:e5:ca:ae:f2:35:00:e2:20:a5:
60:27:8d:9c:c4:3d:75:36:29:45:8a:97:db:69:fb:d3:99:85:
3b:9f:71:92:b6:29:35:70:7b:1e:70:e9:ff:26:98:6f:75:a3:
5b:ac:8e:88:1d:e0:6c:60:39:87:1d:b3:88:f3:0a:a6:80:27:
1d:07:4c:e5:68:1d:c8:ae:09:5b:38:a0:25:d4:d1:36:36:57:
8d:da:c2:73:47:d3:a9:b0:b4:d2:d9:79:fb:3d:03:15:94:8d:
75:c6:3a:4b:dc:15:43:23:a2:1f:42:a0:e3:a0:fe:e4:31:d2:
dc:ca:0f:cc:4b:9a:f9:de:97:04:3b:a8:43:95:8c:ca:3c:9d:
b9:66:6d:7f:ab:c6:ca:7c:74:ad:85:1d:41:79:71:03:a1:0a:
99:db:cb:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:06:41 2025 by rpki-client