Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json)
Hash identifier: aDiv68yOlfyiBeYq6wRey66O7P7g4wJTotU0/wr9FTY=
Subject key identifier: 89:3F:CB:C2:EA:07:54:88:BD:4D:C1:CD:03:43:E4:51:80:40:2D:30
Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Certificate serial: 0196372CFE24DAF94B6651AF3044E460A2C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
Manifest number: 1108
Signing time: Tue 15 Apr 2025 02:00:17 +0000
Manifest this update: Tue 15 Apr 2025 02:00:17 +0000
Manifest next update: Wed 16 Apr 2025 02:00:17 +0000
Files and hashes: 1: 9f0Q6rSiXJjkh_lJREdgBWV3nxk.roa (hash: TCvx1Dq9UNFJ/C/RNxBohy4u4C9d1rsY7iM9ireTjM8=)
2: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: wqKI9EBemOEnn6wKHyy1ByaWgnVFa70/5ndKci/gw4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:37:2c:fe:24:da:f9:4b:66:51:af:30:44:e4:60:a2:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc
Validity
Not Before: Apr 15 02:00:17 2025 GMT
Not After : Apr 16 02:00:17 2025 GMT
Subject: CN=893fcbc2ea075488bd4dc1cd0343e45180402d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:17:e1:db:a5:f9:d5:7a:5e:bc:89:56:e4:84:
e8:53:99:22:62:0c:a7:66:b5:a5:9c:8a:6d:5a:bf:
38:c7:5a:7d:d9:e6:57:ef:13:94:90:7c:2e:d3:97:
ec:fc:58:c7:e3:8d:35:7c:76:90:95:cc:94:50:75:
c0:19:de:13:ab:0a:82:52:67:f3:fb:87:49:52:0d:
a0:94:8d:52:5f:8f:07:fb:d7:db:9d:cc:0f:fc:f5:
8a:9b:a5:66:52:f7:19:57:02:a0:af:68:08:87:d0:
66:8d:b7:88:03:46:07:9b:91:74:c3:b2:6c:ab:04:
f5:dd:9d:a3:c7:c4:5a:6f:46:46:35:ab:94:d3:a4:
14:93:19:f2:b6:25:43:4d:0f:1f:af:11:68:c7:3a:
82:88:c7:e4:6e:d1:9a:54:77:ec:fe:6f:0f:d1:ac:
4b:c3:9a:69:86:7b:59:84:98:86:d2:b7:ec:58:99:
01:b7:71:92:e4:92:81:92:4b:3a:0c:4a:3c:d0:27:
f8:23:b8:08:5a:b6:11:e6:58:c5:4e:7e:29:fa:70:
5e:e4:79:a2:f2:dc:14:ff:f0:81:75:57:97:86:82:
5f:c8:a3:9b:05:e3:e8:62:b7:08:f9:0f:e1:8f:bf:
96:b7:25:77:dc:09:b1:e2:18:f0:da:20:12:cb:45:
2d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:3F:CB:C2:EA:07:54:88:BD:4D:C1:CD:03:43:E4:51:80:40:2D:30
X509v3 Authority Key Identifier:
keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:f2:91:d3:9e:2d:af:59:f6:c2:1e:7e:3a:85:c6:26:46:4a:
b1:7d:e4:30:87:1d:64:ca:ce:99:c8:c7:79:40:f6:81:68:b7:
6c:13:7c:2b:cc:05:14:39:fe:59:4f:46:93:7e:39:1b:ff:b8:
66:24:46:08:66:c5:b7:d7:cb:47:5b:9c:ff:51:67:60:67:7d:
7b:17:56:2a:34:73:93:16:9d:e4:ba:fc:6a:90:30:20:27:3b:
cd:b6:18:80:f5:32:5c:a5:88:11:e8:73:c8:5c:a2:91:d3:18:
a1:f9:7d:90:df:19:24:ed:f5:3e:ba:6f:ee:a2:3d:f6:66:ce:
91:f7:5d:fe:9d:a9:64:31:e8:38:fc:39:2e:ea:25:2e:ba:d1:
53:4a:51:6e:b8:c3:e5:71:c9:15:35:79:41:a0:94:22:27:81:
2b:b1:b9:c1:2d:70:12:b9:65:45:f7:d4:34:5f:97:ca:c8:2f:
44:d4:16:76:28:ff:14:be:60:f6:a4:71:32:07:ee:02:78:75:
f4:c1:1c:5f:a7:d5:d5:4d:cb:bd:89:d6:fe:50:71:98:34:60:
b7:4b:23:56:5d:94:d2:4c:44:3d:a5:a5:3a:39:94:80:6b:70:
21:76:5d:86:39:ac:37:6c:9e:63:b4:fb:41:09:5a:9f:83:d7:
95:46:8a:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 11:16:38 2025 by rpki-client