Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: /5kI3KBeHk1pEOnRvy8OBLl/rP47C+IYG0qbnTumUcc=
Subject key identifier: 88:41:36:3B:C6:5B:FD:76:46:8A:05:97:28:46:42:E2:FF:91:4B:78
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 01964556DAB0673F0E2C7D9343415D781B82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 02D8
Signing time: Thu 17 Apr 2025 20:00:42 +0000
Manifest this update: Thu 17 Apr 2025 20:00:42 +0000
Manifest next update: Fri 18 Apr 2025 20:00:42 +0000
Files and hashes: 1: OpWpWHElMT6Em0cb46EU4-eZHBM.roa (hash: UkmgnvSBtnTTqSpYqYCCjTjePdoSg2sK2f+rfkHw/HY=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: j/dHb3dEGo5+EOfiLiXh4a045ewStz/YRLEdj/BPnUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:56:da:b0:67:3f:0e:2c:7d:93:43:41:5d:78:1b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Apr 17 20:00:42 2025 GMT
Not After : Apr 18 20:00:42 2025 GMT
Subject: CN=8841363bc65bfd76468a0597284642e2ff914b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:82:46:9f:b6:61:73:80:cf:94:e4:ad:75:35:
f8:9a:84:8f:03:4c:7a:35:f4:39:f8:76:06:44:2d:
6f:20:ca:db:9f:80:75:51:d8:42:26:09:6e:53:3e:
d0:a9:19:bb:d2:c8:13:d3:75:c6:23:22:fe:50:82:
2a:48:c6:dd:da:96:fc:39:26:d0:93:8d:d1:37:95:
ea:17:e5:3d:c6:15:96:38:89:81:a0:d2:44:e1:5d:
bf:bd:a6:33:de:63:1a:e4:c5:2c:46:f1:44:60:e3:
3c:16:66:12:c5:17:88:55:e2:46:1c:58:92:df:e3:
23:e8:60:d5:b5:05:16:a5:12:3c:37:9c:78:39:74:
94:e0:76:d8:8c:0c:6e:67:e3:d7:a8:d5:da:6e:aa:
71:7c:9e:7c:95:ad:25:6e:35:65:a4:fd:bd:17:fe:
3c:98:ec:47:2e:08:0b:b9:ca:b9:b1:e2:b7:37:15:
6a:06:7b:20:92:85:79:56:b2:5a:93:51:db:12:29:
47:db:2d:77:92:b2:f7:cd:e4:88:84:d5:dd:9e:81:
f9:32:40:3e:a4:d6:ab:6c:ae:09:07:bd:a0:66:8c:
87:48:40:ac:18:61:bc:76:cf:f4:e5:e7:34:d7:fd:
b4:cc:51:29:ac:08:e1:5c:87:d4:94:0c:ea:b1:e0:
3a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:41:36:3B:C6:5B:FD:76:46:8A:05:97:28:46:42:E2:FF:91:4B:78
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:c5:0b:6d:c9:fc:26:b8:b5:ab:a8:09:69:99:fb:05:86:de:
db:77:c1:56:80:06:64:9e:8c:47:ae:d5:e6:76:1e:75:e8:60:
2b:3d:0a:28:e1:25:c1:8b:46:dc:37:76:95:df:ed:79:5f:a7:
78:7f:f0:95:29:c3:bd:9f:75:b1:02:f1:67:7a:a0:18:3f:3a:
b2:fa:7e:8d:35:d0:81:6d:a1:fd:0c:05:03:05:38:81:cf:3e:
32:33:59:8e:33:36:51:ea:d9:b3:e3:85:5e:5a:3d:0d:fb:d9:
d4:78:74:5e:a0:29:44:43:97:61:de:4b:b2:c3:10:01:12:d2:
f5:fb:68:a0:6b:36:52:31:59:b2:db:07:ae:72:46:48:f7:5f:
0c:34:45:e4:74:b5:34:87:b7:0e:34:82:51:cd:31:44:01:a0:
86:4e:5e:7a:1b:67:99:af:85:9c:7d:d3:73:6f:bf:94:49:19:
57:74:11:ab:e1:f3:70:fc:8e:3f:bf:81:3b:e1:1c:32:fb:16:
0f:21:66:73:78:87:b7:9c:e1:4f:d1:7d:37:8d:7a:70:00:de:
cc:91:01:d5:a4:aa:5e:42:dc:65:1f:18:8a:a5:65:c3:37:ae:
40:94:ad:33:03:58:fc:a3:47:9a:52:ec:d9:2c:3b:00:a5:c8:
1d:04:e3:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:42:21 2025 by rpki-client