Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
File: yDOgOJWSdW5BXN40irvCQxKwLfY.mft (raw, json)
Hash identifier: ZIGGg1Gf8az7yesa5XlfyQENhUMFcngGFxk30S16xaA=
Subject key identifier: DC:DB:57:D3:89:51:80:CE:1B:A9:CD:44:4F:A1:7E:E2:2D:0D:B0:5A
Authority key identifier: C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
Certificate issuer: /CN=c833a0389592756e415cde348abbc24312b02df6
Certificate serial: 0196451FB3C2A41A27BF80E1E016916E9846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
Manifest number: 14F7
Signing time: Thu 17 Apr 2025 19:00:27 +0000
Manifest this update: Thu 17 Apr 2025 19:00:27 +0000
Manifest next update: Fri 18 Apr 2025 19:00:27 +0000
Files and hashes: 1: erRTM1_91VtMTpdLg1tFc8DEnKQ.roa (hash: igv5stthjArSt6knKlRkVvpjhTI9/bVwYZs5FEOn1NI=)
2: yDOgOJWSdW5BXN40irvCQxKwLfY.crl (hash: 3Oa+24eAtlLq4PUTIHFQmf3xPxontiA4mnaroBYVzis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 18:56:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:1f:b3:c2:a4:1a:27:bf:80:e1:e0:16:91:6e:98:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c833a0389592756e415cde348abbc24312b02df6
Validity
Not Before: Apr 17 19:00:27 2025 GMT
Not After : Apr 18 19:00:27 2025 GMT
Subject: CN=dcdb57d3895180ce1ba9cd444fa17ee22d0db05a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1c:c2:a1:00:87:cf:ce:60:b8:e1:88:c5:df:
fb:d1:e0:a3:d5:22:1f:5e:9a:32:35:f8:38:19:79:
1e:31:67:68:c9:1e:bf:32:97:94:e7:c1:91:14:c2:
ca:5b:6f:d0:6c:91:19:2a:3c:ae:49:be:91:95:88:
bf:3c:f3:eb:e8:91:97:10:cf:32:81:df:1e:94:bc:
74:21:d2:8b:d6:0a:71:e2:90:94:b5:83:2b:a0:64:
32:1d:54:30:51:af:0d:2f:04:45:16:93:5f:03:ce:
68:b2:e2:9f:61:e4:de:db:62:fb:04:18:9b:e0:ce:
cb:dc:e3:4e:fc:93:51:4c:bd:a1:9d:48:54:15:92:
dd:bf:76:49:55:24:c5:50:bc:80:bb:54:c4:24:fd:
4c:1b:a9:15:84:33:74:b4:5e:10:39:f3:98:b5:cd:
31:41:e3:e7:58:13:61:b6:64:81:d1:c1:26:84:8e:
9d:a4:1d:f1:69:44:0d:cb:9f:77:74:44:18:07:ec:
7f:e0:4b:ca:0c:3b:8f:e8:67:9b:1c:19:a6:c0:47:
69:ff:f4:93:24:a9:d4:53:15:30:a2:8a:da:34:27:
c0:d1:5d:15:0a:9a:9b:91:bc:cc:f1:a6:71:39:79:
91:c9:5f:8f:4d:3d:4d:4b:5d:3b:8a:1e:c8:08:e9:
aa:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:DB:57:D3:89:51:80:CE:1B:A9:CD:44:4F:A1:7E:E2:2D:0D:B0:5A
X509v3 Authority Key Identifier:
keyid:C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:f6:96:83:b8:81:ce:e5:ec:69:43:d5:99:60:56:1c:47:fd:
b6:dd:74:3c:0d:c9:09:fe:5f:b6:e2:2b:5d:30:81:91:db:dc:
20:e4:86:9d:e4:fb:f7:52:35:ef:5c:39:21:cc:eb:b7:22:a4:
6f:67:dc:0f:6e:5c:bf:66:22:5d:4e:b7:56:88:fc:53:95:ce:
2f:7d:54:fb:fa:ff:c6:89:51:e3:20:7e:52:32:65:f0:b8:d6:
0a:27:67:22:b9:ed:44:50:6f:be:5e:bc:a9:f6:7d:14:b0:ad:
17:34:7e:c9:38:ff:06:13:5d:86:f8:0a:b6:f8:07:32:c9:28:
ef:ff:47:70:ef:ad:53:e2:7b:12:bb:5f:5c:c4:20:12:a6:6b:
cf:f3:cf:64:a8:62:fc:8f:5c:ce:ed:91:8a:fc:03:cd:9c:b5:
6f:e7:46:05:f9:e4:25:80:4a:54:57:7b:c1:07:80:31:e3:af:
f5:a5:5c:97:8f:29:95:07:a2:fd:ea:18:c3:7c:87:2d:49:13:
5e:76:50:b7:4c:29:b5:96:b2:3f:cf:d4:35:fa:a0:ee:8e:58:
b7:aa:43:2a:98:75:91:12:ca:b2:0a:16:01:de:86:c1:8b:30:
e3:e3:6c:bb:b9:bf:d4:ea:da:6a:b7:ec:c2:bb:5f:d6:54:e9:
68:9e:b7:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 02:12:57 2025 by rpki-client