Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: LDSxmRjvz/xbxKYw/43y+nZaaVEhwv3V9np2L0IE8vM=
Subject key identifier: C0:4E:EA:00:B0:DB:45:51:BE:90:5E:40:A3:F5:AA:6B:08:90:68:CF
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 019647EA0E15087E916D150FB54AD8DDE717
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0A16
Signing time: Fri 18 Apr 2025 08:00:43 +0000
Manifest this update: Fri 18 Apr 2025 08:00:43 +0000
Manifest next update: Sat 19 Apr 2025 08:00:43 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: 4GdCZOp+SOmJxax/6GFd9QC1EmIWpj4EA76uSfyRJqU=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 08:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:ea:0e:15:08:7e:91:6d:15:0f:b5:4a:d8:dd:e7:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Apr 18 08:00:43 2025 GMT
Not After : Apr 19 08:00:43 2025 GMT
Subject: CN=c04eea00b0db4551be905e40a3f5aa6b089068cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:41:da:c6:53:b1:47:d0:4a:8e:84:c4:8d:d3:
e4:9b:b7:63:31:6a:a9:e2:f3:ae:fa:93:9f:08:1d:
cf:94:42:91:4e:bc:4e:3d:da:d0:a4:31:9f:91:a6:
76:0b:84:fe:cc:86:52:95:4a:a2:55:ca:b9:80:81:
c3:55:80:cd:cc:ac:f8:d6:50:08:63:fc:95:1b:53:
50:9d:f9:76:06:89:62:c4:27:a8:57:2d:a2:86:b3:
b7:26:7d:41:81:f4:35:70:49:46:31:b8:e3:58:ec:
87:8a:1d:c1:72:4b:bd:86:7d:f2:af:15:0f:35:44:
13:43:87:78:2c:f8:f5:48:b1:8f:93:2e:da:52:af:
86:52:5a:8b:d9:57:21:de:24:3c:a6:00:da:64:65:
8f:5a:12:b3:54:83:ce:0e:19:eb:3a:78:93:0b:66:
00:ca:d1:f9:77:b3:e6:4a:a6:14:66:d9:9b:c1:d8:
b9:d4:28:d4:7f:6c:25:9f:a2:4e:a0:1f:a0:a4:77:
5f:6b:ed:b2:1b:a6:a5:8e:22:bd:c5:c5:44:0a:71:
51:f0:8a:3c:7f:18:26:d2:ed:54:77:e4:6f:a9:14:
f7:5a:c5:c3:3d:bf:89:87:20:1f:a7:61:61:6e:c7:
c5:13:b6:8f:1e:3b:83:f5:cf:67:08:b6:4c:9e:d2:
46:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:4E:EA:00:B0:DB:45:51:BE:90:5E:40:A3:F5:AA:6B:08:90:68:CF
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:98:c1:01:de:3b:ab:ae:e0:7a:25:3a:22:ba:3c:1e:ed:05:
27:87:15:bc:66:a5:03:61:cc:c4:6c:ef:fb:b7:4a:59:76:bd:
75:fb:3a:db:c6:6c:f7:7b:57:93:ca:90:1b:a6:e5:15:f7:d4:
8a:62:ab:e1:cb:4c:ac:dd:20:0c:d9:03:c2:b4:f0:39:4f:62:
cd:9a:d7:cd:d7:f3:18:41:a0:7b:6b:17:42:41:cb:15:fe:29:
ae:fd:fc:1a:25:69:9e:a0:87:b9:76:bd:a6:5f:1a:c0:99:db:
5f:45:d5:c5:85:35:9d:46:30:dd:b1:24:4e:82:7c:f2:4b:d4:
01:82:6b:b6:60:9d:1c:3c:6f:5f:f0:fe:ec:d8:e0:00:de:83:
a8:f8:81:95:6b:5d:1a:16:0d:dd:ed:50:4b:04:45:21:f1:b1:
74:8a:7c:3f:70:9e:09:e4:79:dd:d8:20:97:ac:88:2f:db:4f:
cb:95:4e:cd:1e:4f:a1:be:79:31:70:f9:56:10:21:e3:40:e5:
53:59:e8:08:dc:2a:4f:ef:91:69:7d:6c:30:69:d1:77:2e:04:
e9:03:e0:bd:2f:a2:f7:dd:75:e9:84:c4:42:11:8a:1f:73:97:
a8:ba:65:01:37:8f:4e:f6:84:e4:fa:e8:61:25:66:32:64:54:
6c:80:e2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 19:03:25 2025 by rpki-client