Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
File: 8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json)
Hash identifier: iQdSUxTbWCmcdaYpQTh1eAsRbUeu+y4iCot3BwJeL2k=
Subject key identifier: 05:26:B8:BD:88:9C:63:71:2D:1D:0A:D3:0D:05:E8:9B:0C:A2:B2:D1
Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
Certificate issuer: /CN=f32be982060a43734d0ad126ad46da2f395c9def
Certificate serial: 0196534A47B2D8D51BC9880A83E699CE291E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 13:01:38 +0000
Manifest this update: Sun 20 Apr 2025 13:01:38 +0000
Manifest next update: Mon 21 Apr 2025 13:01:38 +0000
Files and hashes: 1: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: WP1BzTT4F20l6xHaRN/TMIIFe6VrIslFSHWfnJBk4UU=)
2: fS7ilcusBx7RbV5l98s5It9Po4c.roa (hash: +tzJ2xKk0Wh2nHt9C5QqjNQ/SNVB0Rw0vsX3jkZV7rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:4a:47:b2:d8:d5:1b:c9:88:0a:83:e6:99:ce:29:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def
Validity
Not Before: Apr 20 13:01:38 2025 GMT
Not After : Apr 21 13:01:38 2025 GMT
Subject: CN=0526b8bd889c63712d1d0ad30d05e89b0ca2b2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:90:5e:bb:a0:15:d8:11:83:61:80:27:49:ac:
b1:80:f8:8a:15:f2:50:51:d4:9c:a6:61:e1:3c:43:
ce:49:77:fe:6c:5b:5d:48:ae:21:a4:d4:ea:28:88:
a0:4c:47:af:04:69:c7:d5:31:67:ca:60:6a:d2:93:
f9:e5:e4:97:35:bb:46:e6:13:48:20:f0:e3:d4:37:
c4:ad:89:b9:65:b6:eb:42:dd:1b:c3:87:ca:27:3c:
af:1c:e0:1a:59:a2:14:22:f7:88:ac:b1:1d:44:e8:
dc:fc:4c:b8:82:96:59:a2:46:c6:d1:ae:ec:7e:ec:
a4:84:82:6c:87:07:2f:fc:e4:04:af:1a:75:87:8f:
9b:cc:db:75:83:90:c7:e2:3c:0f:e3:96:45:85:af:
00:8b:88:e4:f2:90:07:23:ff:7e:c0:09:29:0a:66:
53:d6:28:d5:9b:b8:ca:55:34:79:de:cb:a6:4d:b3:
d5:43:ab:e6:e3:77:33:57:4b:a8:86:3f:58:3d:a5:
d7:30:7a:04:7f:58:a3:db:67:2c:33:3f:79:ad:19:
2e:fb:67:2c:4a:8a:d4:82:fc:2f:34:39:b9:06:30:
e2:62:5d:54:a2:5c:72:ba:8b:0a:27:7e:c7:3e:f5:
e0:ec:57:47:42:05:59:a9:b4:e1:6c:3b:bd:9d:2d:
f0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:26:B8:BD:88:9C:63:71:2D:1D:0A:D3:0D:05:E8:9B:0C:A2:B2:D1
X509v3 Authority Key Identifier:
keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:19:b0:4c:4c:49:ff:6a:e7:47:f8:ef:a4:2a:dc:03:28:b8:
51:18:ae:1f:06:2a:cd:78:c1:d6:8e:41:14:f8:5b:4c:3b:07:
51:a6:c9:35:a3:7e:2f:cb:e2:79:6c:d6:3b:f4:46:10:e6:c7:
dc:b6:cf:04:bf:7d:2d:24:a9:67:44:fb:77:a5:62:bb:3f:fc:
c1:b4:eb:68:6a:62:45:30:7d:22:69:41:76:ab:79:e0:45:28:
6d:33:70:b9:10:d5:5f:86:39:a2:be:2e:29:89:a2:5c:26:01:
b5:ac:76:34:5e:0b:28:3d:2d:1e:4a:0e:e2:9d:78:0d:fb:8a:
32:ab:1b:fb:7a:ac:d5:3c:37:11:5a:af:40:fd:15:fb:21:2d:
7b:9d:cd:d5:c1:46:7e:95:7e:05:e2:23:b7:69:92:a5:52:cf:
ac:b8:f7:14:4d:9e:f2:1b:32:87:a7:2c:fc:e1:c8:37:da:86:
19:bf:90:5a:ff:7a:be:e2:40:8f:c5:98:42:a9:d1:f8:73:bb:
95:70:3a:ab:3b:57:15:25:4e:48:7c:c6:a6:93:15:be:0d:5b:
54:79:41:7a:88:eb:fc:8b:5b:b1:38:55:16:ec:c0:00:08:af:
aa:5f:55:a3:07:bf:fc:7e:eb:2a:2c:51:a2:82:6d:68:13:90:
0c:78:d7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:07:05 2025 by rpki-client