Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: os7vvsX+i1DSzpEpUeDSmNot25KJu80mCaoIdh9/po8=
Subject key identifier: 28:A5:B6:86:57:24:27:83:6F:DC:37:5D:00:ED:3B:35:2E:4E:6B:F4
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 01963F54F08E4EC7F9EF603B3925D32794AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 0541
Signing time: Wed 16 Apr 2025 16:00:53 +0000
Manifest this update: Wed 16 Apr 2025 16:00:53 +0000
Manifest next update: Thu 17 Apr 2025 16:00:53 +0000
Files and hashes: 1: GP-mcsPVfkxFR6BakAdLWMHzvnk.roa (hash: 46Gy5AnSQQR4RzlnLScg9/HmedHrQU8V47NDaOoaI7E=)
2: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: UZdbcx4Xp219Zy2OQLyco7rz9v2fdWlOJ1vXnw436dk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 16:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:54:f0:8e:4e:c7:f9:ef:60:3b:39:25:d3:27:94:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Apr 16 16:00:53 2025 GMT
Not After : Apr 17 16:00:53 2025 GMT
Subject: CN=28a5b686572427836fdc375d00ed3b352e4e6bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0b:99:11:b3:8b:e4:99:a1:69:1f:d5:f8:27:
32:19:7c:a0:24:d5:54:fd:5a:69:86:1a:a6:2b:17:
94:df:e0:7b:38:53:54:24:5e:58:e6:96:bf:67:34:
e2:5d:ec:c6:d4:e5:6d:d7:e2:36:3c:f2:43:a1:47:
f8:b1:97:32:5d:15:76:7c:59:a6:ec:53:b2:07:10:
9a:70:ba:ed:0a:18:88:5a:de:d1:ca:3a:45:2b:47:
9b:66:0e:6a:8a:44:7f:25:80:9a:84:7e:43:38:b9:
3b:6f:db:58:e2:73:07:18:64:2c:11:1b:b0:82:d0:
49:1c:33:10:8d:e0:0f:e1:d5:c9:d1:b3:1a:65:16:
6c:50:0a:7f:4e:6d:8a:c3:f8:e3:d9:b2:57:82:9c:
ca:14:ae:c4:a1:34:ce:42:2b:9b:66:64:00:7f:48:
2e:c7:73:ca:df:07:ad:56:93:7e:85:a0:fb:d5:ae:
d5:ae:f5:a0:cb:15:96:d1:d9:bb:7e:df:33:5a:1f:
e7:e5:c9:a9:75:2d:1f:11:45:64:de:7c:49:3f:9a:
68:11:55:24:d9:7a:6b:a5:8f:74:a6:ed:d5:c4:52:
dc:e9:78:4d:0b:f3:75:48:f1:85:30:a6:81:0d:e3:
ba:af:4a:05:7e:9a:bf:4c:0c:d5:60:86:87:e6:f2:
60:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:A5:B6:86:57:24:27:83:6F:DC:37:5D:00:ED:3B:35:2E:4E:6B:F4
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:a0:b4:a3:16:67:d5:59:6c:c3:e1:d1:f9:6e:7f:3e:68:e3:
87:7a:22:30:bb:b0:cd:6e:ed:42:8b:dc:3a:a7:c2:ea:81:5e:
e6:2e:1d:fc:22:33:79:0f:d5:2b:34:c4:ba:37:b5:35:b8:fe:
34:3b:44:17:ca:19:77:55:22:c6:d2:90:8a:5f:b8:ff:bb:92:
cd:d0:11:56:ce:16:7c:b5:d8:2e:29:72:d5:60:72:55:77:d3:
1c:ab:85:70:d9:db:23:5e:4c:21:96:f2:56:9e:42:01:82:64:
f9:65:52:42:55:0a:62:a6:f0:79:8c:78:2e:bd:71:38:a2:6c:
a3:c1:54:db:48:0d:bb:36:3b:dd:b3:43:5b:18:cf:e6:d5:4e:
78:4d:cb:b5:a7:a3:27:bb:14:19:41:bb:c0:81:62:e2:48:46:
cd:73:7c:97:7d:01:ec:f3:a5:d4:36:a3:00:07:48:53:12:b8:
8c:c3:d4:be:71:51:1f:13:e8:b5:1f:d2:a5:53:9c:2a:9b:a2:
76:6b:53:b1:52:b0:81:40:f5:6f:45:89:df:18:ec:a5:8d:3e:
0d:4e:d3:a8:c0:c1:69:2c:46:b1:64:ad:89:79:b1:f8:0a:cd:
7d:20:ee:54:9f:25:b6:99:76:37:24:23:ed:7f:ff:33:70:03:
66:85:d7:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:37:50 2025 by rpki-client