Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json)
Hash identifier: thFd+bOYS7ZXWhyUDXwCsxkeqgn5E0W5au2Fq3w//8k=
Subject key identifier: 07:F2:81:0F:A6:ED:7A:91:98:C6:F6:F5:95:7E:CE:4D:B3:BB:77:04
Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40
Certificate serial: 0196455683BACE44942E522BB3C90BCB72A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
Manifest number: 14F5
Signing time: Thu 17 Apr 2025 20:00:19 +0000
Manifest this update: Thu 17 Apr 2025 20:00:19 +0000
Manifest next update: Fri 18 Apr 2025 20:00:19 +0000
Files and hashes: 1: a0gi81K4PU-mZZPSh82aNeLjsVI.roa (hash: Id1bqvDurbpWKdNvf29qBzclAu3m5HKcR5Kg3lRHGKE=)
2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: GqWpAQjNTy58JsnHicKxOKDQVKfJmj0sl5cmG3SAwYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:56:83:ba:ce:44:94:2e:52:2b:b3:c9:0b:cb:72:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40
Validity
Not Before: Apr 17 20:00:19 2025 GMT
Not After : Apr 18 20:00:19 2025 GMT
Subject: CN=07f2810fa6ed7a9198c6f6f5957ece4db3bb7704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:02:db:5e:89:e5:bf:4c:88:64:d1:13:c8:e5:
3f:6c:a4:66:79:15:4f:90:e0:62:a4:50:f3:2a:33:
cd:b7:bf:d2:4f:f7:82:02:99:35:a0:39:52:fa:e8:
9d:38:8d:ca:5f:86:c8:dd:dc:23:51:e1:c4:df:a9:
e7:70:4c:56:78:98:77:f4:67:79:40:b1:f7:3b:78:
5b:e4:57:59:b7:a8:6d:7e:eb:32:6a:72:f3:5e:ec:
4d:26:b2:17:57:10:0b:ff:6b:ab:1d:78:30:cc:f8:
73:b2:06:96:c8:19:e5:84:e6:29:ef:13:11:be:b1:
0e:e6:45:0f:9e:1c:30:27:d4:b2:2e:31:41:da:d1:
20:b4:47:36:50:6a:b9:59:4f:d1:d1:c7:97:5f:61:
a2:14:0b:37:09:3e:12:21:1a:1c:91:70:bc:8b:7f:
3a:c2:9e:21:0e:8a:55:26:79:f8:36:81:01:91:bd:
37:98:6e:f4:49:a0:5c:b0:89:d3:c8:2c:8e:63:f6:
e5:83:70:3e:63:5e:67:94:33:fa:24:89:85:62:17:
c5:86:43:1b:59:a8:00:69:12:48:4e:5d:ac:ad:9c:
81:de:66:5c:35:58:14:38:15:2a:d5:86:4a:15:a3:
e9:11:25:ff:c5:5a:78:b9:b1:0e:2d:a1:8d:eb:43:
07:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:F2:81:0F:A6:ED:7A:91:98:C6:F6:F5:95:7E:CE:4D:B3:BB:77:04
X509v3 Authority Key Identifier:
keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:c0:fa:d0:87:16:15:6b:ba:ae:67:71:6c:19:b0:4e:60:e2:
d3:d1:ae:c8:a9:75:1d:d8:85:7a:66:f4:4f:c5:73:5e:9d:a7:
53:d1:01:59:25:02:da:a5:54:f2:68:f8:44:2f:83:8f:66:aa:
5d:18:5e:2c:62:1c:2e:be:13:f5:84:ef:df:8b:4e:66:eb:6c:
96:f0:8b:73:44:61:68:b5:39:39:a7:0e:a5:f5:7e:58:8b:3e:
b1:15:88:90:d7:fd:64:7e:fd:05:51:4b:dc:07:c5:d8:98:fb:
2b:40:2c:1c:88:e3:b0:74:45:fd:61:7f:7f:f2:a7:39:43:45:
d4:23:7e:61:ba:17:42:e7:0f:4b:ea:18:8c:3d:22:74:58:a7:
5c:b1:b5:2a:2f:d7:96:5a:87:95:85:33:f9:59:b7:16:4e:fb:
54:6c:45:bc:04:56:a6:f7:70:0c:91:03:bb:54:f4:ca:c4:0a:
94:1f:ba:4a:2b:b8:ac:f7:2f:ca:9d:70:18:e4:d6:60:b6:75:
21:ad:f2:32:49:3a:2c:e6:a2:35:fd:fd:3e:5e:18:44:05:4a:
a3:80:26:fa:c7:78:2d:b1:b3:5c:dc:21:4c:69:fe:b6:65:be:
09:c8:80:7a:bd:75:4e:50:8a:47:86:77:86:f8:94:36:96:55:
31:24:0f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:52:02 2025 by rpki-client