Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
File: PYr-wXpBs52_aQE-yhZ732Oqhl0.mft (raw, json)
Hash identifier: eWYQwx84KIKsGIIyUVcxV2AS8jc1NBESq7L1T0dUzqo=
Subject key identifier: BD:82:62:6B:0C:18:FA:06:E9:C2:FB:5F:EC:28:27:EC:7F:37:8B:E1
Authority key identifier: 3D:8A:FE:C1:7A:41:B3:9D:BF:69:01:3E:CA:16:7B:DF:63:AA:86:5D
Certificate issuer: /CN=3d8afec17a41b39dbf69013eca167bdf63aa865d
Certificate serial: 0196403021975FB8E49BB9F7FC3FFE2770F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
Manifest number: 05F2
Signing time: Wed 16 Apr 2025 20:00:18 +0000
Manifest this update: Wed 16 Apr 2025 20:00:18 +0000
Manifest next update: Thu 17 Apr 2025 20:00:18 +0000
Files and hashes: 1: PYr-wXpBs52_aQE-yhZ732Oqhl0.crl (hash: sjo/8S44X+UjeFeMYO/9FA/Vn6u0QsdQ7++vaK5Fe34=)
2: jrw3uqdkA6aKRrYyLdhJsdQJmwE.roa (hash: E/ICIdLuVq2VYN9ruBUIoxT9BQwq5xAlmJn8kVZHVXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 20:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:30:21:97:5f:b8:e4:9b:b9:f7:fc:3f:fe:27:70:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8afec17a41b39dbf69013eca167bdf63aa865d
Validity
Not Before: Apr 16 20:00:18 2025 GMT
Not After : Apr 17 20:00:18 2025 GMT
Subject: CN=bd82626b0c18fa06e9c2fb5fec2827ec7f378be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:44:63:64:02:c9:0f:6c:3c:a3:87:23:34:19:
c6:50:47:80:b5:d4:9d:4c:9d:bd:37:54:c7:d7:84:
5d:ba:ce:f5:82:2c:d6:ff:d9:49:d5:b4:34:65:87:
67:61:79:52:67:6f:68:22:4d:5f:ea:82:8f:44:74:
32:cd:58:9e:ad:e5:f1:49:2d:75:34:b4:01:16:7e:
45:5e:f8:11:fe:85:20:bc:92:19:6c:1e:10:5c:9c:
2c:06:6b:0a:b9:33:7a:f5:8a:02:86:5e:88:22:de:
af:bd:4e:65:20:86:27:49:cc:28:b2:f2:4d:bc:af:
c5:95:e6:f6:40:24:5e:15:19:51:53:0a:0d:41:a7:
f4:b3:a8:6d:a5:77:9a:b7:e2:3c:e0:ad:d2:2a:65:
73:8a:ca:4c:aa:02:40:bb:53:c8:9a:41:2d:70:5f:
eb:28:3c:70:07:b8:9d:b4:84:e1:e3:e4:5d:76:7a:
e1:59:0f:39:eb:50:6e:69:49:94:ff:51:1c:75:9f:
45:4a:47:30:b8:ab:64:b7:f9:26:94:57:77:82:d0:
cb:db:bf:c0:9d:ab:a5:67:70:55:a6:64:9c:79:b4:
3d:fa:72:64:62:01:7d:9e:17:d3:06:23:ef:3f:8d:
6c:8b:27:07:79:3d:cf:67:b9:66:e6:7c:02:83:55:
b4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:82:62:6B:0C:18:FA:06:E9:C2:FB:5F:EC:28:27:EC:7F:37:8B:E1
X509v3 Authority Key Identifier:
keyid:3D:8A:FE:C1:7A:41:B3:9D:BF:69:01:3E:CA:16:7B:DF:63:AA:86:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:f9:8c:35:d9:0a:84:a2:66:cd:b2:ed:44:b1:ec:2b:3d:e6:
d7:73:65:e6:19:0f:45:fa:f0:72:2e:19:31:b1:a5:f8:3e:08:
df:16:72:20:50:b1:16:dd:78:36:70:a2:5a:fd:c5:c0:aa:eb:
da:08:db:55:59:2b:6c:f8:2b:23:5e:79:22:cb:99:8c:9f:29:
67:1e:b8:29:2d:96:02:a7:84:ec:1a:a9:41:11:aa:5c:43:77:
e3:cc:61:46:c7:70:ee:7a:04:23:22:b0:2f:c0:7b:bd:d1:be:
6c:70:93:e4:e2:49:2c:2e:ca:11:8b:f8:4a:ea:25:ef:be:40:
d3:39:0f:32:83:50:4a:f0:e1:52:b5:ea:a9:85:2c:52:8c:a9:
9b:ae:23:d9:63:44:ee:08:df:ce:ac:2b:5b:04:ad:ed:59:b5:
f4:9e:90:13:44:40:17:48:a4:b3:98:4f:ca:09:cd:3b:9f:33:
48:0f:f4:30:45:f6:88:aa:4c:51:85:a8:f7:1b:74:09:14:2e:
e6:12:88:c1:fe:e7:6e:2a:87:7c:43:a8:dc:00:32:01:14:a3:
76:d8:a2:12:e1:d5:ad:c7:a1:85:7b:ec:31:59:2f:28:ed:eb:
be:22:c1:f9:ad:1a:f4:3b:63:cc:5f:92:33:1d:90:6c:63:13:
06:ae:56:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:34:09 2025 by rpki-client