Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json)
Hash identifier: vMMAsn4tS56kYriuav+q1XV3DF5LlD0DlVFC9lbCtWs=
Subject key identifier: AE:3C:18:4B:AE:BA:42:24:2E:6D:08:32:D0:F3:35:C0:2C:ED:1A:AB
Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be
Certificate serial: 0196515B64261716152E1B720D31C8E19645
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
Manifest number: 0856
Signing time: Sun 20 Apr 2025 04:01:06 +0000
Manifest this update: Sun 20 Apr 2025 04:01:06 +0000
Manifest next update: Mon 21 Apr 2025 04:01:06 +0000
Files and hashes: 1: 5moGvKAoN95-3rdirRXOwCahhvs.roa (hash: SkhAzMm5Jb5vcIiM14h4SYz3DQTRyqaR2eF+qq4Rdl0=)
2: RuuQV8FVAOprAh_8jcQjyKszeBc.roa (hash: kX89cdA0JPKtfSqgIarOumMCZ1cTxgD0uR8aSG1ObUs=)
3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: UU8Mxuu2VjhHpC1/n0lxIr4RI7Ji2Dl137/84g1X+9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:64:26:17:16:15:2e:1b:72:0d:31:c8:e1:96:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be
Validity
Not Before: Apr 20 04:01:06 2025 GMT
Not After : Apr 21 04:01:06 2025 GMT
Subject: CN=ae3c184baeba42242e6d0832d0f335c02ced1aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b3:70:ca:69:a2:88:ca:88:3c:5c:6d:fe:ac:
3d:66:66:72:57:e0:94:d8:ff:bf:19:35:d1:3f:94:
87:95:db:08:7e:eb:46:06:dd:5c:53:79:43:34:a7:
bd:7f:4c:9b:45:40:3f:6b:84:a6:72:d1:d8:3b:55:
38:fd:9d:3a:fc:7d:3e:a3:e3:83:50:58:de:ec:9d:
d6:53:9d:71:09:45:0a:a5:42:5e:df:d6:c3:85:a4:
02:c9:a6:e1:34:89:9a:49:65:49:27:e5:99:2f:93:
5c:4e:98:87:53:93:36:f9:69:1d:7b:4e:c1:a4:b7:
6b:70:ac:96:10:95:94:e5:59:f0:39:3c:4a:01:11:
e2:05:eb:3b:18:da:ec:73:03:0a:ef:d5:1d:69:dc:
53:36:ee:1e:a9:57:2e:45:74:a7:6b:61:fc:24:cb:
89:ef:74:b6:a4:6a:87:14:96:ee:58:46:0a:a1:d9:
ac:f7:78:06:9b:b2:37:98:df:15:fc:5f:4b:8b:d4:
e8:68:15:86:53:8f:bd:0e:dc:c9:1a:ea:f4:49:6d:
ec:a6:f9:83:a1:45:0d:2e:5b:c6:49:89:8d:d1:1d:
10:15:bb:ca:ef:53:8e:4f:8f:57:6a:9c:4d:9d:e4:
55:da:71:1d:ed:6c:50:d0:07:ee:6f:d6:45:98:e6:
69:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3C:18:4B:AE:BA:42:24:2E:6D:08:32:D0:F3:35:C0:2C:ED:1A:AB
X509v3 Authority Key Identifier:
keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:72:92:b7:d3:df:6e:73:74:6a:0d:81:fb:da:8d:21:8e:c8:
ca:3b:3f:2d:b0:49:ef:04:d0:55:b8:00:99:41:38:57:40:d4:
f9:9e:c4:9b:a2:9b:cc:88:67:70:dc:5a:c6:2f:1f:15:07:72:
33:95:1d:94:b4:68:aa:85:43:95:9d:02:b2:b6:cf:0c:29:7c:
a4:a2:aa:cc:d3:db:31:24:f4:e6:99:1b:d0:a7:cc:24:63:5c:
61:85:d7:2d:92:2a:87:51:d3:77:13:5e:53:25:d7:92:0d:32:
7d:70:81:52:36:4b:ee:6b:95:42:2e:36:ff:47:9f:ec:db:ba:
37:d4:42:0a:ea:64:2c:7a:d1:f8:75:86:43:0e:88:39:7c:91:
b3:bb:ff:9e:41:f9:01:69:1c:d9:e5:66:06:53:8b:54:22:68:
e9:ca:be:eb:26:36:36:0c:d2:22:9e:53:32:1e:1e:79:2e:94:
07:a0:77:3d:c3:3c:57:a2:fd:18:e3:56:d6:2a:a5:93:19:d7:
fb:52:8f:2a:cd:c7:25:e0:ba:69:6b:38:68:09:a2:91:1f:7a:
4a:9f:c2:27:54:9e:81:1f:2b:31:62:ae:5e:68:cc:1a:45:a9:
58:36:97:07:e3:74:db:51:28:a6:8f:e5:8d:71:8d:22:97:cc:
0b:df:60:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:38:49 2025 by rpki-client