Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json)
Hash identifier: 3oyvMQsmTrudx9D21x83TSqAqB9A5nVoC4mkTjMOme0=
Subject key identifier: 1E:6E:60:0D:35:38:7D:54:94:D9:1D:1B:89:0E:6A:23:F4:2A:58:62
Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Certificate serial: 01964DEC7CDF482CC6DFF07F74605D061A0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
Manifest number: 14F9
Signing time: Sat 19 Apr 2025 12:01:06 +0000
Manifest this update: Sat 19 Apr 2025 12:01:06 +0000
Manifest next update: Sun 20 Apr 2025 12:01:06 +0000
Files and hashes: 1: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: brzXvWRQZSyR5Udc52IbR3P0MUQCGy5KW+ajaVRiaQE=)
2: ZmJk3i0UqR_uJ_XLaSjGUe2aH00.roa (hash: BCwdh7j1ZUyJ+mVEfLtfrzwX+n9rg9YN807VJjPHsUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 12:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:7c:df:48:2c:c6:df:f0:7f:74:60:5d:06:1a:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Validity
Not Before: Apr 19 12:01:06 2025 GMT
Not After : Apr 20 12:01:06 2025 GMT
Subject: CN=1e6e600d35387d5494d91d1b890e6a23f42a5862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f6:b7:a0:bc:e5:fb:94:79:96:9d:7f:db:a2:
4a:90:fc:21:e6:16:85:10:54:5c:ba:96:84:e2:15:
31:8d:43:e7:48:64:d5:6c:c3:19:73:cc:4e:4f:48:
fc:b4:53:8f:a4:41:5f:b8:fb:19:70:3a:72:76:23:
ea:c6:54:67:c5:fc:c1:d4:9a:db:1c:6f:54:21:4e:
d9:c3:17:1a:e9:c5:c4:03:90:6c:e7:64:59:fa:ff:
bc:34:1e:fc:df:12:8f:0f:28:5a:95:44:42:c1:82:
ec:f9:8d:7c:64:89:7c:f0:87:45:37:16:93:a6:78:
4d:a8:5b:ec:c4:bd:78:39:61:c7:ec:64:b5:22:03:
e0:c5:36:55:32:3e:ff:7f:79:2d:8a:c8:ad:b7:fc:
04:0d:0a:a3:c0:e7:52:d2:62:88:99:de:70:7e:60:
e7:fa:df:5b:4d:41:f0:85:28:32:e9:b8:02:17:72:
a5:19:54:57:e5:f4:32:6c:15:b7:8f:9a:d1:ef:c8:
01:ad:3b:a7:7e:6d:11:fe:91:a7:4f:3a:aa:6b:b8:
33:73:8f:24:cc:79:a0:7b:a0:c6:40:7d:53:15:f0:
74:65:f1:6a:47:60:d8:3e:17:08:6a:f8:46:5b:c4:
ec:f2:aa:d2:f1:7e:e3:92:22:90:57:12:90:16:d0:
d2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6E:60:0D:35:38:7D:54:94:D9:1D:1B:89:0E:6A:23:F4:2A:58:62
X509v3 Authority Key Identifier:
keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:3d:a5:c2:d8:d1:02:69:d0:55:c9:7c:9b:b1:60:60:c0:b9:
b0:c7:20:e2:a0:90:cc:c7:c8:71:22:29:a6:c8:25:95:a2:41:
12:b8:a5:c7:9b:9b:87:37:24:b8:92:4c:da:d9:3e:85:eb:df:
0f:9e:df:75:27:bc:38:6c:09:f0:af:e8:15:42:29:23:c6:a4:
03:54:cf:af:01:97:21:f7:1c:d1:41:84:2d:7e:fc:f1:79:1a:
dc:b2:6c:65:5b:56:a0:e0:7e:6c:4f:34:c8:cf:be:40:ff:48:
ee:20:4f:71:84:fb:66:22:21:3e:56:c6:dc:a2:fa:c6:b9:d2:
aa:d2:8c:21:8b:f8:0b:f9:2d:a4:36:9e:f2:cd:3a:59:96:50:
b6:13:ef:0a:02:e1:c6:70:f7:2d:13:94:91:cc:b1:a9:4a:b1:
3b:42:53:5a:a3:39:30:7b:7a:dd:90:08:ce:4f:d7:35:40:76:
00:42:70:b0:03:72:ea:33:d4:ee:9e:5d:d2:3c:eb:29:69:61:
0a:59:f4:6b:f1:64:f5:99:49:a1:53:59:a4:2b:76:d8:a1:0b:
7a:d9:a0:16:40:e2:c6:26:70:27:58:b7:0b:3b:9c:4f:ee:08:
93:2f:d8:a1:0b:e8:26:4b:20:a2:68:4d:63:3b:db:d1:a2:c0:
c7:10:01:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:00:10 2025 by rpki-client