Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: FLivVLakJAv25nNRqK8pC3IhQQAhGSPVlU0syEJWqJs=
Subject key identifier: 50:A6:C6:0D:9C:02:92:BA:3C:B8:A9:E2:BA:80:65:00:3D:98:C9:72
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 01964D0FFC15B0E980D17899E7D671B2872D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0845
Signing time: Sat 19 Apr 2025 08:00:15 +0000
Manifest this update: Sat 19 Apr 2025 08:00:15 +0000
Manifest next update: Sun 20 Apr 2025 08:00:15 +0000
Files and hashes: 1: BQh7QT9BX7cTqXjHHhGh4E0jau4.roa (hash: ji+6a8qXV045VZtKjEfl6cGy7fTl7ME8scmY2gpWI2s=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: lHl9Dse0dVnjAzu4WQ5S75PtrXTJfNirb454DXFQXgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:0f:fc:15:b0:e9:80:d1:78:99:e7:d6:71:b2:87:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Apr 19 08:00:15 2025 GMT
Not After : Apr 20 08:00:15 2025 GMT
Subject: CN=50a6c60d9c0292ba3cb8a9e2ba8065003d98c972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4a:72:04:2b:e1:b3:e3:05:71:a8:c3:1b:98:
27:b7:5b:55:19:98:23:36:94:57:66:d3:bc:09:b2:
c0:bc:77:bb:c2:3e:df:a5:97:0d:34:94:0b:b2:8f:
c0:00:cf:d3:55:74:a0:c5:07:6d:70:a9:c3:34:d0:
da:3c:72:6f:90:32:2c:ce:06:c5:41:94:23:1f:92:
67:83:0d:4a:90:1d:d5:e3:08:e0:98:60:85:c4:74:
fc:01:6f:57:e4:63:c6:45:6e:de:96:6a:e9:73:f9:
ec:84:3a:8c:cf:4b:d3:3f:05:6c:89:9c:94:0f:02:
ad:5e:8b:5d:1e:54:ca:d9:ff:ee:ed:21:45:35:f9:
b3:77:b9:a7:f8:d7:e0:17:9d:41:a7:75:04:12:08:
cf:25:00:bf:38:be:4e:2f:88:96:14:6c:c9:8f:67:
dc:d3:b0:a6:49:e9:8d:a8:af:c9:ec:e7:4d:0e:7a:
3e:88:6c:e9:37:14:cb:aa:fd:e2:9a:a5:be:98:b9:
d2:a0:0d:22:0d:ef:22:6c:8a:dc:5f:54:f1:ab:19:
4b:b1:aa:3c:67:0b:bc:47:98:83:b6:65:c9:d5:e1:
4a:3b:46:e7:0e:19:ae:e9:8a:6a:93:de:0b:4a:06:
23:df:8d:4f:ac:8c:50:35:f1:a1:4c:a2:6a:cf:54:
fa:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A6:C6:0D:9C:02:92:BA:3C:B8:A9:E2:BA:80:65:00:3D:98:C9:72
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:f2:02:32:e6:ae:fa:d3:15:1a:a0:3b:e3:d8:9c:d3:25:10:
a1:1f:41:03:d3:02:50:c6:e9:60:34:d9:96:71:4f:64:f4:e7:
87:60:26:cd:e5:28:2c:e2:b0:a0:c5:31:71:2a:1e:af:89:71:
fd:aa:bb:1c:6a:1b:a4:d5:54:3d:78:99:fc:b8:ed:e1:11:ce:
b9:6c:ec:be:66:a4:f0:f8:48:14:67:46:0f:80:50:58:cc:ef:
49:bd:7c:5d:ee:06:1b:fc:ef:a3:b6:c7:79:ad:e2:54:05:16:
e8:37:90:a1:ee:2c:f3:34:50:42:76:f5:e6:3e:bf:6c:df:10:
72:5a:d5:7a:71:53:72:e4:b7:ba:7b:71:e8:5d:7e:af:cf:bd:
14:86:3e:be:89:67:f2:67:11:b6:bf:07:9e:16:a3:9b:48:5b:
f4:2c:be:80:6c:3b:8a:0a:2d:36:e0:0a:b6:98:ee:97:f3:fd:
3f:75:7d:ff:f5:16:84:a4:c5:81:f0:9e:56:2c:32:02:31:67:
50:0a:2b:66:05:f5:b0:f2:57:18:f6:4a:c2:98:a9:10:d9:03:
2f:09:d6:f2:1c:0b:1a:0b:30:b1:e7:e4:3c:7b:90:9b:b7:57:
8f:a2:d0:1f:b7:42:6f:21:13:5a:28:76:27:fb:ef:97:6c:b2:
f3:b8:1b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 13:57:00 2025 by rpki-client