Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
File: yjNIUNrzcSIFIBmSKevekO8osBg.mft (raw, json)
Hash identifier: Dt/AfbNpQplY5tCzlfM1bAjGwZGLpxmhFLG/BFsX9oM=
Subject key identifier: 8B:0D:1A:11:F4:92:12:E6:D1:F7:F1:1A:53:FE:CB:EC:1A:00:6B:02
Authority key identifier: CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
Certificate issuer: /CN=ca334850daf371220520199229ebde90ef28b018
Certificate serial: 0196545C6B17BA04F321631D1D0CED6DDF6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
Manifest number: 057A
Signing time: Sun 20 Apr 2025 18:01:04 +0000
Manifest this update: Sun 20 Apr 2025 18:01:04 +0000
Manifest next update: Mon 21 Apr 2025 18:01:04 +0000
Files and hashes: 1: 6eOqvZGDKFDuA6yXPPPze8WOsrA.roa (hash: ERZvSVqw/o5/S8YL0KRBFbpGBsSfCd4T3Hhjomrg6eY=)
2: yjNIUNrzcSIFIBmSKevekO8osBg.crl (hash: jP8LWjjbk54Q6cY5Eq/tGt63xkyE8798zrbe6JJMVDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:6b:17:ba:04:f3:21:63:1d:1d:0c:ed:6d:df:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca334850daf371220520199229ebde90ef28b018
Validity
Not Before: Apr 20 18:01:04 2025 GMT
Not After : Apr 21 18:01:04 2025 GMT
Subject: CN=8b0d1a11f49212e6d1f7f11a53fecbec1a006b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e3:63:23:77:e0:a5:76:d2:9a:b5:43:de:eb:
c5:43:85:7d:29:eb:52:ac:18:14:28:ae:41:38:0d:
26:aa:f1:74:29:eb:5f:ed:94:4f:c5:75:78:77:6e:
3b:cb:58:e3:bd:82:85:a2:d1:c6:36:65:02:d5:e3:
28:31:83:b4:a9:e4:eb:72:a9:49:16:0f:5a:bd:e8:
69:0d:22:3f:06:3e:44:bd:0a:e0:d5:a4:0e:f2:66:
9f:63:69:48:26:2c:cb:0c:e4:e4:6e:9d:e8:41:1e:
43:f8:81:8b:c4:3c:eb:99:45:2c:b8:25:48:1d:23:
03:2f:83:46:62:e5:ba:31:4e:81:ff:b5:49:3d:8d:
99:f5:c2:b6:fe:32:cb:e2:be:95:c1:e8:50:5f:92:
8b:b2:71:a9:9a:43:49:22:46:8b:0c:3c:5e:3e:07:
47:7f:95:79:dd:84:8e:51:41:13:1b:4a:b5:4d:12:
b8:9c:80:b8:07:60:50:50:5a:2f:9e:0a:f0:0a:17:
1e:97:c7:c5:ce:84:93:e8:52:5c:88:02:e6:d4:7a:
00:b0:63:cc:a9:1d:cd:cd:63:2e:6b:55:6f:df:f5:
d8:56:da:7e:83:9a:a9:d6:69:42:b1:5e:64:da:25:
fa:f5:6f:3a:b2:bc:ba:79:d9:6e:47:03:1b:ef:c0:
a6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0D:1A:11:F4:92:12:E6:D1:F7:F1:1A:53:FE:CB:EC:1A:00:6B:02
X509v3 Authority Key Identifier:
keyid:CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:fc:52:e7:aa:bb:1b:5e:3e:ac:28:96:0e:e6:3a:0f:51:a4:
a3:e9:b9:56:da:43:2e:8e:a4:1c:c9:11:4a:c7:db:4d:86:91:
8f:70:2c:87:3d:cb:b2:45:2e:6c:80:36:70:ae:81:30:eb:9a:
2d:b2:bd:72:03:aa:a4:32:ea:fa:85:68:dc:66:7e:1f:0b:da:
7e:44:f8:01:78:ac:db:a4:db:be:8a:71:ce:fc:14:6b:27:75:
11:fa:ee:93:4d:96:51:13:92:2c:30:47:e8:a1:a8:84:21:dd:
47:3b:de:24:f6:4b:80:e7:4b:d4:d2:74:26:ff:3f:b0:a6:e9:
17:af:0c:89:66:23:8f:e9:02:71:52:6b:d4:dc:a8:51:4b:33:
d3:49:21:9c:7e:34:6f:33:0a:4a:a9:c9:f3:c4:ba:ad:95:75:
1a:fc:2c:9f:07:76:73:62:a2:5e:d6:90:65:e9:ee:d4:b7:6a:
cc:85:91:d7:d3:9d:aa:8a:6d:02:49:04:6b:3d:bf:10:b8:3c:
ca:e4:35:bc:09:99:2d:95:2a:6b:9b:ca:f4:99:88:0d:4a:f6:
5c:6e:33:20:c5:78:d1:04:97:28:fb:d3:53:9e:4b:84:b4:25:
ba:9f:e2:bb:76:7e:24:16:6a:4e:7d:cb:0a:c0:04:23:21:bc:
5d:6f:c6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:44:19 2025 by rpki-client