Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
File: y34FPHGZWsyb8TM_55w9W_1ulk4.mft (raw, json)
Hash identifier: T1Mna0LgnZ1wy7RLN8BwnJvBk+6T62lihPaYEVhTS9Y=
Subject key identifier: B9:5C:22:37:E2:5B:90:B6:44:47:14:C5:15:27:A3:F9:DF:C9:F9:71
Authority key identifier: CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
Certificate issuer: /CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Certificate serial: 01964AEADF907C77CF2322900FD018384422
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
Manifest number: 0B67
Signing time: Fri 18 Apr 2025 22:00:28 +0000
Manifest this update: Fri 18 Apr 2025 22:00:28 +0000
Manifest next update: Sat 19 Apr 2025 22:00:28 +0000
Files and hashes: 1: OY3T_xG0jFJ_6yc5NmhmVJsNZOM.roa (hash: af8mlEBnTxkbr73XYFoiiYy6suBahBU1dHobCDHfy/U=)
2: y34FPHGZWsyb8TM_55w9W_1ulk4.crl (hash: pOvTeqxVSywWo9wKjRerEujDLA23OuSZ89LTcD17KlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:ea:df:90:7c:77:cf:23:22:90:0f:d0:18:38:44:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Validity
Not Before: Apr 18 22:00:28 2025 GMT
Not After : Apr 19 22:00:28 2025 GMT
Subject: CN=b95c2237e25b90b6444714c51527a3f9dfc9f971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c0:86:f0:8d:29:93:e7:47:f9:7d:c6:42:8d:
e7:a9:ab:a0:c0:32:fe:0c:0b:9a:05:73:3e:6b:f5:
79:ce:65:9f:5b:ed:51:a9:4e:18:1d:0d:4b:c8:0b:
5f:da:23:0b:90:7e:80:e2:81:9f:9f:dd:da:08:39:
fa:f2:d1:48:8b:e9:3a:32:69:a0:a8:fe:c1:6f:eb:
5a:59:3d:4b:ea:c4:dc:43:76:42:09:85:c2:39:ac:
dc:3d:4b:91:8c:10:13:fc:82:2f:1e:06:60:42:85:
ad:7d:3f:58:62:76:93:5c:5d:23:6c:50:bc:d8:12:
91:ea:d4:7b:25:e9:ae:8e:47:e3:e3:13:40:3d:0c:
b6:03:78:1c:3c:5b:90:67:bf:4b:46:50:51:8b:e1:
6c:6a:64:c2:4a:fc:52:6e:c4:4b:8a:16:85:e9:0e:
f2:13:41:b8:d7:e9:0a:da:50:71:fc:30:f7:a8:2c:
5c:3f:1c:fc:1d:62:df:4e:c3:e5:66:d7:50:19:b2:
be:9e:f5:86:b0:32:ec:23:25:5c:77:ee:99:34:e5:
95:b4:d4:97:bb:b5:60:b2:bd:5a:94:0f:4d:71:74:
3e:e5:2e:e6:0e:7a:a9:e0:ef:f6:c9:b0:99:39:8d:
da:82:40:52:d4:3e:cd:be:94:2e:13:8f:b5:43:ca:
a8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5C:22:37:E2:5B:90:B6:44:47:14:C5:15:27:A3:F9:DF:C9:F9:71
X509v3 Authority Key Identifier:
keyid:CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:92:c2:1a:51:4f:28:76:89:19:53:fe:56:54:2b:fa:d1:18:
c8:87:1c:a6:2b:fa:ea:66:e5:b7:4a:df:82:51:06:73:10:b7:
29:34:e8:27:cc:20:2c:ec:d0:53:55:87:3b:5d:0d:73:32:01:
80:c4:c7:10:ee:86:bd:a2:ca:4f:3e:cf:69:d4:89:9e:de:8e:
d6:7c:06:69:82:0b:9e:ba:b6:f1:82:54:57:89:53:d7:e7:94:
ec:d3:bd:24:92:c4:0b:ff:8a:c3:0b:b7:b0:b8:b2:ad:b0:80:
69:5f:1e:0b:39:82:e1:d6:30:d6:23:e8:d6:30:5c:28:80:59:
f7:eb:12:b2:84:03:e8:30:52:6f:07:2c:d3:4a:f6:77:f6:0e:
bc:d8:63:19:d2:ed:7a:94:65:80:a0:4b:1b:0c:61:42:bd:81:
c6:3c:77:2e:03:e8:f6:de:ec:54:96:07:2c:82:37:e4:ba:f3:
9f:af:22:80:f3:01:5b:4c:a1:5a:5f:c5:a5:2d:65:1d:c1:09:
71:1d:5b:65:c7:87:39:1b:7e:64:67:e6:5a:98:83:7d:ff:e0:
c7:eb:a5:03:d6:62:be:2d:d2:45:30:41:5e:3f:00:29:34:4f:
7e:6b:88:eb:d2:fc:9a:fc:ff:ec:36:f4:d0:e9:e3:de:1f:65:
7c:5e:da:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:04:49 2025 by rpki-client