Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
File: yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft (raw, json)
Hash identifier: o31lzvivoroqm6NKpfixFo7LdbCbQU0zNj4YmwKdi+g=
Subject key identifier: B2:9D:85:09:DE:13:B4:BF:8A:14:29:09:C4:74:16:B9:24:BC:DD:7D
Authority key identifier: C8:DF:33:7C:EA:56:A0:83:F4:6B:79:90:72:E7:0D:A3:45:CC:23:64
Certificate issuer: /CN=c8df337cea56a083f46b799072e70da345cc2364
Certificate serial: 01963CC12B294608B638317BFE3FB094CEB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
Manifest number: 14F1
Signing time: Wed 16 Apr 2025 04:00:14 +0000
Manifest this update: Wed 16 Apr 2025 04:00:14 +0000
Manifest next update: Thu 17 Apr 2025 04:00:14 +0000
Files and hashes: 1: yEMlFNYIo_7PBG15hC66LWSw4E0.roa (hash: 0NF8QaEpF30c3qMJTec6Bga4N+I8Ns4AqntJ51k9D0k=)
2: yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl (hash: /WT5mbiXlQi0K6461tsSOREUxj6JyNCx+6c4wn/uiNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3c:c1:2b:29:46:08:b6:38:31:7b:fe:3f:b0:94:ce:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8df337cea56a083f46b799072e70da345cc2364
Validity
Not Before: Apr 16 04:00:14 2025 GMT
Not After : Apr 17 04:00:14 2025 GMT
Subject: CN=b29d8509de13b4bf8a142909c47416b924bcdd7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:38:45:b9:b0:91:ec:5b:c9:cb:e2:fb:40:af:
2c:d1:00:ab:40:bd:ba:9e:5b:97:03:63:f4:01:18:
2e:31:c0:dc:a1:7e:54:c7:9b:db:f9:be:d2:d3:1d:
4b:fd:eb:2a:4d:a5:14:ae:98:84:a3:6e:c0:49:41:
fc:24:c5:53:49:29:e6:2b:f8:4a:e8:c0:05:6a:00:
de:17:9c:76:a8:2e:45:14:5f:2d:07:a5:77:a0:31:
f3:30:ec:1f:18:84:6b:c3:b3:af:5b:82:1f:34:2a:
1f:2e:94:b2:5d:89:55:65:5c:82:4b:f2:17:21:f5:
cf:47:0d:50:57:b0:5d:1f:de:6e:11:97:84:87:5e:
91:a6:39:63:74:f3:3f:45:d3:f1:a0:c1:95:86:75:
4c:f8:39:44:4f:30:1a:a1:a5:74:7e:73:b9:ca:e2:
31:3b:61:14:53:e6:08:b0:81:b0:91:5d:45:1c:c1:
10:fe:dd:f1:ad:6e:4f:f2:a9:cf:63:93:be:4a:6d:
ec:1e:3b:a5:9a:8a:ae:66:d1:cd:29:7f:8e:fe:7c:
93:9b:a6:60:89:ac:eb:4a:03:d5:7a:dd:29:91:dc:
bb:4e:b2:0a:00:6c:be:6d:e8:67:e5:0e:bc:72:90:
e1:05:2b:d4:0f:e7:81:ad:49:32:c6:bb:01:46:f6:
37:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9D:85:09:DE:13:B4:BF:8A:14:29:09:C4:74:16:B9:24:BC:DD:7D
X509v3 Authority Key Identifier:
keyid:C8:DF:33:7C:EA:56:A0:83:F4:6B:79:90:72:E7:0D:A3:45:CC:23:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:5f:6e:0e:f3:7f:c9:a8:3c:e8:58:9e:b4:d3:e0:e2:06:94:
e3:cc:99:d1:d8:70:d0:b8:3a:03:28:b7:15:19:04:32:aa:7d:
86:a2:26:28:0b:d8:5e:fb:dc:4d:38:3a:80:7d:8d:2c:da:8f:
1f:ba:7d:ff:31:3b:56:aa:ca:55:da:64:df:dc:d5:34:4c:04:
62:9e:a4:89:34:47:95:1a:47:a8:c1:b9:9b:3f:9f:91:56:bd:
4e:a0:62:14:4d:90:39:ed:f1:24:a2:4c:c7:e5:17:ed:0f:ec:
e1:c2:8d:b6:4f:c2:b2:9d:9f:db:eb:f9:ea:74:99:b1:d0:de:
b5:c9:3d:e7:71:97:27:87:e9:b0:aa:a7:0b:ee:9c:05:5f:a6:
5f:f1:12:73:c4:7d:75:c9:48:47:d1:05:d8:02:94:06:80:3a:
9a:70:a6:c0:0f:d3:6b:1b:d5:78:6d:aa:f4:35:06:2e:5e:d7:
2f:36:ab:55:ed:d1:24:1e:c4:e5:03:84:a1:d2:eb:42:26:e5:
d2:e6:e0:3b:00:2e:2f:60:f5:96:7a:6d:35:72:1b:5e:8f:96:
7c:63:2e:49:5f:ba:a0:93:2e:87:fd:51:6c:26:4d:4d:f2:ef:
97:66:87:f0:32:2c:4b:c9:e8:d6:25:45:ef:9e:b2:ef:3c:a8:
20:6f:62:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 08:27:19 2025 by rpki-client