Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json)
Hash identifier: wUyNx2hYkCnZVO2tJYUBYlAnFAM/Ff8Vz+HL61cAvcc=
Subject key identifier: B8:7C:95:BF:5E:82:4A:2C:25:90:5E:82:4A:28:F5:9E:F4:A7:D0:A5
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 019614342DA8A0FFAC5FECBB324200536304
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
Manifest number: 107B
Signing time: Tue 08 Apr 2025 07:01:25 +0000
Manifest this update: Tue 08 Apr 2025 07:01:25 +0000
Manifest next update: Wed 09 Apr 2025 07:01:25 +0000
Files and hashes: 1: nPtNOVhjTVbNoPzqUJGa-Eqnb0Y.roa (hash: Yuz9f1rxV7S4atM+GycUQVhSQinvjc3oT1lXV1zOVuE=)
2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: xpDpE6u5nigSUFuTwRDQeG3fCQh4OAbHSwJxCNFZjAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 07:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:34:2d:a8:a0:ff:ac:5f:ec:bb:32:42:00:53:63:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Apr 8 07:01:25 2025 GMT
Not After : Apr 9 07:01:25 2025 GMT
Subject: CN=b87c95bf5e824a2c25905e824a28f59ef4a7d0a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:47:5d:70:50:05:c8:f2:3d:74:04:f0:96:f3:
0d:f2:d3:bb:dc:12:84:9d:a3:14:52:87:5b:0a:98:
67:8a:5d:ad:2a:bd:86:87:3b:a1:af:54:1e:e5:13:
f3:5d:c5:18:d4:8f:f8:c7:c7:8d:4c:4e:c6:ee:17:
52:0b:3a:bf:d0:7f:b8:93:59:b2:e9:8e:bb:eb:13:
81:55:2e:6d:6d:fd:79:7d:b9:88:5f:71:21:27:1f:
17:ab:77:26:3a:24:73:82:3e:83:2f:49:f9:ef:b5:
74:84:12:a8:0b:de:9c:e8:3e:53:aa:95:51:80:64:
65:91:1a:2d:d7:8d:a7:97:9f:10:54:4b:fc:f9:1f:
0d:ca:43:45:79:06:e8:65:89:b9:ac:af:8b:3b:7a:
74:48:9b:32:5b:0d:23:2f:d3:5d:1c:be:fd:a1:c3:
fe:40:28:46:32:f0:5f:75:3a:e2:04:3f:16:26:03:
d7:76:88:03:0a:04:c1:95:3f:95:f1:5c:56:4a:90:
fa:77:54:18:bf:c8:9e:85:e0:12:b6:09:9b:b4:8a:
f0:a4:39:6b:e3:97:a5:d9:57:66:de:45:83:2f:f6:
e9:71:57:62:32:7f:7c:8e:ea:8a:ea:91:4d:0a:cd:
1e:1a:58:39:56:29:2e:cf:01:52:c3:e9:5b:1f:22:
64:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7C:95:BF:5E:82:4A:2C:25:90:5E:82:4A:28:F5:9E:F4:A7:D0:A5
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:f0:44:5d:e3:bd:7f:d4:17:44:cd:28:b8:90:f0:c0:a3:f7:
fa:c3:17:f2:d9:bb:49:8d:b4:c0:b0:17:4a:38:b1:67:f3:f5:
47:7f:1d:39:87:4d:db:d6:8d:4e:78:e7:3b:ae:cb:6e:f0:13:
b4:c4:e3:61:48:e7:a7:99:57:91:b6:ef:e5:56:18:c4:8a:5f:
bf:fb:c2:ba:39:2b:3f:37:7d:45:f2:eb:63:d5:de:7c:8f:db:
fa:93:a6:15:37:f4:d4:cf:a4:a1:b9:a3:05:de:cf:a5:4f:3e:
c5:d3:60:79:8a:0d:cf:9a:36:c6:48:29:4d:6e:1a:7f:8d:17:
73:f5:8a:bc:3d:19:81:40:72:39:f4:2e:5a:32:a3:4f:ea:f3:
89:3c:9e:35:5a:d5:b9:ad:f9:09:06:d7:0c:9b:69:c4:59:60:
b2:d7:9e:10:22:e6:7b:c8:13:2b:2d:b7:dd:d0:f9:14:48:51:
52:24:4f:e0:d3:49:ca:7c:55:79:5a:5c:9f:0d:88:b0:e1:1f:
87:56:39:f8:08:a4:f6:29:27:74:d8:54:06:c3:1f:d7:93:eb:
f5:96:f8:80:76:c2:5a:22:90:92:ac:b1:40:56:96:ad:e9:47:
91:c7:08:c4:3e:11:22:43:05:82:62:47:45:cb:55:d1:9e:7d:
70:f4:91:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:16:14 2025 by rpki-client