Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft
File: yyDpqru2GRVGEQI1z3bEg4S0UdA.mft (raw, json)
Hash identifier: HH3dpLn1b10u18ZiXdIsLqva/yp769Mn3CdjHTDC7a4=
Subject key identifier: 2D:FD:C7:AA:3E:25:02:1B:EA:C3:D1:52:BC:E7:22:90:5F:43:F5:FF
Authority key identifier: CB:20:E9:AA:BB:B6:19:15:46:11:02:35:CF:76:C4:83:84:B4:51:D0
Certificate issuer: /CN=cb20e9aabbb6191546110235cf76c48384b451d0
Certificate serial: 01965424F40DD43C60D284DDB5B59A5D0AB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft
Manifest number: 044A
Signing time: Sun 20 Apr 2025 17:00:29 +0000
Manifest this update: Sun 20 Apr 2025 17:00:29 +0000
Manifest next update: Mon 21 Apr 2025 17:00:29 +0000
Files and hashes: 1: FrgpiGySO2oWsL9iFngnI7PbElc.roa (hash: K8ZOrdKMvikDUKQOk+LhYtaLYhJs3NNoQsJnp3Y9dfE=)
2: yyDpqru2GRVGEQI1z3bEg4S0UdA.crl (hash: fQmNAasMPvQuriy07l+zlT6Iskm7YDlm5zqTJmWQZmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:24:f4:0d:d4:3c:60:d2:84:dd:b5:b5:9a:5d:0a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb20e9aabbb6191546110235cf76c48384b451d0
Validity
Not Before: Apr 20 17:00:29 2025 GMT
Not After : Apr 21 17:00:29 2025 GMT
Subject: CN=2dfdc7aa3e25021beac3d152bce722905f43f5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5e:3e:f6:f8:8e:6a:00:b0:04:d5:0f:4b:0f:
b4:3e:63:2a:a1:16:69:53:68:ed:14:a2:39:6a:fe:
09:8e:6b:12:dc:a2:d3:6c:01:2e:23:33:1d:89:d1:
c2:4a:fa:f2:92:df:79:7c:90:8b:02:d3:6c:fa:87:
87:29:8b:5a:4b:be:6b:57:2f:cc:78:f6:6d:e4:af:
8d:e1:47:68:b7:8f:34:8a:54:a8:6f:14:5c:39:a7:
76:e9:42:e5:84:b5:3c:a3:f6:2d:0d:77:23:45:c0:
1e:f2:b7:ff:b6:92:3f:ce:9f:c3:84:1d:c8:6d:6f:
08:f8:5f:e5:94:9e:29:7e:74:ef:db:90:67:46:f6:
dd:4b:85:51:d7:1a:f2:bb:92:bc:03:39:e0:11:f7:
c3:d8:de:9e:33:67:e6:d4:9f:d3:5e:ba:1f:38:9f:
69:48:7b:44:52:f8:39:36:26:4d:fe:36:da:6a:88:
7d:6a:04:d1:7f:2f:fa:cd:e5:53:c1:c5:a3:5c:59:
67:9c:e2:e5:91:5c:18:fb:6a:bc:b9:69:5c:f9:be:
24:4f:11:4c:fc:07:87:79:eb:0e:b2:5d:9e:32:c2:
b6:5e:2d:ce:93:14:0c:0d:2c:6d:91:ba:ac:b9:a8:
78:a5:d4:b9:22:fb:a2:2f:80:bc:59:a0:a5:6e:cb:
0b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:FD:C7:AA:3E:25:02:1B:EA:C3:D1:52:BC:E7:22:90:5F:43:F5:FF
X509v3 Authority Key Identifier:
keyid:CB:20:E9:AA:BB:B6:19:15:46:11:02:35:CF:76:C4:83:84:B4:51:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:ae:ea:c0:56:c6:d4:c5:f8:a1:8d:a9:85:d0:bf:56:fe:bd:
c2:40:1c:a8:73:e9:5b:50:e6:32:a7:e9:99:c8:38:e2:fe:f9:
21:7d:d3:41:1f:26:35:b8:66:01:49:0d:43:96:f0:54:40:31:
eb:19:5b:3d:71:a0:0f:a2:bd:c1:cf:d9:e7:f5:14:e5:76:28:
dd:ba:76:46:07:89:a6:e7:07:18:c5:3e:fb:bf:ba:96:90:e7:
2b:69:31:11:78:92:9e:7b:2f:e7:1c:99:bf:a4:12:8b:cf:15:
74:08:a4:c5:79:7c:10:63:ab:90:f3:a5:12:02:a5:6a:04:17:
db:18:f7:ab:3e:e0:b0:ac:92:b7:07:f1:79:fe:48:98:55:7b:
53:2e:ad:b6:0e:d2:fa:b6:a9:6f:0c:90:0e:8b:88:b0:91:d8:
16:9a:eb:79:81:2f:c4:38:c9:55:a7:d0:fc:cb:9d:2b:60:7d:
23:d8:40:11:d3:d9:a2:a3:c6:22:fd:9c:25:71:78:b7:d6:ff:
a4:f6:3d:a0:ee:e9:33:0c:1a:c4:e7:96:a7:1b:ef:1a:03:9c:
a6:1d:ff:02:82:1c:06:80:24:0c:2b:bb:ab:31:17:b0:9b:90:
4a:f2:a2:15:1e:9f:b7:9c:e0:47:bb:b1:5d:49:a6:d5:d7:be:
b4:9e:a2:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:35:50 2025 by rpki-client