Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
File: yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft (raw, json)
Hash identifier: zl8mM32BehZ4ItXZwDLXLxKonLG6zYzf8bFLbFv1Zo4=
Subject key identifier: 71:0A:84:DF:D8:72:09:40:96:04:46:72:95:66:F0:FE:BE:51:4B:EB
Authority key identifier: CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67
Certificate issuer: /CN=caacc4febb487996d4ee01d53b11f84203ca8367
Certificate serial: 019655A5EA5241CF5089C237328A36BD87BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
Manifest number: 59
Signing time: Mon 21 Apr 2025 00:00:58 +0000
Manifest this update: Mon 21 Apr 2025 00:00:58 +0000
Manifest next update: Tue 22 Apr 2025 00:00:58 +0000
Files and hashes: 1: _8GeUycs83lRu9jroip2TNtqpH8.roa (hash: xKuAFuMNSLN3xOnIRiVJqWVq/u5hK123DBKLWdaFAC0=)
2: yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl (hash: SEczIjjgQK9DIG0zvqr4k9z53DbU6I9/aJM7AUeVKZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:ea:52:41:cf:50:89:c2:37:32:8a:36:bd:87:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caacc4febb487996d4ee01d53b11f84203ca8367
Validity
Not Before: Apr 21 00:00:58 2025 GMT
Not After : Apr 22 00:00:58 2025 GMT
Subject: CN=710a84dfd8720940960446729566f0febe514beb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:24:aa:f3:0d:4e:f5:a0:c9:43:45:a9:04:56:
71:70:13:d3:55:e0:5c:20:95:82:87:9b:7a:f0:78:
08:d9:0e:b2:d0:af:a2:b4:d7:7e:89:9b:8c:54:42:
09:ca:1c:a9:df:9b:6c:c0:c4:da:d6:9f:ee:16:66:
53:f1:eb:88:b8:54:9d:99:8e:83:91:9d:a7:1c:52:
56:a2:32:4f:b5:31:b1:8d:1c:7f:0d:67:0a:65:c9:
1d:28:aa:51:f8:73:71:9d:a4:30:d7:57:43:08:33:
0c:57:10:04:b1:8f:59:63:f1:7c:b6:53:59:1d:81:
87:41:95:62:47:e4:6c:8b:da:d2:cc:fb:44:03:06:
37:a0:6b:9e:a7:ce:ef:0c:ce:ac:76:57:e5:bf:85:
3c:e6:09:76:c0:0d:74:08:d0:7d:e0:7d:24:fa:6c:
c3:31:12:af:7f:50:f0:ca:0c:fb:73:ec:74:82:c1:
de:c2:37:09:8b:4f:8b:8d:48:cc:c1:b1:2e:ba:50:
6b:6f:62:2c:6f:3e:17:1b:30:a6:f3:98:9f:b1:e2:
19:9a:8a:5c:71:68:92:7a:42:45:b5:de:56:48:95:
c6:c8:c4:ec:96:73:ae:44:eb:e2:6a:f6:aa:6c:ff:
2a:a3:be:58:4c:9a:80:b8:3b:b4:03:b3:0a:29:51:
31:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:0A:84:DF:D8:72:09:40:96:04:46:72:95:66:F0:FE:BE:51:4B:EB
X509v3 Authority Key Identifier:
keyid:CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:cb:71:08:57:e9:79:c8:54:a5:2d:1d:e5:48:86:75:77:91:
f5:3c:04:98:e2:9c:58:e1:92:cb:88:65:91:df:a6:91:15:cb:
bd:20:68:fd:b9:ce:3e:24:4c:17:9f:5b:f3:04:14:bc:41:7b:
33:7a:ab:68:9c:0f:62:1c:84:d7:b1:3d:9a:b0:b6:79:41:87:
21:34:15:45:58:1b:73:8d:f7:68:6a:67:7a:cc:60:3f:38:32:
83:bb:95:05:63:cf:15:49:3b:b2:4f:bd:a8:77:1b:34:e1:c4:
9d:5c:b1:30:f3:f8:b6:89:0d:62:eb:10:81:54:86:10:42:78:
e1:c8:ec:9c:f7:dd:60:03:3a:cc:a8:48:8f:da:71:53:90:82:
66:9e:da:11:22:2e:05:89:75:b4:98:c5:83:fa:74:5a:79:27:
30:bc:04:b0:a6:3a:e0:35:9c:bc:bb:4f:4d:d5:68:31:04:96:
c8:db:11:af:6a:d6:5c:36:ee:21:01:40:07:91:1b:e6:28:7e:
6c:7c:fd:2b:c8:13:39:d6:44:b5:24:d8:fe:6f:38:00:eb:22:
1b:90:38:81:8c:12:73:9f:07:f8:ee:26:62:49:eb:e5:4e:ed:
71:89:3f:c7:c8:5a:df:a7:99:4b:6d:42:a8:6f:c4:10:32:e2:
7d:ec:55:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:41:16 2025 by rpki-client