Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
File: 0xryhyw_VQMHOGbf_vSItxeD2rY.mft (raw, json)
Hash identifier: Y8BgiD9h06bMHivdb+qBDpAW9exRxxwcH14RobTwmfc=
Subject key identifier: 4B:2F:BB:09:CF:0E:7B:A6:01:8E:4C:79:24:CA:41:D1:71:D6:58:36
Authority key identifier: D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
Certificate issuer: /CN=d31af2872c3f5503073866dffef488b71783dab6
Certificate serial: 019652A472BFF0205112115BC49E2FE73BA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
Manifest number: 11FC
Signing time: Sun 20 Apr 2025 10:00:31 +0000
Manifest this update: Sun 20 Apr 2025 10:00:31 +0000
Manifest next update: Mon 21 Apr 2025 10:00:31 +0000
Files and hashes: 1: 0xryhyw_VQMHOGbf_vSItxeD2rY.crl (hash: Oq3v3XnUN9OKVatYrc8jJ+3DJBDJyu3ULTDmPNegCx8=)
2: Vr2MHbk4BkpwijegPw7svFXxpY8.roa (hash: J4FlYQ16tBtXCX4bdbpdB9oishsKJVSj1Pc1U4pte9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:72:bf:f0:20:51:12:11:5b:c4:9e:2f:e7:3b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d31af2872c3f5503073866dffef488b71783dab6
Validity
Not Before: Apr 20 10:00:31 2025 GMT
Not After : Apr 21 10:00:31 2025 GMT
Subject: CN=4b2fbb09cf0e7ba6018e4c7924ca41d171d65836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a2:65:2f:16:44:ac:62:4c:88:b4:f1:4f:42:
19:9d:64:e4:45:93:7a:04:6c:cf:2b:d1:98:20:1f:
11:56:a3:dc:64:3c:ae:7f:cc:7c:08:bc:42:d7:f5:
70:07:a8:5d:b8:f1:2c:54:9e:bc:5f:1e:89:e6:87:
9e:57:d4:63:a8:c4:d4:7d:41:6d:97:0c:7c:98:7d:
2f:09:6b:ed:01:3c:1a:e8:cc:73:29:ed:1c:1b:6f:
86:13:1e:a8:1d:00:ca:7d:c1:3e:34:0b:fe:6f:d0:
2c:ed:bd:69:bd:46:37:3c:f1:8e:f6:ef:ed:b4:3a:
16:dc:33:2b:33:1b:03:99:a5:e5:9d:bc:49:bd:4a:
22:2e:44:d9:66:4c:ea:ca:3f:90:5b:de:c2:c0:33:
6f:7d:db:ef:8c:83:cd:56:97:ee:69:7e:0a:89:ce:
4a:11:73:7e:dc:7e:d9:26:26:00:8d:33:21:fc:12:
53:17:a3:98:44:72:87:bc:ca:29:c4:9b:e5:5e:38:
ea:87:78:f8:ed:df:d9:6d:8c:94:5c:46:9e:b2:4f:
ea:85:63:86:3e:5a:e4:64:c1:b3:32:d7:b0:f5:14:
41:5e:56:af:7b:0e:6a:f5:1c:aa:09:4e:dd:27:7a:
1f:86:38:61:51:9e:d8:54:fb:e5:19:d4:28:bd:40:
1c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:2F:BB:09:CF:0E:7B:A6:01:8E:4C:79:24:CA:41:D1:71:D6:58:36
X509v3 Authority Key Identifier:
keyid:D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:d9:6d:2f:1d:2b:79:c7:2b:0f:80:c1:ae:26:1c:e4:1d:a2:
a5:43:1a:30:0a:6e:a5:8a:a8:07:7d:65:6c:26:e8:c5:51:72:
70:47:b5:28:f0:6c:cc:d6:e9:ca:a2:2c:a9:20:b7:22:22:6f:
cc:45:38:36:12:be:92:da:4e:96:3f:e6:5a:40:2d:1c:0c:e8:
0b:c5:21:d6:6b:86:db:a2:ad:2f:a7:0b:23:84:c6:d4:75:ea:
61:b6:2d:3f:b0:3f:c8:14:0a:b7:50:97:8d:26:e8:49:a1:c6:
1d:5c:f5:ee:4e:e0:bc:3b:1f:16:a4:77:38:be:f9:ac:88:a2:
22:f1:3c:3e:da:4f:03:f4:90:88:b5:f5:26:b9:3c:a4:cb:0c:
b0:e9:31:8b:72:14:dd:cd:ca:7a:b1:2b:ca:a2:2c:db:68:d6:
81:8c:b7:29:a9:6c:f7:d1:da:82:ed:f1:06:b4:ac:cd:f2:13:
45:13:ca:83:24:7b:30:49:72:bf:59:d1:ac:49:78:05:f7:0b:
8e:a6:60:98:de:6f:c5:ba:66:66:ed:0b:8a:a1:4b:36:d3:ff:
c2:ca:b3:c5:55:00:1b:5c:80:c5:e3:49:ee:5c:92:f5:3f:fa:
0c:e0:99:80:03:86:da:60:de:65:d3:4d:ff:75:28:c5:05:72:
95:2c:f4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:19:13 2025 by rpki-client