Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
File: ryNYW_zdBhypRuLZ6ouX5FucMdY.mft (raw, json)
Hash identifier: 1RL4IrGqPiZPAxIDgzIONPJodlFxewFgcmWOxeDA00Y=
Subject key identifier: 12:39:48:17:8B:2E:23:03:86:25:31:7D:C8:45:21:48:19:A5:CC:FA
Authority key identifier: AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
Certificate issuer: /CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Certificate serial: 019629727043ECA9BF9296B03C54181D32A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
Manifest number: 144D
Signing time: Sat 12 Apr 2025 10:01:27 +0000
Manifest this update: Sat 12 Apr 2025 10:01:27 +0000
Manifest next update: Sun 13 Apr 2025 10:01:27 +0000
Files and hashes: 1: SeufauaKg6Zpqe8UY9h9PfD262s.roa (hash: f9EK4NXbDLFnpfyftEzrpn9paJMCGETNbGO1nrHQTYE=)
2: ryNYW_zdBhypRuLZ6ouX5FucMdY.crl (hash: x3m+L/GIUB+surXavxAGvsmaJIJGL0qDYLSn6OyujSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 05:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:72:70:43:ec:a9:bf:92:96:b0:3c:54:18:1d:32:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Validity
Not Before: Apr 12 10:01:27 2025 GMT
Not After : Apr 13 10:01:27 2025 GMT
Subject: CN=123948178b2e23038625317dc845214819a5ccfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6e:fe:76:cf:97:a7:55:19:6a:81:bc:e1:02:
a0:8d:77:31:7e:2d:3d:00:62:df:96:e5:b8:30:f9:
2f:bf:51:f7:fc:ce:f1:0b:e9:19:49:61:f0:bf:d9:
5a:4d:ff:a8:68:45:a1:65:00:b6:ce:87:b7:a8:58:
1d:34:27:08:eb:6a:87:72:a7:97:cd:5b:7c:bf:fa:
7d:4b:88:b2:9c:68:bd:14:77:e5:2e:74:e9:03:73:
00:7c:21:8e:4d:fd:fb:bb:8b:ba:ea:89:c4:95:79:
3e:99:33:6b:bb:f7:47:c1:ae:dc:7e:2e:56:9d:b5:
49:0e:bb:32:d1:93:f2:d6:9a:38:d4:4f:73:25:2f:
4d:1a:15:fc:d3:4e:fe:fa:05:19:ea:02:05:2a:36:
33:b0:52:a5:c2:8f:a2:3c:a0:ec:5a:f8:45:14:02:
9f:5f:34:16:91:d6:6d:9e:05:48:3a:27:67:99:75:
e4:53:89:7f:86:57:68:0f:ad:ea:21:5e:f2:f1:de:
55:96:00:9e:81:8e:2e:e9:f4:d6:a2:76:5b:ad:ca:
29:de:cc:a2:ec:20:61:66:0a:58:1a:18:af:ed:b5:
7e:91:db:e3:df:4b:7a:94:ca:33:ba:87:c0:4f:82:
d2:9f:c4:c7:d5:3d:8b:5a:1e:60:55:66:89:62:59:
1c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:39:48:17:8B:2E:23:03:86:25:31:7D:C8:45:21:48:19:A5:CC:FA
X509v3 Authority Key Identifier:
keyid:AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b8:73:5c:b1:ea:b3:a7:43:0c:a7:23:7f:d5:80:37:da:65:
8c:9b:0f:c4:19:9e:5e:ea:14:52:c0:35:55:fb:b4:16:55:9a:
34:1a:c1:4c:83:fb:e4:ea:09:04:14:78:1b:5a:1d:de:f7:cd:
22:fa:b9:38:d2:ba:4d:86:d1:1f:8c:ef:a0:17:ec:e9:06:58:
ed:c7:d4:67:1b:af:85:3b:8d:0f:4e:5d:54:34:0e:c7:b9:e4:
64:ff:5f:d0:47:3c:f1:af:01:a0:ca:ba:e0:ad:56:08:e3:d9:
7f:5c:83:2b:35:55:ba:25:91:a3:d0:ff:34:45:3f:d8:90:76:
13:53:e4:da:c7:ea:2a:98:64:b7:3c:a4:6c:65:d2:d6:a1:8c:
37:06:13:3c:9a:3d:86:0d:ce:e1:fc:da:58:ce:a4:45:41:8d:
8d:c9:51:56:58:2f:da:72:ba:54:06:18:aa:4c:7c:dc:9c:67:
10:ba:86:ef:27:ff:ee:55:5d:4a:b1:ed:c6:db:21:20:20:ff:
e9:40:66:84:26:98:04:2b:26:b2:73:d1:82:f2:eb:6b:f8:39:
5d:84:11:f8:1a:5b:d2:be:5d:dd:b9:73:9c:cc:06:b6:8a:98:
3a:54:5b:b0:5c:13:c9:72:40:22:ee:d7:5a:2c:9f:1a:1e:b1:
d2:4a:c8:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 13:52:13 2025 by rpki-client