Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
File: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft (raw, json)
Hash identifier: cn6liJLaK5zT1Rz73akTQ7kAsA2BS5Kp13UHjzwCwSM=
Subject key identifier: 71:36:2F:48:31:02:F7:25:C3:99:3B:12:80:E8:9A:13:0A:E1:2C:BD
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 019644E899C7C17E1E605B4C64E5F1EFB9F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
Manifest number: 0AD8
Signing time: Thu 17 Apr 2025 18:00:16 +0000
Manifest this update: Thu 17 Apr 2025 18:00:16 +0000
Manifest next update: Fri 18 Apr 2025 18:00:16 +0000
Files and hashes: 1: 2ATvNbnGawNlZZ5eknfDSbXFIzQ.roa (hash: tXSd9lU5fCgD64Z/fTQv/A1ZJJrB3ZcLdqsIZET5sKI=)
2: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl (hash: f38GveD7BtS5j1mNdLv6cUX+MNaB6JHuGBSObFn11Bk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:e8:99:c7:c1:7e:1e:60:5b:4c:64:e5:f1:ef:b9:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: Apr 17 18:00:16 2025 GMT
Not After : Apr 18 18:00:16 2025 GMT
Subject: CN=71362f483102f725c3993b1280e89a130ae12cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5e:76:8d:4c:b5:67:b2:71:e0:a2:dd:b4:44:
01:02:93:5c:77:f9:87:e6:d6:48:51:1c:54:26:a2:
89:00:c1:0c:61:b9:93:f4:2d:bb:ce:94:fa:8e:d3:
91:98:d3:df:42:c4:5b:02:a5:bf:58:df:4d:0a:79:
b7:82:df:1d:98:0b:a0:49:d7:da:c6:03:af:61:a4:
2c:32:03:1f:36:6f:cf:9f:79:95:92:f2:99:f3:65:
6c:b8:2f:51:08:84:86:a9:1d:d7:e0:c4:c0:03:bd:
86:5a:86:ba:af:3f:c1:03:13:7d:52:ed:93:34:db:
6d:9b:e5:ac:44:49:32:12:9d:75:e2:b7:93:24:96:
40:31:79:07:e1:f2:08:98:29:12:ba:2d:17:65:bd:
9a:39:32:29:71:90:68:70:23:19:42:6a:66:ee:e4:
e5:65:d4:5c:bf:5d:1a:ef:e3:fc:21:a8:d6:b0:48:
3a:23:c3:04:8d:7f:3b:02:d8:aa:09:60:12:ed:26:
df:fe:96:6c:51:06:1d:f1:dd:66:1c:86:6b:f9:ea:
a1:ef:d6:86:fb:18:5c:2d:89:fb:cb:2f:26:f0:48:
9c:69:da:cd:55:c3:96:53:da:62:a8:98:e6:f3:b7:
fa:06:53:0e:1c:83:9e:38:1d:e8:1a:aa:72:f8:06:
83:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:36:2F:48:31:02:F7:25:C3:99:3B:12:80:E8:9A:13:0A:E1:2C:BD
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:ec:53:6e:0d:87:95:f2:69:d0:41:ef:47:fe:9b:e3:06:d0:
8d:ef:b0:31:9b:08:d8:c2:b9:7e:07:59:20:28:34:a0:1c:27:
62:61:6c:25:a1:49:1f:d5:5d:c1:96:85:86:19:b2:ac:a7:5e:
5f:c7:b6:97:0f:a7:2d:05:4e:ef:60:54:3a:77:d7:a1:96:92:
bd:0a:0b:60:bd:b3:1f:30:82:5b:b6:f1:ab:84:43:91:09:eb:
c9:0a:07:1b:c7:98:75:96:c0:80:00:2c:1f:73:36:8c:79:da:
3c:23:ec:bb:ea:e5:83:e3:4f:df:5b:b6:36:9a:50:86:63:cd:
7f:0d:b1:c3:22:4f:60:5d:05:9a:32:9c:e1:da:89:d4:49:c5:
2b:0f:6b:b0:7f:98:f4:6b:1d:24:b8:7d:68:9b:ad:ab:04:84:
29:7b:cc:fa:32:e0:e3:8d:0f:cd:db:cb:19:b0:5e:4b:e8:a5:
c1:15:c4:be:1f:9e:42:76:57:b9:1f:a4:a5:42:07:79:19:49:
4e:53:e7:4a:f5:cc:15:15:ac:2e:19:a0:3f:d4:71:ca:ab:70:
72:f9:fa:29:f6:3e:6a:57:51:d1:e0:29:5f:ca:f2:29:94:86:
7e:aa:d6:c9:4a:42:9b:36:bc:d5:6b:27:89:d2:50:e0:f6:11:
0e:c7:f1:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:42:38 2025 by rpki-client