Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
File: 0YHQxAlRpPkA5NndnCDkhWNQkg4.mft (raw, json)
Hash identifier: J5Eu4bX8vUsN5IrSfIYfM2Sx/RtH1PTQmjtGycHqZHw=
Subject key identifier: C8:53:DF:CE:31:4D:A4:1C:8D:45:3E:21:93:95:4C:DB:8D:B9:D3:3A
Authority key identifier: D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
Certificate issuer: /CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Certificate serial: 019653EE9EDD8AB23E14691AC4A0AA1A2108
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
Manifest number: 1502
Signing time: Sun 20 Apr 2025 16:01:09 +0000
Manifest this update: Sun 20 Apr 2025 16:01:09 +0000
Manifest next update: Mon 21 Apr 2025 16:01:09 +0000
Files and hashes: 1: 0YHQxAlRpPkA5NndnCDkhWNQkg4.crl (hash: NAjxXx/QCWtcPjZEKugQwE27yagVBzOtvpwTfsZb7dE=)
2: 2VAk9AH_jCxBcmS3UFNJkQWmjmM.roa (hash: OTJmVbnhsENHWSTSM66puZiLKu+kw6NtZbXCQeGN/YQ=)
3: 5kzmDTi0KIXTn8Ss2d36rIX1bZA.roa (hash: VgZeJy91lZpXmzMfyFbTui1JSN8xoQwBbcwBQ01/D0A=)
4: SA8oSTczcAjgQR1zXNlc0Vgrtd0.roa (hash: fw6Ud0wGZN9ltnlpcBVHmq+wSri7RZaFK71pfthgGyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:ee:9e:dd:8a:b2:3e:14:69:1a:c4:a0:aa:1a:21:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Validity
Not Before: Apr 20 16:01:09 2025 GMT
Not After : Apr 21 16:01:09 2025 GMT
Subject: CN=c853dfce314da41c8d453e2193954cdb8db9d33a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ce:27:52:7e:d4:fe:f4:b4:18:b6:e0:5f:e7:
5f:e0:f0:e4:d3:2d:90:df:0f:14:2b:10:cf:56:24:
f4:02:73:64:b5:6e:07:7a:0d:59:2d:6c:f1:b4:ab:
b3:f7:72:f4:17:70:51:1c:fe:fd:85:93:be:8e:71:
d0:80:a6:f9:f9:93:42:7b:98:8b:bc:94:0a:96:e8:
fd:c5:f5:86:ba:b4:6e:ae:64:53:77:a3:2b:32:40:
21:95:c7:de:41:16:cb:e3:bc:bb:33:3b:6f:bb:ef:
b0:52:5b:2f:48:c5:ed:1e:1e:0b:87:a4:ee:5e:f1:
4e:b6:81:fc:35:0d:33:7e:ef:69:4f:02:c4:ca:79:
02:e8:2d:af:46:44:09:86:b2:ec:13:cd:9b:27:68:
e2:94:45:21:9f:db:31:a8:e9:4b:e0:04:38:b4:89:
19:c9:fa:4f:0f:52:48:04:d5:03:db:cb:60:df:71:
81:67:6a:3d:87:d4:5e:16:bf:8c:0f:af:64:8b:d4:
c5:85:fb:8c:f3:48:03:d7:7c:42:40:36:8d:bb:31:
34:1e:5f:cb:eb:e9:41:55:07:8f:37:89:07:8b:d8:
3a:ee:9d:93:97:4d:06:d0:a5:88:46:c0:92:9e:c4:
33:38:47:61:00:13:c3:fa:1f:4b:e2:b2:1d:b3:39:
a3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:53:DF:CE:31:4D:A4:1C:8D:45:3E:21:93:95:4C:DB:8D:B9:D3:3A
X509v3 Authority Key Identifier:
keyid:D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:49:2a:fa:ee:9b:fc:9c:3a:bf:03:37:27:7f:73:43:ec:9b:
e5:60:38:ac:24:7a:c1:62:38:35:ca:34:da:28:88:69:dd:9e:
ba:d6:ba:12:e7:36:3f:46:5b:11:aa:f5:8f:dd:33:b6:cc:ed:
cc:6d:ac:ec:f9:26:95:4d:87:92:75:de:2a:86:48:3a:39:95:
15:45:4c:8b:f1:bf:81:81:5a:2f:6d:15:bc:fd:dd:7b:a6:48:
bc:56:55:6b:85:55:fd:9c:96:83:a3:45:69:16:f5:b9:f3:c6:
b1:e0:07:38:9b:68:6a:2b:5f:16:64:ba:bd:84:63:67:a6:1b:
0b:b5:82:3c:cb:06:33:20:ad:73:86:62:01:fd:a5:8d:bf:73:
67:04:b8:da:28:15:bd:36:d8:1f:9c:37:71:9c:17:82:dc:e7:
34:18:3b:b6:68:8c:3d:d3:8f:12:a8:d3:e2:eb:a6:12:c8:8b:
00:37:53:3a:8c:62:40:42:f2:45:fa:18:29:dc:6d:be:3a:3b:
61:0a:74:4b:d3:bb:4a:e2:aa:00:ab:3b:57:83:45:00:65:14:
2c:99:5b:d5:9b:2c:7f:cc:cb:b0:91:0a:7d:bf:e5:f1:ca:b5:
48:d8:58:b2:f9:85:67:bc:25:0d:0c:52:ae:3e:94:9a:f9:ad:
82:e9:db:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:21:06 2025 by rpki-client