Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
File: yABBYZAh42MorViY6Jl4cEa48Pk.mft (raw, json)
Hash identifier: CBoNH1oiBhxl7vmouJCrxJgRyFG6Z4DV+gVRAhSl5Dg=
Subject key identifier: 9C:31:00:82:9B:20:6F:D9:C4:5F:67:21:DB:D3:AD:95:82:77:08:B9
Authority key identifier: C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
Certificate issuer: /CN=c80041619021e36328ad5898e899787046b8f0f9
Certificate serial: 019643D5EEFA22E2CFE84343404A13A3FC6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
Manifest number: 0584
Signing time: Thu 17 Apr 2025 13:00:15 +0000
Manifest this update: Thu 17 Apr 2025 13:00:15 +0000
Manifest next update: Fri 18 Apr 2025 13:00:15 +0000
Files and hashes: 1: Mok6_FqiiR5wYGEWZBTs8xeaVoQ.roa (hash: FbjTDRIPu8bBy/5KLYHNgVHrWy/v2L+xeWuUUm4Xmek=)
2: yABBYZAh42MorViY6Jl4cEa48Pk.crl (hash: bn69NI7nybRbenr7UqT+ldz4OKlFC4NlMbIOGVbo2xM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 13:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d5:ee:fa:22:e2:cf:e8:43:43:40:4a:13:a3:fc:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80041619021e36328ad5898e899787046b8f0f9
Validity
Not Before: Apr 17 13:00:15 2025 GMT
Not After : Apr 18 13:00:15 2025 GMT
Subject: CN=9c3100829b206fd9c45f6721dbd3ad95827708b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:71:21:e8:e3:96:b6:ed:15:ac:b6:27:2a:ea:
8b:ff:61:6f:ff:d5:fa:aa:19:0e:07:a2:5c:b6:dc:
7b:6e:7e:fa:63:e8:8c:14:0b:0a:b1:06:b8:26:60:
62:20:bc:dd:6e:61:88:9b:bf:58:ec:03:5f:8f:1c:
26:44:ad:79:c0:ed:71:60:88:cd:bd:dc:8c:95:1f:
da:cc:b8:29:8a:dc:dd:79:2e:60:71:31:3b:fb:00:
49:ae:a9:99:d5:90:0e:d6:4e:e4:68:ab:4e:c6:a7:
ca:a6:db:21:dc:68:a8:28:b7:45:db:96:cd:31:0f:
99:75:5f:1d:26:cc:7a:4f:60:01:f4:7e:13:af:95:
83:5a:72:03:21:bf:26:57:67:4c:bf:f8:75:15:fc:
df:de:4b:86:76:2b:6e:f8:14:60:f8:21:ff:cf:9f:
94:f2:2b:95:05:82:ef:18:19:03:ca:43:6e:39:0d:
49:32:1b:d5:15:c8:05:4b:69:c7:f6:c2:22:1a:a3:
70:3a:e6:7c:21:c6:d9:9f:70:ce:ba:c3:6b:54:7d:
65:02:12:ad:78:8e:58:e4:3c:21:aa:f4:bc:b7:fb:
0c:5d:ac:da:96:99:71:95:b4:d2:de:bc:16:8e:f5:
d7:45:42:a5:f4:a9:9c:d5:c9:ac:6c:0e:a7:76:dc:
de:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:31:00:82:9B:20:6F:D9:C4:5F:67:21:DB:D3:AD:95:82:77:08:B9
X509v3 Authority Key Identifier:
keyid:C8:00:41:61:90:21:E3:63:28:AD:58:98:E8:99:78:70:46:B8:F0:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yABBYZAh42MorViY6Jl4cEa48Pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/685c99-cfdf-42a0-8436-d297db230a14/1/yABBYZAh42MorViY6Jl4cEa48Pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:6e:07:07:e1:31:05:2a:5f:fa:c2:8b:8b:5d:7e:56:e3:30:
e4:e0:93:05:69:97:a6:1c:02:7a:16:d8:51:54:36:e3:31:59:
70:da:ed:45:2c:93:9a:9c:b5:b7:df:20:be:c7:e5:9c:97:2b:
c3:6c:2f:5a:f7:37:d8:87:06:74:1c:c6:56:c0:07:9e:ab:d4:
f0:07:0c:ba:bd:d9:7c:d1:2b:db:65:e7:8c:db:60:b6:66:26:
5c:c1:9e:7d:7e:3d:3f:31:35:20:92:44:f6:1e:2a:be:50:6d:
b5:77:c7:c5:1d:db:ad:e6:5d:87:43:dd:63:9a:ae:21:8a:64:
31:c1:97:73:f0:0e:a7:01:b3:90:17:d9:2c:0e:56:e5:7f:ed:
d1:3e:0e:11:57:00:3f:3b:31:d0:8e:3c:0d:5a:a9:bc:e1:22:
88:2a:b8:3d:b3:62:48:78:75:6e:fd:22:0d:75:53:5d:2c:28:
4c:ed:d4:ee:8c:39:99:20:13:11:c0:3e:15:cb:75:ec:91:ac:
1c:47:16:65:cb:67:fd:48:b6:e1:c8:7b:5b:19:03:7b:e6:0b:
49:b7:25:e0:9c:39:aa:ac:f4:64:6c:d1:11:3d:a3:f9:c4:b2:
8d:01:ad:1a:40:2f:c3:66:f5:d1:19:09:6f:e0:7f:30:c9:65:
a9:71:5f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:30:38 2025 by rpki-client