Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: l6D9Bg0BM19YDo3pvxSnmEb4Jd+JeFKbZzWzsB2XqIA=
Subject key identifier: 99:0F:11:3F:CF:D6:07:BD:8D:B9:25:E9:CA:D6:BA:61:93:B2:B7:9F
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 0196018912CF8C8DD1587279F0BE63B90ED5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 08E5
Signing time: Fri 04 Apr 2025 16:01:22 +0000
Manifest this update: Fri 04 Apr 2025 16:01:22 +0000
Manifest next update: Sat 05 Apr 2025 16:01:22 +0000
Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=)
2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: +hHLiY1CQbMpus1ARK4ldNs1AdBB1zJ+8PXSpOqqQS8=)
3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=)
4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=)
5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=)
6: _8-3Qs_qZ1htreiN1JNh0Xfjgzw.roa (hash: vjBjNUyiud1IqRH6IpSBed0Ql8B7vtUZBKWlZlCokKM=)
7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=)
8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=)
9: pEFxP8vI0PKe_stqXUAdFiorUXQ.roa (hash: XJ7DBwkkSSwgly2JK+83gWkWa+T8sNrECn3yoE80Gos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 16:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:01:89:12:cf:8c:8d:d1:58:72:79:f0:be:63:b9:0e:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Apr 4 16:01:22 2025 GMT
Not After : Apr 5 16:01:22 2025 GMT
Subject: CN=990f113fcfd607bd8db925e9cad6ba6193b2b79f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b6:db:96:0a:3e:da:a0:88:63:c0:5b:84:0d:
20:eb:f5:ec:e9:76:b9:ab:11:73:d5:fd:ed:08:58:
04:31:c0:3d:e6:18:a1:3c:38:9c:fb:33:5e:39:98:
fd:95:a3:73:ef:1c:d0:aa:e0:81:18:5c:2e:66:c6:
fa:a7:9c:fe:c5:a6:21:c9:df:07:69:d3:55:72:cc:
9e:d6:24:87:88:69:a7:c2:45:62:9d:e3:d8:38:36:
44:fd:eb:68:09:bb:9c:a1:6f:fc:bc:a3:cd:39:fc:
64:c2:96:c7:a5:38:84:60:f5:6a:5d:41:84:8a:03:
ae:7d:92:90:8f:73:f2:e2:9e:23:10:7b:70:a0:2b:
8c:ac:53:94:38:fd:c7:46:61:5b:ef:8e:0a:c7:fb:
6d:6b:f0:da:7d:6f:dd:74:76:1f:42:49:7b:c7:e5:
87:f3:84:63:3f:ab:19:cf:65:65:c5:3d:09:37:c8:
a0:53:b1:52:7e:ff:09:02:52:fe:26:ef:8c:27:93:
86:b1:8d:79:3e:b3:96:8e:33:01:41:12:31:be:e1:
db:63:bf:0c:da:da:f8:d3:fd:b0:c8:b6:fe:f8:55:
47:70:3a:c3:58:be:7e:55:72:91:3c:c5:76:26:70:
41:89:e3:a1:77:5b:70:1e:90:1e:e3:cb:66:07:15:
27:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0F:11:3F:CF:D6:07:BD:8D:B9:25:E9:CA:D6:BA:61:93:B2:B7:9F
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:88:1e:7a:fd:2b:a1:d8:4a:68:d6:dc:e6:39:da:2a:cf:5b:
9b:2d:59:13:9e:63:3d:20:d5:44:ae:6f:d4:01:9a:ef:f6:ba:
7a:a1:37:db:58:e2:44:a3:34:e3:91:38:0b:a6:9f:99:6b:5a:
31:3c:ba:96:28:5c:89:fa:00:af:4f:5b:5b:b8:9d:d7:16:c8:
63:0b:79:ad:c7:0f:c0:b9:45:b6:5b:c8:ac:9f:67:61:3e:3e:
64:48:10:f0:ab:e5:ed:a3:9f:25:be:9b:b0:15:fe:df:39:c2:
0a:09:54:79:ea:07:2c:d0:c4:88:bb:65:16:a9:b0:e9:a1:da:
6a:38:b4:1d:1b:4e:3b:f0:28:95:19:d8:eb:bb:fb:eb:62:d0:
24:ba:4a:9a:fc:f7:7e:b2:47:b4:f5:a1:27:14:09:a2:cf:a8:
23:06:c6:bf:6e:f3:f2:fd:7d:c0:eb:31:d2:ec:52:05:ca:6e:
65:ed:bf:ad:a1:d3:53:ba:32:02:bf:21:40:4a:11:95:09:9a:
f7:ff:a9:31:dd:25:f1:1c:13:8e:6f:2c:1f:c1:9a:dc:b5:93:
a1:55:3a:de:ac:08:4d:dc:49:f6:cd:f9:4e:b0:9a:30:8f:20:
17:ce:8e:0f:58:ed:94:3d:51:cf:c6:9b:39:6d:e9:f8:cd:9f:
81:b1:8e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:35:42 2025 by rpki-client