Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
File: y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft (raw, json)
Hash identifier: UBQON6P5ysUgG7d8eQNo/b09sqhYYKSSnE1om1jZrQw=
Subject key identifier: 26:41:88:7B:BB:6F:28:24:94:23:19:34:F3:D1:E7:20:31:DF:06:55
Authority key identifier: CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1
Certificate issuer: /CN=cbb996ff055d6575e01f2e64d9a3b382834702d1
Certificate serial: 01965C4C8F861C8C0A08EEA8A7CD847594E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
Manifest number: 09DD
Signing time: Tue 22 Apr 2025 07:00:43 +0000
Manifest this update: Tue 22 Apr 2025 07:00:43 +0000
Manifest next update: Wed 23 Apr 2025 07:00:43 +0000
Files and hashes: 1: hUKLcWa9OHC5GxmVq6KR5PIsB6o.roa (hash: scGqiYOmrM2j/apqj1QvggRupECIf8XpZkFfLXcvrsc=)
2: y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl (hash: Khm7paQTxpkuZ9GdVyVDoWbK7tGzR0iO6agiWRifc/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:4c:8f:86:1c:8c:0a:08:ee:a8:a7:cd:84:75:94:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb996ff055d6575e01f2e64d9a3b382834702d1
Validity
Not Before: Apr 22 07:00:43 2025 GMT
Not After : Apr 23 07:00:43 2025 GMT
Subject: CN=2641887bbb6f282494231934f3d1e72031df0655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a0:ec:5b:1c:e6:a4:9a:f0:cb:91:cd:6c:c5:
2f:f9:ff:3e:b4:87:23:f4:55:77:1e:c1:48:8c:a7:
22:c6:16:ef:60:18:45:1c:1f:1f:bc:60:8a:3c:65:
03:8c:d9:85:44:d2:dd:2d:5e:cb:19:f9:24:55:47:
92:7f:41:47:db:6d:02:2b:b2:92:19:a4:20:34:29:
ad:5d:c1:7a:72:e6:39:ff:02:43:81:fb:6e:03:71:
b4:7c:43:2d:bd:9d:a3:f9:17:68:95:50:6f:46:5f:
e7:20:9e:41:70:a6:0e:ed:d7:46:b4:49:94:1a:d5:
4a:bb:5d:6e:08:77:23:8b:bc:17:f1:be:f0:42:1c:
bd:25:17:02:3f:59:e3:08:8e:e9:ef:0e:26:46:50:
7a:ce:2c:69:46:28:4a:a3:04:08:1e:16:3f:18:4f:
04:f5:97:05:ff:b9:a2:67:3b:8d:c0:1d:7c:fa:3a:
74:7a:3d:c4:49:03:c0:46:ab:13:e4:43:03:f3:7e:
75:38:b0:c2:18:64:0a:f8:d0:ad:8f:ce:f2:a8:73:
94:2e:2e:73:e1:d3:4a:8f:04:4c:8f:96:6b:d2:94:
f5:63:c3:2d:08:61:6b:fc:11:88:8f:17:c5:0e:88:
06:87:c2:e6:76:25:ed:60:02:1c:51:9d:3b:e9:22:
70:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:41:88:7B:BB:6F:28:24:94:23:19:34:F3:D1:E7:20:31:DF:06:55
X509v3 Authority Key Identifier:
keyid:CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:91:31:4d:22:44:ab:6f:0a:a9:0a:b6:0c:ca:4d:59:f0:a5:
63:ab:dd:92:f6:68:10:1a:c8:68:d5:81:ab:40:1b:f0:e7:af:
7d:d2:c5:10:bb:67:5a:b5:a0:20:a7:f4:9d:bb:a9:38:a2:b1:
0e:b1:5c:b1:95:5d:4a:04:74:77:d7:98:53:e9:02:e5:a9:8b:
8b:33:a3:59:7b:24:54:08:b6:6e:6d:22:7c:e2:e3:53:0a:b5:
a7:fe:93:bf:ff:ba:34:74:32:98:e5:f8:ba:9e:5e:da:65:c3:
cb:ee:58:8f:f3:ae:d9:38:c7:50:d3:a7:17:86:5e:7c:ff:8d:
0b:5d:54:4c:aa:80:e5:d2:be:05:dc:b9:33:89:0d:36:2e:d5:
96:f7:6c:b5:7c:be:39:3f:f2:49:7d:55:93:6b:32:6a:6b:0a:
8b:f7:78:cd:ca:13:cb:16:c5:fc:f7:49:79:31:d5:35:58:8f:
7e:c2:7a:e1:b3:52:e1:6e:ed:b5:3d:0a:f6:69:52:34:63:0b:
7e:1f:a9:3d:9f:ea:40:55:2c:06:71:df:07:5a:0e:4c:af:36:
8f:30:d9:1f:24:af:bf:72:77:09:e3:99:61:c9:ba:46:9b:7e:
43:24:a7:6a:40:3e:66:31:e8:4a:c2:c1:8a:04:4e:b8:92:5a:
e2:d6:c1:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:24:35 2025 by rpki-client