Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
File: ryfUX8GLqRerHomhfvC2NgmEgiQ.mft (raw, json)
Hash identifier: fbz7+yTsKWmfd1nrNmjUtUv5aF/ESkflW4/4x9tPBfE=
Subject key identifier: 46:63:80:BA:5B:54:E1:A4:9F:B2:38:19:70:2A:C7:DE:9A:73:8D:D3
Authority key identifier: AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
Certificate issuer: /CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Certificate serial: 0196507F603FB120E9688336AFE11F99AB7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
Manifest number: 11A2
Signing time: Sun 20 Apr 2025 00:00:47 +0000
Manifest this update: Sun 20 Apr 2025 00:00:47 +0000
Manifest next update: Mon 21 Apr 2025 00:00:47 +0000
Files and hashes: 1: DwKvg1G8x5cv5u3Gv7EK4EcgDbs.roa (hash: hjUmhWRtdpUgPrX1NItRvu79MTnpfYFNp3hBghbYUH8=)
2: ryfUX8GLqRerHomhfvC2NgmEgiQ.crl (hash: PwXoZ+Yu1T1peNj88t3TgXTic91CVODByPr+3Rt8qIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:7f:60:3f:b1:20:e9:68:83:36:af:e1:1f:99:ab:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Validity
Not Before: Apr 20 00:00:47 2025 GMT
Not After : Apr 21 00:00:47 2025 GMT
Subject: CN=466380ba5b54e1a49fb23819702ac7de9a738dd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:11:44:54:5f:ef:05:6c:58:62:50:ac:9f:32:
f6:1f:7e:b2:68:61:96:c5:0b:a7:bb:d7:ba:97:92:
32:7d:60:67:c9:a7:56:a1:02:13:fc:fe:5f:4f:df:
61:8d:ca:bf:d1:df:46:bf:a9:a4:90:48:9e:5f:ff:
80:5a:14:73:6c:ae:71:01:2a:c0:3e:f5:42:da:f6:
ea:e2:cb:2c:26:3e:15:09:36:bb:88:fe:e6:48:47:
c4:5e:92:14:7c:24:0c:75:90:d6:30:4b:c1:f6:02:
cf:1f:b7:a9:bb:52:38:47:12:3d:54:a2:34:4e:39:
8b:dd:40:95:01:c6:d0:98:1a:57:15:57:5d:c3:52:
3a:b0:4a:9d:7f:69:e2:2b:b0:b4:43:52:bf:6e:59:
9f:96:79:98:17:92:ea:7e:ba:cb:ca:3c:31:c5:10:
b4:c5:11:2b:87:ae:69:5f:22:59:48:7d:04:39:ff:
ed:5f:b7:65:51:dd:3a:67:66:d4:32:b1:90:9b:8a:
bb:ff:fb:4b:9f:d7:09:1a:d6:3b:3f:88:9a:3b:ec:
d2:26:9f:e6:d1:9c:55:19:13:8d:39:2d:1a:4f:be:
b2:07:63:5f:be:e3:16:23:6f:7d:e6:be:7d:64:29:
9d:23:b9:3c:5a:39:c6:eb:bc:c4:2c:ff:66:d8:e7:
b0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:63:80:BA:5B:54:E1:A4:9F:B2:38:19:70:2A:C7:DE:9A:73:8D:D3
X509v3 Authority Key Identifier:
keyid:AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:61:4c:c6:48:80:63:3b:70:13:b6:76:47:11:85:38:ff:05:
f7:b2:8d:00:83:3d:9f:af:97:c1:40:10:ba:d6:ce:b0:82:40:
c6:69:29:ce:b5:f5:68:72:b5:22:97:52:6b:b6:00:3e:98:04:
f8:5a:03:98:58:16:7e:d5:fd:d3:1a:b3:5f:95:72:1a:06:52:
98:9e:fe:27:bc:f5:ed:c5:1d:99:58:9e:c0:16:17:25:34:1d:
98:08:71:f5:4f:79:50:36:11:a2:ee:b3:e1:b4:32:00:69:4d:
bb:38:d1:8f:63:bf:ed:30:9b:80:dc:cb:d9:7d:9a:75:94:2b:
28:40:28:64:06:5d:ad:ab:6e:34:f2:45:f0:bc:85:91:16:bf:
a3:70:41:8a:93:44:36:c4:57:19:3a:53:49:62:27:63:de:a7:
34:ad:f6:f8:f2:cb:63:b4:01:27:4b:f5:07:15:ad:5b:f4:68:
79:3a:3f:89:73:f2:b6:2c:6f:67:ac:06:fa:41:1b:de:ba:86:
16:42:2c:7c:0c:a1:7b:55:a7:c6:14:74:4d:04:c5:c2:37:b8:
94:86:59:c2:6e:89:3e:46:d4:88:1a:43:8c:70:05:b7:e9:15:
e2:34:32:12:c1:b8:66:72:6c:ab:94:eb:fb:ae:5e:5a:1e:3c:
17:3d:84:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:17:08 2025 by rpki-client