Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json)
Hash identifier: +EKKizzg9ZAObSK9c7rhfYqNzyvhubQSp7RWiGg7Wwo=
Subject key identifier: B6:6D:DA:F3:49:D9:15:3E:52:D5:AC:54:BD:4A:7B:76:AD:5E:3C:F4
Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Certificate serial: 01964067728082E279D045806F89F28E1E88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
Manifest number: AB
Signing time: Wed 16 Apr 2025 21:00:43 +0000
Manifest this update: Wed 16 Apr 2025 21:00:43 +0000
Manifest next update: Thu 17 Apr 2025 21:00:43 +0000
Files and hashes: 1: knggMszGXslbbJ2_Oh2Jaifz1gc.roa (hash: 1NY+pqUYlKwDvhTu3JTqY8SDs7jlakZ17fJjnTdwI9Y=)
2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: P0rQ2/MqrazMOScPxqgNPK+2s52OI7l6fCyiHLeI6eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:67:72:80:82:e2:79:d0:45:80:6f:89:f2:8e:1e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Validity
Not Before: Apr 16 21:00:43 2025 GMT
Not After : Apr 17 21:00:43 2025 GMT
Subject: CN=b66ddaf349d9153e52d5ac54bd4a7b76ad5e3cf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2d:06:2a:ce:cc:9f:0b:77:72:1d:a3:67:d9:
be:5d:07:ff:3f:bf:da:91:52:b9:97:64:6a:ee:32:
d8:fd:cf:6f:0a:a1:54:ff:bb:7c:ee:80:55:c8:1f:
cf:06:f0:61:ca:eb:2c:ec:69:d6:cd:c4:32:89:1f:
c0:85:14:b4:3f:8a:21:eb:e0:71:40:75:a8:ab:93:
3d:d4:e4:aa:b1:4d:ec:4c:66:13:51:8b:8f:b7:62:
86:23:dc:80:68:51:f1:ea:e5:72:2e:17:0d:79:47:
a7:4a:f7:a7:56:2f:47:ba:8d:c5:04:85:73:a8:75:
fa:d5:fa:d0:2c:78:2d:95:b6:86:7b:9f:58:29:63:
16:76:f4:79:91:4a:e0:76:35:da:62:9c:08:b0:47:
5c:b2:9e:2a:48:81:b1:42:93:99:bf:ad:30:c9:d9:
62:bd:2b:10:2a:31:38:b0:16:c9:b6:3c:28:bb:2e:
4a:6d:6a:e2:12:19:16:bb:a6:8f:02:13:1e:c4:ae:
2c:89:70:d4:d3:da:fb:f9:7c:95:da:45:10:8d:3f:
ca:8b:7b:f7:92:d5:ad:b4:da:f3:52:1d:67:ce:30:
e6:2c:13:98:d6:26:ba:ee:6b:5c:6b:63:a4:0e:56:
fa:23:a1:71:bf:78:01:fb:43:c2:f2:a8:2c:c9:0e:
5b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6D:DA:F3:49:D9:15:3E:52:D5:AC:54:BD:4A:7B:76:AD:5E:3C:F4
X509v3 Authority Key Identifier:
keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:8e:fb:ad:b9:21:08:2f:dd:93:e6:5d:a5:d2:f5:00:1a:ec:
5e:ef:ec:a4:52:4c:ef:02:7a:3f:75:e2:cf:b7:04:2e:a8:f6:
85:05:a7:18:19:ca:ca:31:bd:2f:d7:4c:c8:19:20:d4:90:ce:
4e:f7:ee:10:59:87:75:53:2e:cd:51:a7:c9:6c:a0:70:1b:91:
e8:e4:7b:2f:4c:86:ec:34:68:a0:7c:af:8e:92:a9:83:8f:05:
97:d8:87:74:08:1e:d0:16:79:a0:87:48:85:92:0c:e8:18:b2:
06:0b:ce:b8:d1:ec:ce:0d:ef:fa:df:b2:29:9c:ea:c8:c9:1b:
ca:29:f3:68:a9:fa:25:34:e8:3e:ea:b9:84:5e:c1:b3:24:05:
4d:74:f0:e2:5b:75:e5:ba:c7:be:22:6c:0d:90:34:ae:ef:b5:
7a:65:70:4e:66:b7:29:2b:99:f2:9f:0a:25:82:3f:f9:d3:8c:
3d:91:c6:31:2f:00:d4:49:1c:f2:f2:82:c0:fe:83:55:eb:10:
eb:81:f2:e1:cf:1a:f7:77:01:69:f4:52:9a:d4:ff:a8:52:aa:
b9:01:cd:5f:ee:15:a4:28:4a:ff:c0:bb:19:94:a2:48:b3:1e:
59:a2:27:d7:4d:8b:1b:3e:ef:24:13:b0:a7:27:b8:10:a2:6f:
5f:9e:49:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:16:40 2025 by rpki-client