Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
File: y9lerW0qHa8u9oestMKedgdrKAk.mft (raw, json)
Hash identifier: h4SGDjx/5s9Zw94v0WZ5/XIOq7huirWAM/IucKnvz+M=
Subject key identifier: FA:53:89:C0:B4:FF:24:0E:B7:04:1F:E1:5B:A5:68:ED:88:C7:A4:65
Authority key identifier: CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
Certificate issuer: /CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Certificate serial: 01964E9082CC5A718C98B822F63E05ECE0C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
Manifest number: 08DC
Signing time: Sat 19 Apr 2025 15:00:15 +0000
Manifest this update: Sat 19 Apr 2025 15:00:15 +0000
Manifest next update: Sun 20 Apr 2025 15:00:15 +0000
Files and hashes: 1: dLJ0i3DKxKOgLSZU6DT_1_-wzDs.roa (hash: R+7BGQyfLFShlywgi4Re33H2XJ0XnH/YSJRVXJB4EDE=)
2: y9lerW0qHa8u9oestMKedgdrKAk.crl (hash: x2Zd61PABxDLI+3G4qGVCWoxTqSmA+HXPGEX2O77oLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 15:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:90:82:cc:5a:71:8c:98:b8:22:f6:3e:05:ec:e0:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809
Validity
Not Before: Apr 19 15:00:15 2025 GMT
Not After : Apr 20 15:00:15 2025 GMT
Subject: CN=fa5389c0b4ff240eb7041fe15ba568ed88c7a465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3f:82:24:7c:eb:26:70:31:02:51:ab:d4:e7:
86:66:8f:da:82:a6:60:24:88:e4:e6:de:0d:23:d2:
17:0c:19:20:5b:5c:56:67:ce:47:7f:cd:2b:d5:76:
82:4a:f0:b5:6b:87:dd:af:d7:6c:ad:81:53:5c:3e:
1b:25:8f:ce:f4:d3:a7:72:22:66:53:71:d0:3d:85:
d9:79:de:7a:69:09:e3:1c:dc:bb:7f:12:fb:cf:fc:
ec:e6:36:d1:61:eb:86:24:cd:24:3c:c9:b7:f5:24:
12:42:96:15:a5:7c:48:02:62:ff:01:2d:34:93:0c:
de:a5:9e:cc:25:49:d9:17:57:51:83:41:63:bf:30:
0b:6e:47:51:2e:06:49:2e:ce:15:b1:c9:4f:a5:db:
14:04:3f:ef:f6:c2:0a:1a:79:76:7d:a5:bd:3a:f2:
35:d5:85:af:c1:df:78:9a:d9:a6:50:78:38:c9:a7:
3b:0b:62:40:7b:2f:d5:ed:ab:d6:55:ff:73:6c:a4:
13:12:f6:01:2e:55:14:1c:9c:41:94:43:21:18:75:
e1:d4:3e:fb:f4:47:cd:b5:04:47:87:04:3c:a5:60:
2c:07:69:a2:41:d6:cd:07:6e:15:40:d6:b4:d0:0f:
fe:80:30:62:e0:66:db:d1:59:13:88:d7:b9:71:34:
b1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:53:89:C0:B4:FF:24:0E:B7:04:1F:E1:5B:A5:68:ED:88:C7:A4:65
X509v3 Authority Key Identifier:
keyid:CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:17:7c:92:b5:c8:e4:b0:20:e2:7b:4e:b7:39:8d:92:20:fa:
5f:69:37:2c:c4:06:ee:33:00:2e:5a:e7:cf:67:ae:f9:c4:be:
41:15:96:ac:83:d2:2f:15:ff:8c:5d:4a:cc:9c:ef:09:1a:86:
55:39:b5:2c:9f:ee:92:ef:92:b9:08:05:ad:c6:b8:b1:dc:7c:
9f:f4:13:3b:42:90:88:da:28:14:11:c6:74:0a:11:3f:1f:82:
79:a8:9a:fb:6b:93:8e:ac:8e:a1:76:11:35:d4:5c:69:d8:f4:
20:10:3d:8a:55:cc:3f:2d:97:30:ab:65:96:23:ad:ce:be:76:
a3:bd:15:82:f8:21:de:65:80:b8:31:c1:a0:5f:03:93:35:d3:
e2:53:ed:99:43:2c:c7:5f:f2:ae:ca:f8:9b:cf:3f:13:db:8c:
35:0f:a2:e3:93:7f:ee:e9:6c:5f:88:aa:55:fe:cc:2b:ea:c0:
35:39:b7:0d:61:a2:79:a5:5a:c7:05:9e:2e:c2:6f:b7:14:d5:
5b:4a:f9:ca:07:1e:5a:51:32:94:da:0d:5c:d0:fd:97:68:6d:
e9:93:48:f2:9b:e1:b0:f9:58:c2:3b:ae:16:a6:9d:6f:91:58:
23:24:ac:36:98:af:b0:34:8b:3d:7e:ad:43:43:75:52:c5:84:
e8:83:16:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:35:12 2025 by rpki-client