Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: u3U3ero48WVg11PqquUtn+w/Zsbqf9Mym1seWzEJERo=
Subject key identifier: FB:24:A8:0F:46:11:4A:55:0A:90:20:9E:EA:02:69:C1:29:22:6E:84
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 0196759E92C3FC8DA200EA662C3FA08E1E90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 02F1
Signing time: Sun 27 Apr 2025 05:00:48 +0000
Manifest this update: Sun 27 Apr 2025 05:00:48 +0000
Manifest next update: Mon 28 Apr 2025 05:00:48 +0000
Files and hashes: 1: OpWpWHElMT6Em0cb46EU4-eZHBM.roa (hash: UkmgnvSBtnTTqSpYqYCCjTjePdoSg2sK2f+rfkHw/HY=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: YiUreahTcwQtGgoaOysid6DfVsBMATZys3s+dhFtZM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:92:c3:fc:8d:a2:00:ea:66:2c:3f:a0:8e:1e:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Apr 27 05:00:48 2025 GMT
Not After : Apr 28 05:00:48 2025 GMT
Subject: CN=fb24a80f46114a550a90209eea0269c129226e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d7:8a:05:9b:80:98:35:57:41:7b:98:dd:12:
af:4b:92:a5:3a:3d:ea:93:5c:1d:2a:d4:3d:fa:85:
d0:f9:de:9f:06:2f:b6:96:b5:20:a5:12:a6:62:ca:
86:45:ac:23:73:e5:87:2e:37:09:a1:3a:09:86:f1:
10:c2:f0:bf:f4:cc:e7:5e:23:a8:4b:68:39:88:2c:
c2:15:be:03:ca:ee:93:06:18:59:f8:14:e1:0d:2b:
70:dc:a9:24:51:1c:c3:b5:ff:c9:b2:83:8f:7a:56:
a5:ba:16:d1:72:9e:04:0b:20:ae:5b:2a:74:be:a3:
c7:b6:5b:3e:3c:61:14:9f:8c:67:50:93:45:fd:66:
05:8c:97:cc:ca:d7:ed:13:c6:37:d1:85:eb:f3:87:
f0:1f:a9:7e:ef:ca:26:6b:e4:32:7e:9e:35:80:b1:
da:98:de:20:69:ee:e1:cb:0b:33:6f:06:3f:ae:71:
9a:d7:43:ca:09:c7:43:46:5e:70:86:30:eb:b4:06:
65:70:c8:e0:55:15:54:c0:b1:77:3e:8c:81:7a:00:
3d:e2:30:01:ce:00:d7:b8:b5:29:a2:e4:65:89:aa:
62:a1:f7:cc:b5:99:55:d9:5f:6f:29:9b:57:f1:a3:
5a:f3:6c:b3:08:c7:fa:2d:8b:51:f0:3f:07:76:e4:
8b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:24:A8:0F:46:11:4A:55:0A:90:20:9E:EA:02:69:C1:29:22:6E:84
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:60:95:53:e9:e9:bb:b7:be:99:10:92:c5:9e:6c:b3:76:d2:
08:bf:37:34:0e:fe:0f:62:3c:13:f7:55:12:69:c5:58:d4:bb:
e1:15:be:b1:dc:62:69:6e:5b:ac:78:50:d2:2f:2d:e2:a4:98:
c3:b3:d5:27:13:00:1c:ed:02:d3:9b:31:e7:d3:83:58:7d:d9:
be:15:fd:89:16:1e:54:32:9e:22:fe:b6:71:95:aa:dc:3e:a2:
ee:d4:ab:4d:af:2a:6f:02:f5:86:f3:ff:9d:c0:2c:6e:fa:b0:
20:44:a9:f3:12:81:53:57:f0:3f:32:59:82:a9:18:db:9b:46:
b4:92:28:ae:c6:fd:5d:e9:e1:7e:23:60:c4:95:68:c4:8b:f4:
f2:bd:77:f1:5c:79:37:98:86:a5:3c:e5:f2:b3:af:2e:b9:8d:
9c:9b:07:2d:11:5e:f2:00:97:1f:92:20:ae:52:d0:ed:62:04:
71:69:21:32:8c:a1:7e:c0:51:50:0a:57:44:17:bd:c9:e7:84:
ae:05:60:c8:72:c8:31:4e:74:bc:42:d7:34:7f:df:64:c0:0c:
21:d5:5e:39:49:f9:11:91:f1:67:cb:3c:87:62:86:82:c3:ab:
13:ed:50:32:bb:df:80:35:cc:d5:20:05:5a:f8:98:35:1b:91:
fa:a6:18:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:49:28 2025 by rpki-client