Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
File: jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft (raw, json)
Hash identifier: pWPPlR/9cQ+LHZOn6V82Zm148etm26yCh9DVHStdAjU=
Subject key identifier: B7:55:1B:43:F7:E4:68:74:35:F6:C6:83:BB:9C:4A:69:20:BC:A7:20
Authority key identifier: 8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
Certificate issuer: /CN=8d843b57d0afcc112fe389668bf675d80d8223da
Certificate serial: 01967CB3687E5DCF2C38A9B2CB1F0F9210A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
Manifest number: 0636
Signing time: Mon 28 Apr 2025 14:00:54 +0000
Manifest this update: Mon 28 Apr 2025 14:00:54 +0000
Manifest next update: Tue 29 Apr 2025 14:00:54 +0000
Files and hashes: 1: iKKb1X29tTU2k_RZJyC1P6S0W1I.roa (hash: JYbd5SDgMPm4EIN7ny/Mr7yif1cItUNdM4vZHpLmqsU=)
2: jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl (hash: kl2tMAwZ2iaCrsSdSTLEHRPoTjCoZDZ5Hrr34U6HcuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 14:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:b3:68:7e:5d:cf:2c:38:a9:b2:cb:1f:0f:92:10:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d843b57d0afcc112fe389668bf675d80d8223da
Validity
Not Before: Apr 28 14:00:54 2025 GMT
Not After : Apr 29 14:00:54 2025 GMT
Subject: CN=b7551b43f7e4687435f6c683bb9c4a6920bca720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:30:b6:5f:64:90:3a:8f:d7:1c:7b:5e:69:74:
52:0a:eb:79:30:e6:d7:49:41:82:9b:72:85:7f:5c:
74:a0:32:0d:97:8c:8f:b5:52:f1:5d:9a:f5:06:18:
36:35:8b:34:c3:af:98:9b:c0:b0:04:28:12:86:16:
7d:b0:bf:e2:09:da:c7:3d:bc:28:2f:46:ba:5f:a8:
6d:f0:df:78:ea:4d:aa:c3:02:82:4f:31:0d:1c:d7:
c8:d9:db:a8:34:01:01:b4:64:27:e0:bc:1f:9b:ef:
85:9e:17:45:e6:8b:7e:c4:e2:06:a3:0e:28:21:15:
9e:a7:c5:38:76:af:f3:4e:b5:c7:c9:e8:95:74:23:
07:c3:26:ca:82:2a:8e:8d:2c:c9:7e:c3:76:eb:65:
e2:c5:a4:ca:a1:f4:ce:ef:17:7a:5c:4f:fb:05:01:
e2:52:13:30:c3:33:1e:ff:ac:7c:a1:52:44:0e:58:
d4:09:64:29:ee:dc:25:33:26:2f:62:7e:74:7d:1a:
b8:ca:a0:6b:f8:8c:a4:98:a2:c3:21:61:ed:ad:f2:
87:39:3e:1e:12:c6:95:d7:99:22:db:22:a5:ed:0b:
88:62:d4:93:0d:48:94:c4:63:05:a0:07:9c:e7:ec:
fc:7a:56:87:81:ee:47:87:0f:f3:70:db:d0:f8:8f:
18:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:55:1B:43:F7:E4:68:74:35:F6:C6:83:BB:9C:4A:69:20:BC:A7:20
X509v3 Authority Key Identifier:
keyid:8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:fe:d3:de:7b:02:29:d4:28:13:0e:0a:85:9a:85:61:de:49:
2c:1a:86:06:69:e4:9f:4a:d6:5f:65:a0:7c:29:49:67:36:db:
52:4e:f7:fa:4c:c5:98:47:4b:bd:4c:50:c9:2d:de:b9:74:6f:
51:ac:07:0a:d3:7a:ff:b0:ea:63:59:e3:fb:9c:2c:c1:3d:55:
53:58:52:85:23:b2:22:83:1b:68:be:18:f9:8d:c2:85:db:bd:
99:f7:a7:63:5a:f8:d0:2f:5f:30:22:b4:a0:2b:52:66:ad:5b:
a7:6d:3e:1a:29:9e:e7:3e:44:46:b2:72:bf:01:f4:ec:e4:03:
dd:ca:15:1f:5b:d3:99:0e:a5:82:ea:66:8a:92:88:c8:48:a8:
65:44:ac:de:94:af:a9:ec:36:5f:73:b4:9a:cc:0e:56:8c:c8:
7d:03:2b:8b:1c:80:66:3e:f3:08:7b:bf:f3:f5:08:3f:d2:e5:
06:a8:98:4d:74:63:c4:12:c4:92:51:73:b0:ba:21:70:dd:07:
f4:55:80:4f:ba:af:68:d3:e9:4d:3e:b9:44:2f:94:b6:ae:34:
07:1d:c9:8c:13:d0:eb:b8:5e:0b:e4:e9:64:f0:5f:cd:c3:54:
3b:b3:2e:58:83:25:04:4c:b1:cb:77:6a:f6:f7:ed:65:35:80:
18:8d:f8:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 21:02:13 2025 by rpki-client