Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json)
Hash identifier: E31GBaylOwAG2SxwaJChus+oyTOTB4ZYSWAuEb5wPaU=
Subject key identifier: 1F:67:BC:E2:B5:34:BB:AE:49:86:69:51:AF:6F:1C:3B:48:80:FB:6C
Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40
Certificate serial: 01967F46187DAC04408496C25DF326AE2775
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
Manifest number: 1513
Signing time: Tue 29 Apr 2025 02:00:22 +0000
Manifest this update: Tue 29 Apr 2025 02:00:22 +0000
Manifest next update: Wed 30 Apr 2025 02:00:22 +0000
Files and hashes: 1: a0gi81K4PU-mZZPSh82aNeLjsVI.roa (hash: Id1bqvDurbpWKdNvf29qBzclAu3m5HKcR5Kg3lRHGKE=)
2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: on9gFiU2vukAzZcXELJoZTeaH/7/NUJbKhhqkWmiiWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:46:18:7d:ac:04:40:84:96:c2:5d:f3:26:ae:27:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40
Validity
Not Before: Apr 29 02:00:22 2025 GMT
Not After : Apr 30 02:00:22 2025 GMT
Subject: CN=1f67bce2b534bbae49866951af6f1c3b4880fb6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:08:89:be:84:c1:a3:67:87:ec:e5:77:bb:3f:
24:0f:c4:70:ac:b1:c4:48:e0:7d:0b:f4:07:eb:d0:
74:35:cd:0d:b8:f2:07:ec:96:26:1f:ea:f2:f0:e9:
de:1f:0f:ca:4b:cc:6d:ed:2d:aa:00:52:e8:36:05:
a6:d2:a7:fc:a8:18:5c:b8:11:77:70:20:97:1b:df:
d6:60:d7:bb:62:49:94:9c:32:07:99:2d:06:2a:c7:
cf:01:7e:df:27:0c:d8:55:1f:9c:dd:8f:68:c5:7e:
fc:0e:da:50:b7:6f:fc:fb:10:a2:ec:61:b9:25:09:
98:21:a6:d0:9e:c2:40:9b:c6:12:8b:39:ba:52:29:
11:96:e6:4a:f2:df:8a:0a:8c:13:bf:40:ef:82:eb:
81:82:f8:29:61:c7:8c:7c:38:df:49:2a:e7:45:3d:
ea:59:d4:85:1b:08:a8:ec:9b:8f:ce:54:9a:40:d0:
21:d2:6a:1a:f4:ed:a4:84:11:dd:9b:9f:54:48:ed:
ef:e9:26:13:29:34:b0:55:ef:bc:a8:ac:8a:19:3c:
31:a1:e8:30:01:0a:41:f2:8b:99:1d:53:93:71:ff:
e8:e2:c7:ff:72:aa:86:3a:0b:b3:bb:b8:28:5d:5a:
51:b4:6f:67:ae:2b:ec:d8:ec:45:ba:74:9e:ed:c8:
81:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:67:BC:E2:B5:34:BB:AE:49:86:69:51:AF:6F:1C:3B:48:80:FB:6C
X509v3 Authority Key Identifier:
keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:d8:74:f1:a7:27:d5:98:a8:7f:bc:45:f5:e4:23:2c:82:bf:
2c:5d:f4:74:bd:5e:15:95:4c:86:8d:16:68:0c:68:65:f5:fd:
e8:d0:70:b0:5e:21:e0:1d:64:2e:f5:a4:a7:cb:e2:a5:8e:ec:
c4:88:40:14:46:eb:0c:d6:f5:8e:df:29:e2:89:2c:03:60:f8:
66:42:d5:30:52:7a:88:31:18:9c:9f:17:14:2b:8b:73:38:68:
37:9a:94:ec:9d:ae:6d:64:0a:8c:62:ac:d5:e2:6e:3b:00:eb:
be:18:22:93:13:c2:ff:aa:fc:7a:36:f8:80:f8:3e:f9:5e:0e:
37:c8:60:36:03:2c:49:01:30:f4:97:55:29:3f:b4:39:8c:b9:
67:1f:f6:2b:86:cb:62:77:50:d4:59:a9:fe:22:c8:a1:1b:8a:
f0:02:1a:97:7f:af:b5:cc:cc:89:07:33:01:9f:0e:f8:52:0c:
17:a6:2a:44:d7:dc:54:f2:01:8f:24:93:a1:26:7a:8e:b1:53:
9d:60:04:06:6d:e4:d7:8b:50:67:e2:aa:d1:27:ff:3d:f2:dc:
12:32:69:16:77:97:af:36:b5:b7:72:03:e3:99:4b:35:78:4e:
b4:3c:6a:aa:64:e3:d5:d0:e1:62:bc:9c:33:1f:0f:99:41:75:
44:74:36:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 10:21:13 2025 by rpki-client