Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
File: syHLgokI9DB0nuOl8qYt5fgi99E.mft (raw, json)
Hash identifier: /9smSx5+3d61m1uXEctlASdv/Uhg3BkdNk95yla9TG8=
Subject key identifier: 2D:12:31:C0:69:D9:93:61:39:76:B6:47:D0:52:C1:D2:57:A9:0A:2E
Authority key identifier: B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
Certificate issuer: /CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Certificate serial: 01967831923CB993FA8BD088F89A530BF555
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
Manifest number: 1050
Signing time: Sun 27 Apr 2025 17:00:36 +0000
Manifest this update: Sun 27 Apr 2025 17:00:36 +0000
Manifest next update: Mon 28 Apr 2025 17:00:36 +0000
Files and hashes: 1: 7Vf5R0kVboHfQe1HmwZydUmPy3w.roa (hash: CSR8lVlOICslmIH5THMhkf2ZR8pm8M7MZ0mWBD2ElFE=)
2: syHLgokI9DB0nuOl8qYt5fgi99E.crl (hash: myhyJ6TrC1U9ubpB4QeOTOIvxoXd+ynV344upK9xJr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:92:3c:b9:93:fa:8b:d0:88:f8:9a:53:0b:f5:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b321cb828908f430749ee3a5f2a62de5f822f7d1
Validity
Not Before: Apr 27 17:00:36 2025 GMT
Not After : Apr 28 17:00:36 2025 GMT
Subject: CN=2d1231c069d993613976b647d052c1d257a90a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:da:e8:70:48:49:15:61:ca:a7:03:ad:cc:f3:
5d:b6:4e:8d:26:c4:aa:38:8a:54:6c:88:5a:83:87:
cd:78:07:16:66:c9:ff:dd:8a:9d:4f:d1:ae:b3:91:
d4:ca:2d:cd:73:cb:49:b9:e2:32:5f:fb:ad:4c:8d:
3d:ab:94:9f:20:ca:e4:42:b4:7c:93:37:a9:ae:ff:
ee:76:20:66:3b:9d:b6:a9:96:af:3e:dc:7f:1e:58:
bd:aa:2d:17:f8:0b:62:1d:f2:7d:f6:eb:05:44:44:
42:f8:7f:2a:ac:d9:6b:b3:10:6f:1b:3c:25:4b:f5:
e9:ce:ce:60:97:e7:4c:67:17:83:83:f7:25:72:6a:
bc:97:c9:27:fa:49:2f:2e:c7:f9:11:f3:5f:fc:88:
3c:92:3d:a5:2e:95:d0:2e:85:33:90:4f:d7:55:90:
fa:af:6b:81:69:01:1d:cd:bf:50:ab:99:c6:21:ba:
0f:28:8b:14:b3:4a:e0:8a:0d:89:c0:dc:40:dc:57:
d3:31:fa:ed:07:f9:7f:cc:e0:16:5f:ad:c9:3c:12:
f3:20:01:e2:45:fb:4c:ed:31:8a:bd:d3:92:ca:17:
e7:9e:6f:62:65:48:48:8e:c0:d9:5b:59:ca:e9:1d:
69:fe:f3:19:fd:49:05:51:20:ae:4b:32:3f:c4:db:
1c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:12:31:C0:69:D9:93:61:39:76:B6:47:D0:52:C1:D2:57:A9:0A:2E
X509v3 Authority Key Identifier:
keyid:B3:21:CB:82:89:08:F4:30:74:9E:E3:A5:F2:A6:2D:E5:F8:22:F7:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syHLgokI9DB0nuOl8qYt5fgi99E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ccaa1a-9daa-44b8-9e26-87f341888560/1/syHLgokI9DB0nuOl8qYt5fgi99E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:f3:87:5b:eb:e5:df:59:30:03:48:c7:85:33:1c:04:43:55:
40:3e:dd:22:1d:81:61:57:9d:15:8e:bd:7e:1c:cc:6e:57:93:
25:9d:d7:e5:58:cd:1e:ea:49:e7:eb:4e:73:b2:7e:3f:61:8f:
36:a8:52:ed:86:fa:d0:5f:94:52:79:ba:79:85:ec:d3:68:34:
df:40:01:80:99:f6:b5:50:ac:16:82:79:4b:fd:f7:99:93:70:
e1:0b:25:96:e8:c2:59:78:d8:87:bf:14:4b:cb:4b:93:68:71:
14:f8:93:51:56:55:c6:db:cd:cd:fc:45:cc:c7:3c:d1:b4:f3:
74:14:b4:66:50:5c:b4:db:d9:26:be:2b:33:bc:e6:0f:ac:7e:
13:f9:ad:66:da:02:e7:6c:5d:3b:57:49:5e:c5:f5:93:63:46:
7b:82:5c:bd:91:85:f4:25:71:df:45:95:73:c9:e8:85:e5:ee:
3a:aa:ee:1a:01:22:4f:9c:d4:a4:05:eb:51:4e:a7:15:b1:2e:
d4:be:49:61:5d:e2:99:bf:76:84:1b:87:d6:c7:f9:49:bc:30:
df:6e:9a:fc:bc:62:99:93:44:40:82:13:ef:d7:2b:e7:b1:53:
26:bc:6e:d2:3f:79:43:47:b5:ed:a7:ed:dc:91:80:2b:71:8f:
3c:50:b3:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:12:47 2025 by rpki-client