Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
File: 8PY2_se1stGN43l-aYTAaVXnFtc.mft (raw, json)
Hash identifier: GsKF9lk0aq4HohkvfjkLNIZFRL8vk2KIXxha4tPdPG0=
Subject key identifier: CF:C1:9E:D7:E4:0C:EE:A4:14:4C:2D:36:D4:8B:B6:78:A8:8D:12:90
Authority key identifier: F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7
Certificate issuer: /CN=f0f636fec7b5b2d18de3797e6984c06955e716d7
Certificate serial: 0196846C77CD3A79DE9D66B3F47C00AE3685
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
Manifest number: 1516
Signing time: Wed 30 Apr 2025 02:00:23 +0000
Manifest this update: Wed 30 Apr 2025 02:00:23 +0000
Manifest next update: Thu 01 May 2025 02:00:23 +0000
Files and hashes: 1: 8PY2_se1stGN43l-aYTAaVXnFtc.crl (hash: TMdgB2b0X0lRCoj4yCLDVhGNY7JrOkPZsGGm6RuHIXY=)
2: rChpwrHAhzHtDWk3Wn4ou5CDTWY.roa (hash: rliHydAwaJdesMgVkjuoZQYXcZjxQiZ7KBN8WESMw/M=)
3: t92LD4JF1zzqhKIJX4gc4PGoZiU.roa (hash: QB9NxoH5XmIj8//Y6YIrgAvA3ml34TrM1hbyfS/v07g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:6c:77:cd:3a:79:de:9d:66:b3:f4:7c:00:ae:36:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0f636fec7b5b2d18de3797e6984c06955e716d7
Validity
Not Before: Apr 30 02:00:23 2025 GMT
Not After : May 1 02:00:23 2025 GMT
Subject: CN=cfc19ed7e40ceea4144c2d36d48bb678a88d1290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:08:c0:8d:a9:dd:4e:73:ee:5f:7f:00:ba:9d:
09:04:a1:65:d9:1a:ef:d4:d5:15:79:de:cf:61:20:
69:75:4d:13:a5:7b:40:56:2b:14:4e:1e:84:cf:93:
d8:cd:d0:05:79:b0:a8:4a:51:e0:40:42:f6:d7:a2:
8e:a8:1e:f4:2a:84:bb:c6:1c:92:f9:70:ad:39:77:
5e:8f:3c:1a:02:7a:8e:b1:63:d8:7a:8b:ed:be:9a:
c1:75:8a:c3:9b:36:41:dd:58:d6:f4:b6:c6:70:26:
dc:4f:64:19:0c:3f:05:ed:bf:14:f1:11:52:d4:f2:
e0:22:f0:5c:37:42:48:52:42:22:53:1d:10:d7:43:
d6:6b:fd:f9:fd:69:51:34:bf:3c:45:55:e2:15:46:
06:b6:a8:23:9b:da:03:74:85:83:9d:dd:45:84:db:
df:e3:27:6e:78:6b:98:8e:90:4c:fb:90:00:e1:7f:
ef:22:48:0e:29:85:7d:f2:64:d4:51:2c:4d:c9:9d:
53:5e:32:e8:9d:b0:94:4b:1f:0c:aa:c2:45:24:0b:
92:8a:f2:c9:00:4c:90:31:8b:78:a8:ad:38:4f:38:
b0:65:81:36:c4:18:e9:e6:12:25:46:e8:e1:21:e2:
a3:f0:1d:1f:82:10:4f:df:49:c1:a2:91:d7:4d:fa:
ec:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C1:9E:D7:E4:0C:EE:A4:14:4C:2D:36:D4:8B:B6:78:A8:8D:12:90
X509v3 Authority Key Identifier:
keyid:F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:5f:a6:5b:0f:89:d6:f6:ba:8e:ac:55:51:62:fb:28:ec:1c:
8b:78:71:4d:dd:16:64:87:ee:86:4e:3c:1a:51:d7:ac:64:94:
cf:d6:eb:32:e5:40:81:19:d8:b8:7a:ff:ea:5d:cd:ac:0b:da:
c9:ad:16:f4:ff:96:2d:e9:22:4a:2e:ba:66:65:df:8e:60:a6:
81:3a:56:ca:27:a0:21:d7:0a:13:e7:9f:e7:ba:ba:4d:ab:c9:
b7:a6:1a:c8:77:28:62:4f:f8:f5:fa:46:e3:d7:44:24:19:ee:
d5:5c:b0:38:44:04:9d:27:5b:1e:64:10:dd:33:6e:e8:19:86:
a5:7d:8c:88:a8:6f:a9:74:2a:cc:1f:1f:15:b4:8e:7c:88:2a:
e7:16:36:2a:46:15:c3:8c:7d:9f:c8:b7:be:5b:d0:e5:0d:da:
a8:2f:f4:32:3c:f5:d3:e9:3d:55:6e:74:18:52:24:4e:d3:1c:
71:c2:64:12:40:3f:ec:7a:03:ba:84:1a:55:e0:df:14:24:69:
6f:b7:ab:03:e7:ad:c5:f9:16:08:0a:02:b8:ba:9a:29:1b:ba:
c2:09:ef:f6:8e:34:09:f3:7a:4c:60:e1:d2:ca:36:13:be:01:
52:d7:e9:0f:c5:a7:4a:84:a6:93:f9:1f:ea:9b:60:6c:c2:57:
14:51:9b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:26:03 2025 by rpki-client