Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: ZbrdBnEAp+VZeM7TcDqfemub0BZBg6PelNu9zz4POBo=
Subject key identifier: 7A:3F:8A:F9:66:48:3A:C5:8B:2F:67:A7:11:E9:47:44:53:2F:99:EF
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 01969A195EFA8F091347FF742ABC0CE4A209
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 023D
Signing time: Sun 04 May 2025 07:01:16 +0000
Manifest this update: Sun 04 May 2025 07:01:16 +0000
Manifest next update: Mon 05 May 2025 07:01:16 +0000
Files and hashes: 1: 9jS2v21J95xARBtQOtdTT0EtYBQ.roa (hash: BeiYvaVP67aUM+eVkzjpflxlaHwkNmiJmUTQZAVqkOQ=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: PHH8f7iDqCK2tIrN2anr4jZ/HLVlBBds9dZNKsbxfrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9a:19:5e:fa:8f:09:13:47:ff:74:2a:bc:0c:e4:a2:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: May 4 07:01:16 2025 GMT
Not After : May 5 07:01:16 2025 GMT
Subject: CN=7a3f8af966483ac58b2f67a711e94744532f99ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:11:44:1e:88:f1:71:4d:7b:fb:f8:83:27:a5:
2c:9f:d6:99:8b:4e:d1:dd:6d:d0:14:6f:84:99:ba:
78:87:f3:23:00:9e:a3:20:20:31:fd:03:1e:e7:59:
d1:37:ac:a9:25:9c:61:75:78:75:e5:dc:e5:7d:05:
a2:48:9a:ad:39:c7:4d:aa:fd:00:1a:d6:19:61:c1:
72:4c:1e:ff:0e:63:99:71:b3:26:a1:49:4f:7d:f3:
af:1e:17:b9:a9:43:3e:1e:1c:72:30:92:17:1c:d2:
42:eb:2b:94:30:7d:55:75:2d:a6:de:45:41:08:3f:
68:b6:d6:be:82:5a:9c:95:46:ab:6c:b1:81:32:e9:
4a:67:0d:4d:d2:a1:b1:26:23:e4:3b:02:91:42:f5:
bf:73:54:05:61:9e:5f:95:38:9b:6c:76:b6:71:9e:
4c:2a:10:43:2d:0e:72:0a:24:b8:53:25:90:f7:3f:
df:04:e4:4c:6c:ee:ab:0b:21:86:f6:22:85:97:1f:
69:09:64:e8:3a:f7:b9:5a:8d:4e:1d:34:92:f4:6d:
0e:e3:cf:b6:4f:09:00:79:c0:bc:5c:0e:4a:71:d6:
87:f5:7b:b3:26:97:6d:b0:dc:ff:b3:18:3b:33:5d:
dc:c5:8f:cc:15:3b:a8:9d:5c:66:1c:14:f4:b1:bf:
50:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3F:8A:F9:66:48:3A:C5:8B:2F:67:A7:11:E9:47:44:53:2F:99:EF
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:67:1a:37:d0:ad:b9:51:03:6a:98:81:09:84:cc:28:77:ca:
7b:ee:34:0d:25:ac:f5:5d:34:bc:36:97:05:57:eb:e5:61:83:
4f:00:0a:2b:e7:ba:b5:76:57:56:73:fa:9c:be:99:39:a1:b4:
b0:7c:22:00:42:f7:d8:09:ac:57:49:cb:12:da:31:fe:c1:af:
ae:e3:21:2e:6f:3b:f6:93:1e:5e:48:12:d5:f3:1f:6b:8f:f2:
3e:e9:ad:07:31:76:34:13:cd:14:aa:7d:32:49:39:2b:40:d6:
01:ae:80:50:e5:14:34:e6:f7:f7:cb:16:73:b4:0d:07:1d:e9:
41:9c:8c:88:20:c8:9d:17:3a:1d:96:60:a4:15:7e:f0:e0:b5:
04:b2:7b:db:e0:56:e6:1d:2f:11:fb:96:50:e8:92:c6:93:97:
18:90:fc:8e:13:6d:e2:ef:b1:13:5f:f9:e3:66:fd:a9:ed:0d:
e2:63:55:c2:cd:00:49:e2:21:21:bb:5a:4f:c2:c7:6c:3e:07:
2e:d8:74:57:fb:ff:98:3d:d5:5a:c5:89:fb:07:19:be:9a:2f:
21:f3:37:cb:3a:b1:00:5d:8c:8e:ed:39:5f:ad:ef:68:4d:a6:
e3:48:b5:74:39:b7:6c:f3:1a:a0:c8:c7:dc:0a:00:44:9b:fb:
a7:d4:e5:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 10:10:35 2025 by rpki-client