Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
File: JY9ajila0de0ih4RlYeQBStXolM.mft (raw, json)
Hash identifier: g2EUkieSA3o3xRScqNRWG7tRdJp1zJ2r4LradHXXxvM=
Subject key identifier: 8E:ED:69:C4:D1:B5:36:37:96:CF:8E:69:D5:ED:CE:97:FC:EF:6E:2A
Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Certificate serial: 019673B02D471E5A699D1CC2C4BBCF698A95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
Manifest number: 1465
Signing time: Sat 26 Apr 2025 20:00:47 +0000
Manifest this update: Sat 26 Apr 2025 20:00:47 +0000
Manifest next update: Sun 27 Apr 2025 20:00:47 +0000
Files and hashes: 1: HL0tpswU2gQezd0-x9ZWDdfR-RY.roa (hash: NAIPlF1KgdG7sggbmAwv2GRB6aTgtE/arOeqKYJF690=)
2: JY9ajila0de0ih4RlYeQBStXolM.crl (hash: SQyuvzoOfxaJy1gWUMepBWpKObfSHU3CT41oNe7sBPo=)
3: X5-jl_Od0mEO_dSg7rALYkevjoQ.roa (hash: xqc4fnPLjvYYKZxEv5pbNLPSZEhrMf7SnWN3fQ6sCO8=)
4: ljF5u-YRkQFhR1-JzkqgY4rX8fg.roa (hash: yARJg/r5KzAJTCBC6Aa8YbBreZ5SqvZOXFrSvclMQ38=)
5: s_QDIrLshBQNlu6RPwCemGYvy74.roa (hash: 6Y18bq+vtApdDZHTDEQgo5JwDFt4pJR0lVY1yqjzjsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:b0:2d:47:1e:5a:69:9d:1c:c2:c4:bb:cf:69:8a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Validity
Not Before: Apr 26 20:00:47 2025 GMT
Not After : Apr 27 20:00:47 2025 GMT
Subject: CN=8eed69c4d1b5363796cf8e69d5edce97fcef6e2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:27:b7:c8:98:63:98:9c:bb:17:aa:8b:7b:12:
96:37:99:99:21:2a:3b:c2:a2:6e:b2:30:78:6a:d9:
19:9d:9a:43:d6:01:ae:d8:dc:f9:91:db:2b:18:16:
40:fb:db:4d:ca:91:2b:5d:b6:1b:d6:c1:8a:5b:d9:
d1:6b:e7:df:23:95:4b:c5:c8:f0:8a:64:bf:7b:6a:
38:96:6c:93:bd:83:36:4b:3b:41:e7:ad:4f:95:85:
58:4d:0a:b7:31:08:d4:ea:af:e5:17:6f:a9:36:00:
8c:d9:6b:40:3f:14:f8:0c:1e:1d:35:d1:cd:6d:37:
ed:bb:cb:02:f2:21:57:3e:c4:f1:da:fd:d3:a9:b4:
31:65:9d:08:c2:1a:4b:fd:eb:5c:3d:ed:c2:4b:93:
de:ea:dd:76:60:85:d6:7b:26:5b:6e:10:7a:10:76:
3d:ff:a0:de:6d:e2:93:10:8f:81:2d:49:1e:0e:80:
84:e9:c5:16:3a:a2:52:ed:c6:03:a6:ac:ec:56:9e:
75:c6:78:33:95:1c:73:32:cd:10:32:8f:c3:0a:36:
9d:80:33:0a:7a:16:38:5d:51:87:89:42:cb:bf:b1:
ab:b3:85:01:83:77:4b:b4:d1:97:a9:ce:da:75:fc:
f2:da:a9:b3:e4:ca:d1:30:29:40:f1:a9:ae:fc:27:
9e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:ED:69:C4:D1:B5:36:37:96:CF:8E:69:D5:ED:CE:97:FC:EF:6E:2A
X509v3 Authority Key Identifier:
keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:70:36:d3:a4:1e:8a:f9:ff:e9:38:10:34:6c:86:82:a3:2b:
6a:e0:2b:fa:5c:db:a2:71:4c:f3:72:49:0d:68:10:c1:82:30:
d1:bf:2a:2e:07:1e:30:41:66:5c:aa:17:c6:f8:60:d3:49:70:
2a:f4:4f:b5:34:59:38:3f:df:36:95:11:57:6a:fe:45:d4:b9:
32:ec:0d:8c:9b:75:d8:b9:47:ae:84:aa:2c:6b:f1:f1:fa:04:
48:ec:f8:da:df:c4:1a:74:d5:a4:a4:17:26:9d:a5:98:c6:f2:
b9:75:0a:28:5f:01:5f:cc:61:2c:cf:62:df:f8:bf:43:2b:b1:
c1:68:9d:0b:11:eb:7a:54:aa:11:3f:45:df:22:3d:78:48:94:
50:87:9b:c2:7c:dc:c8:13:6c:d2:49:e5:28:3f:69:74:bb:46:
67:1f:93:fa:92:f6:51:55:06:b0:aa:63:53:c1:c4:43:19:ff:
22:11:6b:42:65:44:22:11:0b:f6:b1:6d:2f:33:53:a8:72:de:
6a:06:24:a5:19:33:b3:13:f7:98:91:e4:11:f1:49:d0:34:2d:
4a:fd:e2:b1:16:6d:ee:b5:3d:9e:36:80:e1:3f:22:4d:07:04:
1a:4c:68:28:0f:37:61:91:25:06:2b:d5:b5:6d:c7:a8:b7:24:
54:67:7e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 23:10:32 2025 by rpki-client