Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.mft
File: jYQmVhd7QmerVeS6FlpewA9QhLw.mft (raw, json)
Hash identifier: j7llgAWK9fK3TLKhsYCCBB0o0ibU6vpGoaW0corQLhc=
Subject key identifier: 86:6B:D9:A6:6D:8E:80:41:1D:64:AF:8B:9D:81:E9:2D:12:EB:84:0A
Authority key identifier: 8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
Certificate issuer: /CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Certificate serial: 0196895C9CC1CFA42E3B1A686C680CDD102B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.mft
Manifest number: 151D
Signing time: Thu 01 May 2025 01:01:10 +0000
Manifest this update: Thu 01 May 2025 01:01:10 +0000
Manifest next update: Fri 02 May 2025 01:01:10 +0000
Files and hashes: 1: RJ12iqBIGMdg63G0MMvg2LDMix8.roa (hash: sESw+q0gARk5gtp41IohBHW+APoentCrsvNrV3WWi+U=)
2: aUmaQEWRoE1QO_xmwTCfYrd0iAI.roa (hash: KmZy81mfy9sZbmzpjyQc2GLJJhLJJJePfwOXkxp6EMc=)
3: h17YXZJyvSVJKfuRPJwacmnQTko.roa (hash: gCm2d2N9654aioOcioiAbPWA94RRy8WmG63hHdr1o54=)
4: jYQmVhd7QmerVeS6FlpewA9QhLw.crl (hash: aHwSRUN36TPULwUgba2wtAtuRqM4SXVRHconPeSvLUA=)
5: vum5ModJUNyeXtPPKIV3l7J0g94.roa (hash: zPI/RZhzXTNYTyqGgKwTajtQQ1UJGC+Yon4LK77IQPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 01:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:5c:9c:c1:cf:a4:2e:3b:1a:68:6c:68:0c:dd:10:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Validity
Not Before: May 1 01:01:10 2025 GMT
Not After : May 2 01:01:10 2025 GMT
Subject: CN=866bd9a66d8e80411d64af8b9d81e92d12eb840a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dd:d4:96:70:2a:1b:3c:e1:05:4b:e3:a7:a0:
d7:4a:9c:50:3a:11:14:6c:b3:4f:38:cb:58:da:8d:
57:f6:4f:63:d8:fb:d7:df:7a:f9:02:5b:92:4d:e8:
5e:cb:45:83:76:5e:98:b1:c6:83:9d:49:27:ed:8e:
30:70:b7:58:3d:be:bc:8d:f8:78:f1:03:d0:82:e5:
a4:9f:7b:30:0b:9c:a3:a8:52:6d:3c:99:58:49:a2:
79:4b:5c:00:44:14:f8:6c:2b:9c:6f:cd:b6:76:08:
21:54:e0:9a:ec:5d:fc:ae:44:0c:c5:2b:10:f5:93:
ab:43:68:b2:c0:14:c0:a0:57:03:19:1d:26:68:12:
48:f4:8a:8d:a2:8a:c7:d3:74:fb:f5:c0:eb:f0:18:
ba:d8:21:ce:4d:4c:8d:76:ed:05:f3:ba:a7:d0:6d:
2e:aa:db:28:97:17:45:1f:1d:ae:7b:10:f8:63:8e:
54:ce:57:47:fb:c5:ca:e8:41:a6:cd:a2:c3:98:81:
2f:c3:79:8e:e8:aa:4c:64:9a:71:7c:d6:37:01:ad:
7a:66:44:3e:a4:3e:2a:47:02:4d:06:2b:69:8e:3b:
b4:ae:a0:40:5a:ca:83:4a:0a:45:77:6e:0a:fb:b0:
bc:fe:4b:9c:62:b1:06:fd:40:75:59:01:9d:c6:53:
73:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:6B:D9:A6:6D:8E:80:41:1D:64:AF:8B:9D:81:E9:2D:12:EB:84:0A
X509v3 Authority Key Identifier:
keyid:8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:6f:ac:0e:40:c7:ea:10:dd:f8:81:9c:64:25:26:e6:19:d9:
e6:2f:f5:4d:6c:27:c1:5e:f5:49:05:77:92:a6:54:60:24:82:
f6:0e:ee:e4:dc:fc:38:52:af:c8:5a:22:fe:35:cb:ca:14:1d:
d5:eb:ac:26:08:19:bc:ff:16:5c:62:0f:a3:a3:f1:2d:ac:b7:
09:cb:3c:8a:b1:15:28:21:ff:27:84:ad:8c:34:25:78:43:ff:
6b:4d:aa:9b:f1:43:c4:41:78:c1:f2:68:a7:ed:9a:3b:6d:ef:
ae:42:19:7e:53:82:e0:fb:96:ce:d4:36:82:3c:61:36:78:f7:
51:f3:df:28:97:30:e9:ad:fb:08:3a:84:14:e3:c2:9a:c8:42:
e8:7a:c5:bb:b0:27:95:07:55:2f:da:b8:3c:a3:6a:fa:e9:ca:
60:0d:08:91:3f:37:ac:86:d9:19:c2:75:fe:66:96:6b:9c:02:
41:d7:b0:d6:89:95:1d:c4:cb:eb:fa:32:d5:9c:d6:33:54:10:
0b:f2:7c:31:5a:a1:e4:89:5f:b3:18:f9:f3:70:83:ac:29:35:
c1:6a:4e:79:ce:8a:c5:ec:4b:d0:ed:53:33:b3:8e:29:36:33:
22:69:2a:76:65:bc:f4:94:97:4e:c5:0d:24:83:42:69:d2:3f:
8c:4e:17:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:34:34 2025 by rpki-client