Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json)
Hash identifier: yeauqp9IPiltC/JPyIQHXiYYFFcgJXmU48eVoNtF5+Q=
Subject key identifier: 59:7C:71:05:75:50:F8:73:76:BC:E2:08:7C:82:93:D1:25:D1:B9:A9
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 01968ADC90D4C6C20716A28AB755E36CE76E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
Manifest number: 099B
Signing time: Thu 01 May 2025 08:00:32 +0000
Manifest this update: Thu 01 May 2025 08:00:32 +0000
Manifest next update: Fri 02 May 2025 08:00:32 +0000
Files and hashes: 1: DpCybAm9bBRoUpHGAuIQ86Lq5pw.roa (hash: 2p6cZB/6xzzCJ7jeUbBrD5Bf0hcHEh4tn/vPl+35cnU=)
2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: 5BjnHs+OHVCnKq/gtZQohSlZDs6BOpEsu0EezIQJjQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:dc:90:d4:c6:c2:07:16:a2:8a:b7:55:e3:6c:e7:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: May 1 08:00:32 2025 GMT
Not After : May 2 08:00:32 2025 GMT
Subject: CN=597c71057550f87376bce2087c8293d125d1b9a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:9e:36:9b:ad:f9:73:ac:66:4f:80:c2:dd:e7:
93:3f:5e:b0:59:c7:c5:94:3f:16:ae:62:14:72:3c:
b3:51:61:e0:9d:e8:21:db:c2:94:93:d9:03:4f:62:
08:11:9e:09:2d:da:27:c2:ca:2d:66:10:45:4d:a7:
25:c2:aa:8d:ba:93:6a:fd:45:05:95:85:4d:c8:a4:
61:4b:37:b9:8d:fb:6c:80:3e:8b:a0:67:90:51:a6:
5f:26:06:bc:e7:84:5d:25:8e:20:c0:b5:a8:7d:7b:
55:92:bb:bc:8e:2a:13:79:96:50:e7:7c:ea:38:7b:
b4:1f:20:33:fa:fe:b6:c0:99:9c:ce:0e:36:1a:69:
78:b8:a0:64:e7:08:25:30:72:89:f1:98:ee:6d:ec:
b6:31:3f:5e:b4:8d:a3:5d:2a:bb:6e:71:0c:bb:85:
dd:f8:3f:8d:53:0b:a8:3d:c0:a6:fc:cc:f7:b9:c2:
34:6c:77:22:85:f5:13:96:01:c2:58:0a:ed:62:15:
59:75:2e:f6:8e:5f:ec:3f:5b:86:5c:d8:15:ee:ff:
ac:48:5d:d4:5d:a5:fb:19:d8:dc:b2:5e:cd:6d:76:
af:ad:85:25:db:4e:cc:3d:af:5f:40:c0:ea:e2:67:
3c:4c:af:68:ba:9e:fe:36:42:d0:a8:df:a2:02:90:
e4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7C:71:05:75:50:F8:73:76:BC:E2:08:7C:82:93:D1:25:D1:B9:A9
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:e5:09:18:89:1c:bf:63:85:44:bf:76:76:69:da:0f:99:a0:
98:26:0b:ac:cb:ab:f8:0e:8a:16:49:0c:9c:7a:cd:6f:4e:fb:
4f:54:8a:90:89:29:49:41:cf:33:7d:2a:73:8a:fa:a5:2b:71:
98:fb:4e:c6:ab:54:c2:8b:99:47:f3:03:b4:a1:8b:93:21:0b:
f0:cc:dc:84:fa:e0:09:3d:40:c9:bc:14:4c:51:e2:37:de:98:
ea:f7:ba:86:fc:7c:c0:7e:f5:09:7e:bc:4f:ed:6a:1c:46:ad:
a8:d9:75:b5:3c:3b:28:46:4d:fc:d3:5c:85:0e:df:17:c5:07:
ca:74:ed:9f:7e:df:37:20:3b:6a:e9:12:35:09:81:60:0b:45:
35:0e:ea:13:51:a5:f8:c5:af:9f:55:a8:e0:53:32:2a:31:3c:
13:fe:10:e9:a8:2f:8f:7a:27:f2:86:cf:1d:5d:e8:47:27:d4:
94:2d:9f:7a:4a:b4:56:b9:fa:33:ba:86:bd:7b:b6:03:3c:22:
46:cf:dd:cf:20:0c:03:44:cb:ba:5f:9c:bb:d1:6e:51:a6:89:
02:26:79:55:26:14:88:33:e9:49:14:b6:75:ce:60:a1:46:52:
8a:13:51:1a:3e:ae:b2:57:ef:69:e8:12:40:ee:2f:72:04:2d:
b6:9e:ed:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 13:55:38 2025 by rpki-client