Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.mft
File: B8n9CgjdBL-Yalvahugx34BI8q4.mft (raw, json)
Hash identifier: 4oNGtudNeR1ue5Iz2M2Gis10lIE9KmoZa6Cr4OmVJew=
Subject key identifier: AB:FA:71:AF:30:B4:41:39:23:15:19:57:FD:0E:9E:E9:B3:A7:68:03
Authority key identifier: 07:C9:FD:0A:08:DD:04:BF:98:6A:5B:DA:86:E8:31:DF:80:48:F2:AE
Certificate issuer: /CN=07c9fd0a08dd04bf986a5bda86e831df8048f2ae
Certificate serial: 01967FB3E275408134C81E62C43E2240A974
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B8n9CgjdBL-Yalvahugx34BI8q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 04:00:17 +0000
Manifest this update: Tue 29 Apr 2025 04:00:17 +0000
Manifest next update: Wed 30 Apr 2025 04:00:17 +0000
Files and hashes: 1: 8s5jlmVuyTPiRv4H9BvQU42g7nw.roa (hash: Ucu3y8/kR6J85jmowJDRLpHtgn2LtVqQioF1Y1wmZq4=)
2: B8n9CgjdBL-Yalvahugx34BI8q4.crl (hash: 5Ya7GRPqkHoa3g3oXtcVD7HL/anBu3dtQXuGjHimMas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.mft
rsync://rpki.ripe.net/repository/DEFAULT/B8n9CgjdBL-Yalvahugx34BI8q4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b3:e2:75:40:81:34:c8:1e:62:c4:3e:22:40:a9:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07c9fd0a08dd04bf986a5bda86e831df8048f2ae
Validity
Not Before: Apr 29 04:00:17 2025 GMT
Not After : Apr 30 04:00:17 2025 GMT
Subject: CN=abfa71af30b4413923151957fd0e9ee9b3a76803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d6:c6:d9:e3:68:8e:03:61:96:a4:29:d0:19:
6f:4d:19:e2:ea:b9:f5:30:43:93:61:69:c3:e1:81:
8a:ae:08:07:62:02:e0:ca:42:71:7b:a9:d8:7c:cf:
b6:64:51:b3:ba:b7:d2:7d:c6:97:f6:fe:83:df:24:
eb:42:42:e3:e1:f1:46:d6:0e:17:3f:0e:28:04:ce:
03:62:bc:60:82:22:df:be:13:6b:eb:e1:5d:e4:0c:
9f:a7:b9:dd:70:7a:f7:36:e7:1b:38:cd:6c:2d:52:
60:79:24:f0:8e:9a:ab:50:e3:b6:dd:4f:1f:de:d0:
b2:99:1d:9c:a5:28:15:48:eb:45:a3:57:6b:80:43:
82:4e:6c:da:6f:c3:09:7e:99:d1:1d:44:f1:15:7b:
02:e2:a3:cd:f6:a8:21:9a:0b:1f:42:62:3e:6a:7e:
b4:52:74:c1:b3:a7:f6:35:85:40:5f:95:cf:d4:35:
10:d4:e6:7a:5e:52:31:e1:51:5c:af:99:cc:56:18:
3b:6d:f7:ef:fe:6b:fe:78:4d:02:61:43:52:9b:44:
8d:e6:75:70:a2:f4:f9:b6:23:ad:0e:9c:44:dc:22:
5d:b7:82:3d:8c:f1:28:e3:c6:c8:1e:e3:3f:ce:7f:
2c:27:b5:75:c0:e3:1b:35:1a:59:20:57:d8:67:ed:
4b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FA:71:AF:30:B4:41:39:23:15:19:57:FD:0E:9E:E9:B3:A7:68:03
X509v3 Authority Key Identifier:
keyid:07:C9:FD:0A:08:DD:04:BF:98:6A:5B:DA:86:E8:31:DF:80:48:F2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B8n9CgjdBL-Yalvahugx34BI8q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:df:1d:77:f4:32:15:ce:c0:95:64:94:1c:e4:d5:33:bb:f5:
0c:b6:d2:cb:33:6c:65:4e:4d:71:87:9a:3e:88:b7:a3:f8:8c:
45:70:76:47:cb:a3:92:46:50:f2:0d:15:18:9d:85:d3:fd:77:
89:26:04:49:d6:0e:1b:10:f1:1e:f8:d3:d1:a6:9d:fd:6d:9d:
02:cf:13:4c:07:1b:32:80:ed:33:30:db:a6:74:1b:e5:87:0d:
be:cf:dc:b5:4d:87:06:88:af:87:30:04:d9:46:a8:66:f3:8c:
ea:56:71:d4:92:cd:2b:46:df:c9:2a:00:0b:cc:96:69:2a:f8:
ac:56:70:14:88:23:28:69:a9:0b:f6:ee:fc:b6:f9:74:9c:29:
93:4e:72:7b:32:b1:5d:57:7c:10:ab:30:f9:9b:0c:60:13:ee:
86:56:63:2e:f7:59:9c:dd:6a:dd:fa:61:34:3c:73:45:a2:d1:
cd:e6:1c:0a:a3:77:47:73:53:8a:c9:62:4a:84:3f:10:89:96:
ff:73:e4:da:cf:32:7a:1d:b0:49:3e:fa:ce:cd:50:79:b4:4a:
a9:72:68:40:bb:24:f0:aa:8a:ff:f5:e1:85:e5:f3:7f:31:0e:
17:6c:e4:01:20:11:c1:a6:cd:27:76:ca:a0:37:4f:e1:f2:47:
fc:1c:92:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 07:53:24 2025 by rpki-client