Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
File: sYfM7EmqX2aqAmSNkbSi7o_3veY.mft (raw, json)
Hash identifier: i+TCE3s+hFC6qxnj41L7UurzJDlpq92fEQcnH9XhV5s=
Subject key identifier: DA:1A:C2:05:8F:96:BB:1B:33:41:21:9E:99:78:EB:9C:FA:B5:14:A6
Authority key identifier: B1:87:CC:EC:49:AA:5F:66:AA:02:64:8D:91:B4:A2:EE:8F:F7:BD:E6
Certificate issuer: /CN=b187ccec49aa5f66aa02648d91b4a2ee8ff7bde6
Certificate serial: 01967D57EBCEE51DA63E68C5BE31C4AEA5F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYfM7EmqX2aqAmSNkbSi7o_3veY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
Manifest number: 0241
Signing time: Mon 28 Apr 2025 17:00:36 +0000
Manifest this update: Mon 28 Apr 2025 17:00:36 +0000
Manifest next update: Tue 29 Apr 2025 17:00:36 +0000
Files and hashes: 1: OfdMOcUbbc7oEojb1zo08qkIRuQ.roa (hash: IicrU+y2VcBYbd4QyyTDfZZRjrYA59p1rvePkvFgFRg=)
2: sYfM7EmqX2aqAmSNkbSi7o_3veY.crl (hash: ZLHLSxZEsXQHfoVLpRK7KsQfzCo1ciYKZ0BQXzqyzNY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYfM7EmqX2aqAmSNkbSi7o_3veY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:57:eb:ce:e5:1d:a6:3e:68:c5:be:31:c4:ae:a5:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b187ccec49aa5f66aa02648d91b4a2ee8ff7bde6
Validity
Not Before: Apr 28 17:00:36 2025 GMT
Not After : Apr 29 17:00:36 2025 GMT
Subject: CN=da1ac2058f96bb1b3341219e9978eb9cfab514a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b5:a5:17:5e:5e:fa:fa:90:ff:8d:9e:ee:52:
30:9e:1d:a2:09:29:f7:80:f4:3b:42:fb:64:48:5a:
65:b4:e7:c4:b0:39:30:e6:02:1e:32:5f:e8:b8:5b:
3b:55:12:43:98:3b:62:e0:24:db:6a:aa:38:72:f4:
49:0c:7f:58:61:df:7d:1d:d0:44:a9:23:4e:cf:25:
b0:cb:50:58:89:31:12:fe:fb:bc:16:3d:ba:3b:70:
fa:b5:d9:54:c4:16:6a:89:62:2a:17:85:69:d9:11:
11:6a:20:d1:b3:23:b7:e7:ba:bc:f0:b0:c5:79:69:
43:3e:29:6d:99:83:38:b3:f7:98:9c:3f:b9:6b:8c:
5d:b0:b3:27:fe:63:76:3b:64:21:71:a6:3f:e4:b6:
65:5e:7b:ae:b2:47:9d:7e:2c:b5:c6:73:56:1d:81:
70:d1:b8:2d:5a:01:f8:c8:48:6c:09:b3:bc:8e:1c:
27:53:6d:48:2f:53:84:b6:f5:88:24:60:89:b6:1a:
3d:66:9e:42:bf:4f:11:47:17:5e:e5:95:af:ea:f0:
0d:01:60:17:88:65:17:7e:69:30:c2:b0:28:18:56:
82:dc:92:b8:73:de:4b:8a:a1:c4:1b:69:1d:e2:d4:
c5:50:05:a7:4b:c2:69:71:83:1a:ab:ec:14:a8:4d:
0b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:1A:C2:05:8F:96:BB:1B:33:41:21:9E:99:78:EB:9C:FA:B5:14:A6
X509v3 Authority Key Identifier:
keyid:B1:87:CC:EC:49:AA:5F:66:AA:02:64:8D:91:B4:A2:EE:8F:F7:BD:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYfM7EmqX2aqAmSNkbSi7o_3veY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/72281a-d688-415d-a2c6-17f4e0f6cdeb/1/sYfM7EmqX2aqAmSNkbSi7o_3veY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:e8:73:ac:41:2c:04:ac:13:ee:8b:69:aa:c0:20:6a:67:90:
b8:b1:02:8a:9a:e6:37:1c:05:21:6d:19:9c:f6:eb:ff:c0:87:
65:73:28:0f:d2:f2:a2:6e:1d:04:70:30:40:8c:c1:bc:81:72:
09:39:5e:0c:bc:e7:18:79:40:f0:4a:ed:b4:67:1c:60:9e:23:
4a:2b:76:4b:a4:ad:45:fc:22:94:28:4b:10:39:03:e6:2f:46:
b0:85:e7:42:cb:76:04:57:45:32:20:c2:2f:0f:a8:51:e3:83:
ba:11:64:4e:f2:b1:a6:3d:d6:3b:f5:6a:6f:dc:5c:dc:f2:61:
14:24:34:f7:5a:6e:0e:e4:b1:bd:86:bc:68:4c:3f:3d:23:26:
9c:3d:d3:14:6b:59:36:58:99:b8:50:b2:a7:a7:2b:9e:77:61:
42:12:08:93:c6:43:c4:25:a2:66:40:bc:fa:5d:20:2e:a6:b4:
fc:dd:56:81:12:18:9b:81:4f:1c:95:ea:a6:42:02:76:96:26:
4e:3a:d7:04:eb:07:f2:cc:6d:dd:e4:11:ff:60:bf:30:57:58:
20:e0:19:0e:fe:ce:2b:12:4a:21:44:d0:3e:c1:a0:c4:8e:d6:
8e:6f:3d:5c:dd:0c:f0:d5:f8:92:bf:0d:af:34:03:57:3f:4e:
65:af:73:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 19:59:12 2025 by rpki-client