Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
File: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft (raw, json)
Hash identifier: EqQlkn/2e52/JIc8wAMz46hOaZP2ZBKRoN/m3c7/7SA=
Subject key identifier: 31:4E:79:58:F5:35:8D:6E:24:51:1F:F0:A5:CB:90:FA:C2:7C:41:04
Authority key identifier: 63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
Certificate issuer: /CN=63e30980305345fd5365b3515e3568f9cee58541
Certificate serial: 0196760CB0BA33580798F2EF08A986FAB011
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
Manifest number: 150F
Signing time: Sun 27 Apr 2025 07:01:05 +0000
Manifest this update: Sun 27 Apr 2025 07:01:05 +0000
Manifest next update: Mon 28 Apr 2025 07:01:05 +0000
Files and hashes: 1: Hs2TvjBAbChswFTm05pNrXJsCJA.roa (hash: xtJBUOZoNvBaKTOo18EAAqIaZQ4IjdLX9G/viT94FJA=)
2: Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl (hash: REwh+1tx9cjuS37aid4Lk3hRC2VPpWlr/QQlzk6BOFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:b0:ba:33:58:07:98:f2:ef:08:a9:86:fa:b0:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e30980305345fd5365b3515e3568f9cee58541
Validity
Not Before: Apr 27 07:01:05 2025 GMT
Not After : Apr 28 07:01:05 2025 GMT
Subject: CN=314e7958f5358d6e24511ff0a5cb90fac27c4104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c9:63:f4:9f:b9:b5:18:7f:a2:a1:06:17:2d:
cd:b0:4a:54:3a:70:a9:b1:d8:78:d0:ee:ae:11:55:
a5:0e:36:13:28:d5:37:52:c6:f8:f9:98:07:8a:5f:
b4:9a:39:09:f1:01:f5:74:94:75:46:6e:cc:f4:41:
8e:36:d3:6d:29:9a:aa:a5:70:b0:75:0d:cb:5d:56:
50:5d:a0:70:ab:3a:f9:69:36:9e:6f:ca:6b:38:5a:
a4:0e:4f:60:2e:a1:a7:ed:8b:fb:e1:1f:89:7c:e4:
01:41:c1:14:3a:0f:b4:ad:c6:8d:be:e9:52:24:44:
7a:a6:bf:da:1a:82:ae:87:91:be:55:56:ed:38:bd:
0a:c0:3b:1a:7d:61:12:ad:c5:c9:f9:90:29:d9:0d:
2a:8a:b4:ac:60:92:bf:30:0b:8f:68:fc:23:f0:fe:
0e:66:0b:f4:21:a8:44:5a:4a:1c:03:64:9d:bd:c0:
c4:f2:6d:71:5e:fb:ee:69:9a:12:14:5e:3e:3c:eb:
88:63:de:78:1c:9f:7a:96:bf:1c:a9:8c:6d:02:c6:
b7:f9:da:ad:97:c0:42:31:cd:4c:90:ff:55:98:f7:
d1:01:63:8f:29:fc:3b:77:f9:3a:24:81:0d:78:a1:
19:de:ec:af:27:b0:27:bb:10:e0:da:d3:bb:ea:e5:
9f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4E:79:58:F5:35:8D:6E:24:51:1F:F0:A5:CB:90:FA:C2:7C:41:04
X509v3 Authority Key Identifier:
keyid:63:E3:09:80:30:53:45:FD:53:65:B3:51:5E:35:68:F9:CE:E5:85:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db5787-c2c8-429b-8137-cbf6c1849c44/1/Y-MJgDBTRf1TZbNRXjVo-c7lhUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:97:43:01:af:1d:68:19:d3:99:0e:b0:fc:f9:20:ae:54:ca:
96:fc:98:99:9e:3d:38:70:43:98:bf:4c:1d:a7:84:84:0b:9d:
f6:80:76:39:5f:f4:8d:0b:86:bd:ae:e2:31:46:1f:1f:e1:14:
60:d8:a9:e8:d3:f9:a7:93:45:d8:19:2a:4f:2c:f2:c3:3d:75:
39:90:31:ca:04:1d:f0:bd:a9:d5:1e:e8:ce:2c:48:16:61:e5:
82:98:a1:61:9e:35:07:75:db:39:5e:45:fb:ac:f1:77:fa:98:
70:ed:c1:a2:71:16:45:6e:1f:9b:13:f2:e9:be:19:c3:86:19:
1a:c7:e1:c5:df:5c:bf:fb:61:c7:4d:07:44:03:e8:8b:be:16:
d4:96:4b:a7:7b:4f:cb:8a:fb:db:18:c1:98:a1:2b:a9:fd:09:
a0:83:58:6f:6d:51:39:1f:4b:b3:c5:f1:56:73:a5:a3:91:9f:
81:8c:4b:39:f1:ac:1b:1d:b8:c7:77:c8:69:be:99:eb:83:cd:
a3:0c:49:23:f7:24:fc:e4:21:71:d8:5e:7d:87:a8:b3:79:b2:
81:ef:a8:63:fd:67:62:73:d8:fa:0f:29:9b:20:b6:02:fe:18:
07:78:13:1f:fb:99:1c:8a:57:69:3b:cf:3c:92:34:db:9c:e0:
b3:60:1d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:11:31 2025 by rpki-client