Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
File: CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft (raw, json)
Hash identifier: ZObaR8pkZhuXlNVOqz9Xwu7Hc4w8AVgPXQ3sQx7WnrU=
Subject key identifier: DE:8E:70:84:CC:2F:9A:AC:47:8C:E3:AE:B7:34:38:30:7E:EE:F7:9B
Authority key identifier: 08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
Certificate issuer: /CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Certificate serial: 01968021E87EE2446E7FCE36FB9555428955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
Manifest number: 0873
Signing time: Tue 29 Apr 2025 06:00:27 +0000
Manifest this update: Tue 29 Apr 2025 06:00:27 +0000
Manifest next update: Wed 30 Apr 2025 06:00:27 +0000
Files and hashes: 1: 4bMtkdss6ipZLuaULzydMUpyiaQ.roa (hash: ftsUwXeTU/zCajSXbJ3x6QJLG4thVRnSbA76L16HZhs=)
2: CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl (hash: DiXjxAhYkPi4E0EyGVy3Qqj3hsjIF2uNRQ33O1uFym0=)
3: k6IT53wky2OyxFkQBPrbNFj6TNQ.roa (hash: brdxpAD59FYZoJp1BAGf2U6f2BoN13pBWQRPGF1mMCg=)
4: wTQDqjXgoUhzhSugRLMIDWXZVNA.roa (hash: sP07Xq5SBcl1K6LagQUnTqXSUPfJF0A6TBK/LGuxJ5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:21:e8:7e:e2:44:6e:7f:ce:36:fb:95:55:42:89:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Validity
Not Before: Apr 29 06:00:27 2025 GMT
Not After : Apr 30 06:00:27 2025 GMT
Subject: CN=de8e7084cc2f9aac478ce3aeb73438307eeef79b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:93:e2:70:ce:af:55:de:8c:97:65:92:81:18:
80:3e:af:6b:4e:8a:90:38:9e:e6:ff:99:05:b8:8e:
0d:1a:54:d1:7f:a3:94:9b:ba:51:e7:55:e0:42:29:
a7:7f:2e:c7:26:6a:02:b8:16:cb:62:b8:93:6e:54:
48:1d:36:7f:ff:e9:fe:46:6f:d3:06:13:c2:8b:81:
ad:e4:61:35:21:6f:c5:18:92:42:22:fc:10:00:5b:
60:85:f1:25:61:68:2f:0d:ce:93:df:1b:f7:ba:1d:
38:87:6d:2a:d8:01:88:bc:86:21:0b:26:73:a8:eb:
e0:4f:79:45:cd:83:7e:37:48:d3:72:a3:93:b6:35:
a4:d5:02:ae:7a:67:36:1e:9b:a2:1f:d3:b9:c7:43:
eb:68:d5:4f:a1:e7:54:dd:ee:4f:b6:21:33:8d:45:
f3:01:a5:a1:14:5e:82:17:09:4f:34:15:d6:cf:fb:
70:89:ac:1d:70:d3:c4:43:3b:1b:fe:db:c9:f2:48:
5b:b7:53:ce:8d:34:da:37:ac:d6:24:b5:b5:ba:1c:
64:04:c5:00:80:d6:4d:40:68:06:8f:69:41:26:51:
f4:3a:1c:dd:36:5f:c2:77:0d:8a:30:c3:16:94:eb:
17:82:1d:fe:64:8e:80:75:62:0e:e1:28:69:c3:c5:
06:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:8E:70:84:CC:2F:9A:AC:47:8C:E3:AE:B7:34:38:30:7E:EE:F7:9B
X509v3 Authority Key Identifier:
keyid:08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:a4:e2:00:ad:a0:37:7b:4e:b6:48:9c:17:69:5f:b7:83:04:
c8:3d:58:c6:b6:92:71:0c:1c:09:a0:23:30:57:00:ec:87:70:
9f:38:92:6c:2b:11:c9:68:44:6b:3a:1b:5a:bd:c8:8f:03:8b:
ba:33:6f:d0:c8:2e:02:a7:12:b8:06:c9:53:99:2f:13:fe:1c:
59:1d:7b:8d:1b:25:ac:c4:a2:17:bd:6a:6d:f5:be:5d:44:85:
8e:87:54:91:06:72:8c:8b:20:64:71:99:7c:c2:5a:1b:eb:19:
64:f0:08:87:3d:bb:52:b9:05:4f:aa:51:c1:20:37:9a:e7:ab:
5c:d0:4e:0d:4d:f0:7d:e2:b7:e5:f9:ae:7f:fe:d6:dc:17:35:
4d:f3:30:e7:54:77:5d:2b:58:25:ef:2b:8d:99:fb:ed:ab:cd:
70:d8:44:0a:7e:fa:04:41:7a:ad:88:8d:a4:34:97:27:a6:21:
3d:2b:77:e2:05:62:a9:8c:01:37:a3:d9:9e:08:45:61:04:37:
4d:53:30:39:59:30:d0:4a:2b:a9:85:9c:4e:f7:64:22:a1:bb:
12:6d:d4:4f:ab:eb:e8:f8:a9:d6:4c:b9:d1:05:e1:53:8f:8c:
bc:3f:f8:bc:d7:92:72:09:00:dc:ac:ee:d7:76:59:87:cf:c1:
04:18:b7:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:39:25 2025 by rpki-client