Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
File: ryNYW_zdBhypRuLZ6ouX5FucMdY.mft (raw, json)
Hash identifier: iTU/DDO3cJ/tN4P0HQLC5AAjWZA2sjOFW0bUKaqywrM=
Subject key identifier: BE:B4:6A:DD:0C:29:00:F5:7C:CA:65:32:60:F8:96:B0:D9:20:D2:51
Authority key identifier: AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
Certificate issuer: /CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Certificate serial: 01967E6AD50735B3B72D04C8AF36E7F812F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
Manifest number: 1479
Signing time: Mon 28 Apr 2025 22:00:52 +0000
Manifest this update: Mon 28 Apr 2025 22:00:52 +0000
Manifest next update: Tue 29 Apr 2025 22:00:52 +0000
Files and hashes: 1: SeufauaKg6Zpqe8UY9h9PfD262s.roa (hash: f9EK4NXbDLFnpfyftEzrpn9paJMCGETNbGO1nrHQTYE=)
2: ryNYW_zdBhypRuLZ6ouX5FucMdY.crl (hash: ya8Lp2A36hL21ikzZOfwnNbSsa0SzDNc0ruCnMm2TYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:6a:d5:07:35:b3:b7:2d:04:c8:af:36:e7:f8:12:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Validity
Not Before: Apr 28 22:00:52 2025 GMT
Not After : Apr 29 22:00:52 2025 GMT
Subject: CN=beb46add0c2900f57cca653260f896b0d920d251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8e:59:4f:7a:ab:46:11:29:c5:d7:da:e8:bc:
27:ea:31:21:7c:fb:6f:7e:9d:3e:b8:f5:9e:3c:66:
e2:71:41:b3:6a:dc:61:50:3a:80:7b:d2:0a:4e:ed:
99:61:fa:f6:10:f2:09:3a:34:85:b5:94:6f:1d:31:
63:0c:27:71:95:9d:76:7f:9a:6a:d5:3f:03:3d:39:
71:d2:a6:64:e8:60:50:dd:31:c2:56:4b:d6:c8:64:
89:85:9f:20:cf:ef:6c:dd:6c:84:0c:55:a5:ba:74:
1f:d0:d1:e9:48:f8:8d:b2:99:99:52:c6:bd:20:f7:
b2:58:ea:ce:ae:ed:11:a9:8e:55:d0:79:09:2d:af:
fd:7b:79:a4:2b:35:69:3a:bc:28:9a:f7:ac:65:32:
19:3f:1c:6f:78:ff:21:fb:ac:fc:13:a6:df:87:5d:
0f:18:41:1b:3d:21:d3:66:af:12:95:3f:a6:01:b2:
1f:46:cf:85:fe:31:99:de:81:9c:d9:90:5f:94:5b:
78:1c:dd:fb:4f:dc:ac:6d:b7:d2:be:35:04:98:d6:
bf:d7:b8:78:b4:86:1d:4a:34:76:89:35:51:cd:ca:
ac:7b:5d:c7:00:b3:33:b0:de:37:c5:6f:70:a0:6f:
6f:56:b8:5e:67:d8:b1:63:25:1c:d0:3e:1c:77:98:
4c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B4:6A:DD:0C:29:00:F5:7C:CA:65:32:60:F8:96:B0:D9:20:D2:51
X509v3 Authority Key Identifier:
keyid:AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:0b:42:5e:94:bd:b0:71:44:a9:ec:24:37:03:4e:84:b2:da:
d1:28:88:38:fc:da:2c:fb:56:21:10:0b:52:70:61:fb:34:01:
9a:eb:c8:f5:c7:75:c8:39:a0:ea:d5:0e:0d:66:b9:f7:b6:9a:
b2:f0:5f:eb:20:d9:b0:7f:36:24:39:cc:65:38:00:56:7d:50:
ce:b7:f1:f0:bc:5e:29:c3:46:1e:5d:2b:12:4c:d1:42:82:51:
3a:fa:84:bc:27:4b:b8:b7:1f:d2:84:f7:f0:dd:e6:ef:5b:89:
ff:0d:53:7e:26:de:6b:bb:47:ef:cf:7f:e6:03:70:7d:ae:ae:
47:37:bf:34:6f:a0:29:b1:d3:ae:69:86:83:b3:0b:f3:a5:5b:
f3:96:ec:2d:69:d0:b8:72:c8:82:42:31:66:ce:89:4f:60:3f:
33:2c:7a:67:f6:24:f2:73:9d:59:1f:e5:54:a3:7a:77:f0:e8:
09:42:d8:d7:07:4e:06:05:c7:a0:1c:68:72:9b:bc:71:89:5c:
8e:cf:ea:7e:8f:4c:1b:07:87:bb:04:e4:e2:9f:2a:9f:06:48:
7c:0e:40:22:31:7c:24:2c:c7:a0:e7:35:4f:41:9f:9a:25:7f:
dd:dd:a4:54:e2:da:d6:20:e4:f1:c2:07:61:9a:ec:96:d3:e1:
29:0c:2f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 08:27:19 2025 by rpki-client