Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
File: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft (raw, json)
Hash identifier: diai0LKQrmbrkYYmwDteP4CmzkFUxgr0tG+kZGUseQ0=
Subject key identifier: 81:8F:6F:F6:60:89:63:83:3D:32:6A:1A:36:FB:23:4F:59:54:5A:FC
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 0196753048D623B0270DDD9336650D9C2CA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
Manifest number: 0AF1
Signing time: Sun 27 Apr 2025 03:00:20 +0000
Manifest this update: Sun 27 Apr 2025 03:00:20 +0000
Manifest next update: Mon 28 Apr 2025 03:00:20 +0000
Files and hashes: 1: 2ATvNbnGawNlZZ5eknfDSbXFIzQ.roa (hash: tXSd9lU5fCgD64Z/fTQv/A1ZJJrB3ZcLdqsIZET5sKI=)
2: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl (hash: VKcEbSp0/ggEspSAymS9SK1ih/CyExvcsB2m/3iEAWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 03:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:48:d6:23:b0:27:0d:dd:93:36:65:0d:9c:2c:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: Apr 27 03:00:20 2025 GMT
Not After : Apr 28 03:00:20 2025 GMT
Subject: CN=818f6ff6608963833d326a1a36fb234f59545afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:9d:ba:6f:76:98:60:3e:de:a3:21:34:a9:ad:
65:cc:10:27:27:c2:cb:fc:27:0a:e9:64:e8:2e:01:
6b:fd:13:26:43:eb:aa:93:5c:88:22:32:a6:94:f0:
2a:d2:6f:57:5d:e4:e6:ef:d9:dd:c1:5f:41:fb:3a:
76:72:74:35:d4:df:61:2e:53:8f:0a:99:1b:38:79:
3e:b4:d2:30:ac:f4:a5:59:8b:d7:ca:7f:5c:f6:0a:
d1:cc:c8:af:b8:e2:3a:48:52:9d:3d:5d:87:c3:71:
66:f6:c7:ea:ac:02:4f:30:66:63:8c:12:1b:7c:7e:
3f:2c:54:63:54:d5:6a:05:d5:51:9a:36:5c:8a:e8:
04:5a:13:8b:32:78:1e:74:a0:dd:bb:7f:8f:3e:e0:
58:45:79:e4:45:98:cf:01:07:fd:22:f2:c8:1c:e3:
dc:7d:df:a7:19:34:30:eb:1f:b9:15:7a:ca:b1:60:
b2:33:4a:cd:a7:91:24:72:37:c1:4d:84:1c:80:02:
25:1b:7a:b9:16:cb:c4:39:9e:db:04:8b:4d:7e:ea:
fa:bf:34:c2:be:30:a6:d4:5c:32:b2:04:31:36:ae:
d9:77:ad:ba:10:7e:58:50:83:20:3e:f5:15:e7:9b:
1c:62:2d:65:68:05:f8:58:2b:53:a5:4c:fe:49:fc:
59:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8F:6F:F6:60:89:63:83:3D:32:6A:1A:36:FB:23:4F:59:54:5A:FC
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:0c:1c:72:7a:e7:ed:09:bb:ff:5e:19:ff:2a:b3:96:d0:6e:
c1:9c:ea:62:62:7a:7e:eb:01:2c:30:e0:c5:6c:b4:23:ee:6c:
08:33:12:a9:28:d8:de:c8:b2:7a:92:1d:94:b6:2c:12:a1:37:
27:4b:6d:4f:af:ef:6a:e1:b6:96:4d:cb:70:e7:bc:09:5c:c3:
d5:24:88:05:02:15:8d:79:5a:88:0a:53:f0:94:25:52:88:49:
5e:aa:f1:1c:aa:a8:7d:7b:b7:d8:3c:ca:41:c8:bf:ae:d3:46:
c3:0f:4c:f7:2c:19:fb:1e:31:fa:26:da:21:ae:87:4d:54:f5:
8c:0c:74:a5:ee:38:f1:43:5f:ff:04:96:ea:cd:fe:4f:b7:66:
80:3b:56:ae:52:6f:ac:d5:07:ec:58:4e:30:34:3e:7d:78:66:
b1:16:f5:85:ea:e1:d1:79:55:69:e6:08:5b:dd:4e:49:96:10:
43:cb:4a:e0:3a:af:bb:59:8c:10:e6:e0:91:9d:b4:28:eb:51:
c4:a6:a7:4d:c7:87:e1:c2:0c:eb:85:a8:5c:5f:11:a6:99:cf:
99:3b:55:6f:69:c1:6e:57:57:ce:a2:42:43:00:56:4f:51:5e:
73:19:7c:a9:46:9f:53:52:e3:8a:bd:43:0c:cb:eb:a5:fd:c0:
66:9f:7f:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:49:52 2025 by rpki-client