Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
File: yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft (raw, json)
Hash identifier: 1vAoOghW597RtYTneqXOd8Y48fcnNYPFuj71n3XNuAI=
Subject key identifier: A6:06:0A:08:A1:E4:0D:FF:A8:CD:11:6A:BC:35:AF:7A:A9:7D:A9:1D
Authority key identifier: C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
Certificate issuer: /CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Certificate serial: 019677FAFB299E2CF02FCF48481601416170
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
Manifest number: 1511
Signing time: Sun 27 Apr 2025 16:00:59 +0000
Manifest this update: Sun 27 Apr 2025 16:00:59 +0000
Manifest next update: Mon 28 Apr 2025 16:00:59 +0000
Files and hashes: 1: fewPOq5Sy5alJvzpYZYieD6pmV8.roa (hash: nQVFjlDzgmj3SLHG29wBX3sEI4Pk0MW5juplwGFMB6g=)
2: yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl (hash: bWWtbKO3JvTAqWAGSwszBxKhgggRzTR9cZP5Sywhtjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:fb:29:9e:2c:f0:2f:cf:48:48:16:01:41:61:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Validity
Not Before: Apr 27 16:00:59 2025 GMT
Not After : Apr 28 16:00:59 2025 GMT
Subject: CN=a6060a08a1e40dffa8cd116abc35af7aa97da91d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7f:ea:a6:d4:d7:1c:44:47:9d:66:f5:dc:91:
c7:72:4d:21:76:54:ea:b5:d3:2d:77:29:9d:99:9f:
09:a0:87:ed:26:06:5f:04:23:c6:36:ba:68:c8:ca:
a4:44:2c:74:f1:3c:87:95:ce:8c:c7:d5:9f:78:71:
40:2b:cd:ee:15:e3:82:2f:e6:1c:5a:09:74:cd:b1:
a6:70:39:d2:43:94:a6:16:37:05:93:53:c4:55:df:
ef:f1:7a:46:ce:0d:32:f9:39:97:dd:bf:6c:ce:46:
5d:ef:c3:b2:a1:a7:37:5d:cf:02:be:6f:6c:0c:bc:
a8:5d:f4:76:78:64:59:e1:94:36:70:7e:e1:a0:34:
99:2b:d9:4f:d8:d3:f2:51:4f:23:38:2b:af:20:ee:
22:f8:a6:57:69:ce:37:b1:e3:29:7a:aa:99:8c:d9:
5a:43:7f:08:a0:28:c8:6c:c1:b5:5d:f9:dc:db:e0:
34:85:0c:b0:d8:15:bc:ce:e7:72:81:60:0e:05:1b:
91:73:33:ed:91:8a:0b:53:f5:ef:cc:ca:31:a1:d8:
83:74:99:dd:30:ec:61:36:db:82:67:bb:da:60:99:
bf:ca:5b:60:07:48:13:d4:9d:84:a9:86:a7:f3:31:
ff:ef:f2:b6:cc:44:18:a4:55:8d:b5:7e:3c:6f:72:
36:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:06:0A:08:A1:E4:0D:FF:A8:CD:11:6A:BC:35:AF:7A:A9:7D:A9:1D
X509v3 Authority Key Identifier:
keyid:C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:d1:02:15:45:56:f7:cd:75:12:b7:a2:e6:e2:d4:9e:4b:1e:
9e:4b:ab:52:df:e3:3d:06:e7:7f:ae:6c:fc:c5:b0:f0:ac:d0:
4b:09:55:3c:61:ae:14:9e:44:73:32:fd:a5:f1:eb:11:9b:14:
25:a3:47:b3:9d:7f:0b:41:75:8f:57:97:2b:b9:e3:27:b1:8c:
71:2f:bf:27:81:5c:02:73:bb:81:da:c2:64:14:73:c9:db:46:
a0:3f:64:c0:9e:c8:1a:3c:69:65:ee:15:d7:2e:2e:58:13:e2:
75:07:d1:72:7d:88:37:f8:ee:f0:93:f2:3c:cf:d8:68:57:d4:
30:85:28:39:20:26:b8:54:27:09:e5:43:b4:08:9d:53:bf:21:
be:54:34:29:52:9d:e4:12:56:1c:ae:85:31:e0:38:da:48:1e:
26:cd:8b:f6:41:a5:79:e0:6f:33:6d:e7:85:93:fd:1f:05:10:
6b:e2:40:47:a5:d2:c1:1e:b1:ae:63:e2:f6:75:6c:a9:26:5e:
98:5e:2e:cb:32:08:b3:5b:57:32:1f:85:91:8d:25:23:28:10:
17:05:30:fd:13:7d:6d:a4:8e:f3:95:86:c9:fe:9b:9d:d2:64:
36:11:cc:9e:d1:29:e2:eb:3e:a9:ab:ee:bb:58:c8:46:92:05:
71:82:13:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:22:18 2025 by rpki-client