Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
File: lywzrtjvsmnTdEgT0oxTYJLnzzg.mft (raw, json)
Hash identifier: 58zWRRvqFc2NHeTlQzPMmjPOcoy1Y+/UvRSLelCDIJw=
Subject key identifier: AF:0B:8B:3D:B2:0D:28:DE:35:24:CB:31:20:86:61:D7:B8:4B:D5:1B
Authority key identifier: 97:2C:33:AE:D8:EF:B2:69:D3:74:48:13:D2:8C:53:60:92:E7:CF:38
Certificate issuer: /CN=972c33aed8efb269d3744813d28c536092e7cf38
Certificate serial: 019677FAA0C8F25779AC3023D8A18116A5F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lywzrtjvsmnTdEgT0oxTYJLnzzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
Manifest number: 0AE1
Signing time: Sun 27 Apr 2025 16:00:35 +0000
Manifest this update: Sun 27 Apr 2025 16:00:35 +0000
Manifest next update: Mon 28 Apr 2025 16:00:35 +0000
Files and hashes: 1: ABgvtVRWI6brZz3FziMb4rv0_78.roa (hash: xcpeYC06fvzRoHxarxnxi+ZpU9v7tXYglNgTbxJJFa4=)
2: lywzrtjvsmnTdEgT0oxTYJLnzzg.crl (hash: quAY68uWULD3FGRc/0kv1d5il9BWTfgkTkXAayTK/CQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lywzrtjvsmnTdEgT0oxTYJLnzzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:a0:c8:f2:57:79:ac:30:23:d8:a1:81:16:a5:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=972c33aed8efb269d3744813d28c536092e7cf38
Validity
Not Before: Apr 27 16:00:35 2025 GMT
Not After : Apr 28 16:00:35 2025 GMT
Subject: CN=af0b8b3db20d28de3524cb31208661d7b84bd51b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b2:89:3d:f9:12:49:56:e6:bf:de:c1:ef:a0:
28:ac:c8:a1:80:bc:81:d7:66:be:94:d5:01:4e:60:
b3:eb:71:a1:8f:bf:1c:1b:b6:de:79:8f:87:c9:79:
84:76:b4:aa:45:46:40:24:e3:94:ec:5c:51:d1:e2:
2f:cf:50:13:a6:f2:13:ad:2a:86:19:5d:36:78:51:
d3:07:ac:3b:e3:f9:5d:dd:c4:a9:4b:f3:a5:4b:c4:
86:0a:60:bd:40:1f:57:b8:07:1d:d7:18:75:98:22:
29:bf:de:58:6f:05:e1:91:37:f8:00:7a:ad:32:93:
73:db:fc:75:43:b2:1d:49:86:89:d5:19:58:9d:94:
b8:57:2b:84:75:c6:d3:22:f8:68:14:31:da:9d:d8:
23:a2:2c:ec:e9:1d:8f:a6:93:3c:c8:d0:11:a4:1f:
3c:69:30:92:0b:ad:76:e1:47:9f:02:39:30:96:a0:
0a:ce:c2:31:82:0a:db:a8:70:d2:1b:57:78:0c:d3:
ac:96:55:ae:cc:8d:ed:fa:ec:a7:6e:7b:ca:76:d7:
f1:55:f7:04:31:b5:36:3f:c0:eb:58:f9:90:41:4e:
35:cc:db:48:9e:32:0a:d2:c8:b6:a6:ba:b9:33:12:
a1:eb:ad:2e:0b:5c:ad:1b:b8:6e:de:4a:c5:1e:f4:
92:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0B:8B:3D:B2:0D:28:DE:35:24:CB:31:20:86:61:D7:B8:4B:D5:1B
X509v3 Authority Key Identifier:
keyid:97:2C:33:AE:D8:EF:B2:69:D3:74:48:13:D2:8C:53:60:92:E7:CF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lywzrtjvsmnTdEgT0oxTYJLnzzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/31fa99-c853-4d02-b53d-d250e45b1620/1/lywzrtjvsmnTdEgT0oxTYJLnzzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:37:8a:af:87:fb:ca:6a:e0:51:43:70:e4:c4:57:42:33:8b:
ab:65:06:0c:30:6f:35:bd:02:1e:30:f3:a6:4c:08:7c:a7:3d:
6d:e5:77:57:cb:8c:76:74:f9:af:80:25:e0:c8:5c:73:01:19:
60:83:67:57:f1:e1:b0:5d:c0:a3:3a:e1:0f:98:a3:e4:37:2d:
b7:c4:b4:81:1d:a9:6f:de:75:6f:7a:ab:24:19:6e:68:0a:2b:
c7:a2:94:de:e2:52:4c:c4:da:b7:12:d5:38:ab:5c:9c:9e:f2:
5d:59:78:22:2c:79:3b:b3:2e:c8:f1:02:94:b7:14:36:5b:9f:
bd:ae:d5:46:1c:40:1d:42:d2:e1:a9:39:74:4c:d8:1c:dc:9c:
2a:32:3f:9e:42:8d:88:16:31:31:c0:81:16:3c:80:59:e1:68:
9e:81:82:40:78:3c:13:02:80:40:06:65:07:35:cd:05:67:df:
89:a9:31:fb:bf:f1:01:60:3a:f4:ed:86:6c:7a:38:41:72:42:
9c:db:28:5b:43:27:4f:27:fd:df:8b:91:cf:a5:14:63:15:98:
d6:db:90:78:ee:cb:fc:94:8d:5e:54:16:1a:53:29:92:48:54:
35:37:99:b3:ee:33:4b:09:91:88:d4:f5:bc:16:61:47:95:3c:
bf:73:05:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:36:32 2025 by rpki-client