Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: YXuRSNef7P6eYtO9wwQxixlnMQ5mQQVq8WCF4yaHMdQ=
Subject key identifier: BA:29:3E:D4:3B:97:C7:7E:9B:D1:2C:B1:A5:8D:1E:10:41:D4:B4:DD
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 01967C7C3E29AA6470BFE308C17FF9881A27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 128F
Signing time: Mon 28 Apr 2025 13:00:39 +0000
Manifest this update: Mon 28 Apr 2025 13:00:39 +0000
Manifest next update: Tue 29 Apr 2025 13:00:39 +0000
Files and hashes: 1: cpaYv-AQ-t9zhgKKXsvKBzFcSaQ.roa (hash: QH8X2hDISDdQVFPt9W1N705nATkeCHCrQhlKJMRWx8A=)
2: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: bM5NwYkhGDy+QNN9balueqdp19ALBQk3aeGwM/EX3Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 13:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:7c:3e:29:aa:64:70:bf:e3:08:c1:7f:f9:88:1a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Apr 28 13:00:39 2025 GMT
Not After : Apr 29 13:00:39 2025 GMT
Subject: CN=ba293ed43b97c77e9bd12cb1a58d1e1041d4b4dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:24:84:7f:a2:70:d7:9a:74:20:ba:4d:23:aa:
e2:92:ba:48:53:24:0d:45:63:c2:97:6b:69:e5:d2:
17:24:cd:c0:e7:b1:0a:ae:82:02:64:d4:31:34:34:
90:62:f3:a5:0d:01:b8:d7:e0:c4:b4:5f:b6:52:62:
07:38:a1:1f:e5:25:43:52:84:79:b5:72:f9:88:5e:
9a:97:e0:a2:82:17:7a:fb:83:ad:6f:38:e1:6c:c3:
78:74:b9:48:4d:31:b1:42:80:f0:f7:7e:55:a4:18:
60:2a:a8:84:1c:db:dc:0c:b2:c2:04:ef:98:a6:d4:
1a:79:8a:bd:ac:5c:b4:b6:07:f1:35:4e:38:9e:0f:
1b:7c:3f:bb:80:a5:eb:3a:8c:8a:c4:ea:34:1f:fb:
5b:2d:54:eb:55:5c:5a:6c:b9:fb:99:e0:ec:81:82:
d9:73:ff:ac:22:ae:e5:70:62:91:42:1b:33:aa:fa:
67:3d:3a:a8:2d:1d:f4:16:37:b5:3e:7e:e9:ca:91:
97:0e:b1:7e:3f:9e:05:ae:ed:74:14:12:3e:79:0b:
01:8c:3b:08:5d:98:e8:69:a2:f0:d5:39:f7:be:90:
52:b5:06:96:99:ae:90:fd:6f:69:12:1c:7c:37:1c:
53:0f:4c:29:d3:42:07:1f:95:56:3f:a4:e1:fb:9d:
16:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:29:3E:D4:3B:97:C7:7E:9B:D1:2C:B1:A5:8D:1E:10:41:D4:B4:DD
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:b3:e5:85:18:5a:ec:d5:33:a0:53:d1:08:26:c2:d1:fb:69:
5d:b4:d4:5e:4e:b8:be:ac:3e:cb:a5:9a:f6:ca:f7:45:53:fe:
b2:1e:88:c4:f9:70:4e:8e:aa:70:1c:fe:63:56:b5:fb:6e:0e:
a8:0a:5e:ff:62:d1:dd:7c:72:77:5a:dc:31:8c:89:f6:1f:86:
40:be:62:3b:3d:fb:65:e3:a1:b5:04:e7:f5:38:2a:15:50:25:
50:cb:4d:70:04:9f:0d:fb:d8:b4:71:fc:72:2a:32:7f:4f:f2:
9d:90:2e:67:a4:2a:14:c6:1f:9e:b9:50:60:48:f1:bf:cb:24:
5c:99:2e:d2:28:1f:35:5d:6b:e5:bf:5a:c9:a4:06:3d:89:e9:
e4:fa:a0:0a:6c:a7:38:b5:33:e3:93:7c:c0:29:87:fe:73:bd:
30:9c:0f:7c:c7:02:43:ba:96:ea:58:cf:f3:12:59:00:c8:c8:
b3:1f:50:77:10:7e:33:2e:ad:d2:00:65:2b:31:af:fb:8f:02:
2a:34:6c:69:20:43:65:65:19:c3:f5:cf:51:60:ac:b8:48:6c:
a0:3e:5c:b3:73:4c:58:98:a8:70:ee:1f:b1:ae:64:98:11:27:
70:ce:ac:f7:8d:27:25:b8:1d:f7:e9:00:4e:6f:32:60:52:8c:
b6:9e:17:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:48:41 2025 by rpki-client