Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
File: yniqfjFrIfhDz7lYEMaAzdv6bm8.mft (raw, json)
Hash identifier: bDO1sj61QePPz/YWjwkIF+LQ5y5/To7giWDFzKMexQw=
Subject key identifier: B0:01:D8:90:5F:07:81:37:39:9C:78:0B:3C:A5:D9:2C:05:1E:98:CB
Authority key identifier: CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
Certificate issuer: /CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Certificate serial: 01967C7C51B0549DAE0B633A3D12058F753C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
Manifest number: 0263
Signing time: Mon 28 Apr 2025 13:00:44 +0000
Manifest this update: Mon 28 Apr 2025 13:00:44 +0000
Manifest next update: Tue 29 Apr 2025 13:00:44 +0000
Files and hashes: 1: KmT0zBeAxHbx64CqcJ4Kw-HSMGw.roa (hash: g294VQOsqRVKkLhlE8NKqam6KvGQ9H8e4fukJsFTk1Y=)
2: yniqfjFrIfhDz7lYEMaAzdv6bm8.crl (hash: MAOT/GAmTFSgUH1QVLxmCvJdJHAciX5ocwkGSb6wwvc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:7c:51:b0:54:9d:ae:0b:63:3a:3d:12:05:8f:75:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Validity
Not Before: Apr 28 13:00:44 2025 GMT
Not After : Apr 29 13:00:44 2025 GMT
Subject: CN=b001d8905f078137399c780b3ca5d92c051e98cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5c:c6:3d:1c:d6:fd:b2:97:1a:76:12:56:eb:
84:ef:35:ab:56:76:7c:ce:e3:39:99:62:a7:f9:61:
06:d9:96:d7:22:72:64:81:c6:a9:9e:6b:04:dc:ed:
72:4d:fa:8c:0d:9e:12:5a:56:36:64:04:9b:d7:29:
ff:4a:00:db:1a:67:e9:d5:99:b4:63:ad:25:17:db:
10:02:4f:a0:db:ed:0d:5d:4b:c8:a5:43:fe:af:2a:
c4:05:30:26:ca:bc:45:9d:44:06:dc:84:1d:33:53:
76:5f:dc:3f:1c:ac:69:dd:d7:c5:d6:21:fe:ee:d7:
c1:3a:79:e3:0f:d8:63:4d:06:e2:24:76:73:54:a4:
d9:19:f1:e1:5d:48:2a:7e:95:3f:0b:3f:06:01:c7:
a2:64:81:9f:98:df:42:d9:2c:86:f2:5c:15:e4:96:
23:f1:a7:f4:66:62:35:ea:63:d7:27:0b:4e:65:35:
fb:16:77:63:3a:8d:25:eb:a0:23:f0:a2:f3:1d:f5:
dc:38:39:fb:ce:3b:ed:5e:59:a5:ca:33:38:dc:a4:
e6:71:f3:10:a5:f2:f3:f7:34:10:87:bd:b7:52:5e:
d8:f7:d1:69:d2:29:1f:4e:87:0f:8a:a0:77:e0:d7:
a1:08:0b:6b:73:08:97:55:e1:ab:1e:69:77:f7:40:
8d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:01:D8:90:5F:07:81:37:39:9C:78:0B:3C:A5:D9:2C:05:1E:98:CB
X509v3 Authority Key Identifier:
keyid:CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:b6:bb:98:53:1a:fd:8e:f7:79:6c:45:4c:37:da:3b:39:da:
40:cd:06:d0:9e:e3:aa:9f:73:18:57:8e:ce:ad:27:9d:4c:ad:
f9:aa:e7:72:48:77:d7:57:97:7c:27:95:dd:40:b9:76:39:ff:
3e:c4:21:11:f3:02:b9:b3:04:4e:17:c7:67:f3:29:89:4e:c8:
25:1d:8c:c9:df:81:e5:40:0c:b3:77:29:ec:aa:dc:48:d1:a1:
40:2a:ea:b3:fb:0b:f6:c0:8c:a1:f4:7d:7a:6f:23:04:d7:be:
d8:be:58:40:0e:27:e1:a6:cd:c5:a3:ff:d4:d3:21:4c:c8:8b:
65:19:a6:04:47:ef:7a:40:8f:98:ee:02:bb:de:fa:5a:bf:81:
9f:7f:f4:9c:c3:94:05:81:a7:68:bc:fa:cc:d5:4d:b9:14:a5:
e2:42:30:fc:4f:67:4b:04:fa:9a:a8:a3:56:3f:f1:22:9e:89:
67:e5:1a:09:84:cb:a4:3a:56:68:89:c4:93:d3:82:d6:66:5f:
d4:8e:b1:b8:7f:be:55:b0:04:36:02:b6:4c:e4:ef:7a:d1:3d:
34:ad:cc:72:1c:8b:d7:d1:e8:56:a7:79:c8:fe:62:ee:ad:81:
d1:b6:43:59:31:87:f4:61:69:a2:e0:69:0c:dd:3c:d2:44:e6:
84:e6:c6:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 19:31:59 2025 by rpki-client