Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
File: Ty87yZp5UD4JdXR36O9kPhGIbIs.mft (raw, json)
Hash identifier: axIwW/6S+4B2ZDqELIMPXFoY8khaF5FB8b89b145zuc=
Subject key identifier: 38:8E:25:65:26:E2:10:42:9C:FF:D6:EA:3B:59:C4:42:D2:B7:17:C5
Authority key identifier: 4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
Certificate issuer: /CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Certificate serial: 01967BD76643D48D20A486AE191D3A157021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
Manifest number: 13C3
Signing time: Mon 28 Apr 2025 10:00:36 +0000
Manifest this update: Mon 28 Apr 2025 10:00:36 +0000
Manifest next update: Tue 29 Apr 2025 10:00:36 +0000
Files and hashes: 1: DmY4OlpSGtRwQGNkVI6pwwKmQOM.roa (hash: QsmPHxvFnUbBb8Hdz5mPLnRJfO8cxjGYjuC9mmKC/hY=)
2: Ty87yZp5UD4JdXR36O9kPhGIbIs.crl (hash: Hz0P2ZWGAOC0dEs/68q9KU3Jow6smHr/KmR8vsoRPxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:d7:66:43:d4:8d:20:a4:86:ae:19:1d:3a:15:70:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Validity
Not Before: Apr 28 10:00:36 2025 GMT
Not After : Apr 29 10:00:36 2025 GMT
Subject: CN=388e256526e210429cffd6ea3b59c442d2b717c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f9:19:4c:86:07:fb:03:cb:c0:45:46:5b:29:
15:1f:dd:46:0f:bb:cd:b1:1b:21:4e:2c:b7:bc:82:
ef:41:bb:43:0e:cf:6a:77:57:53:96:7e:cd:b6:8f:
9c:1e:13:dd:24:7f:85:49:fe:27:94:71:ee:da:ee:
76:64:e4:d0:6e:f2:19:c4:13:81:7e:1e:a0:f0:bd:
e0:e9:50:00:85:41:85:90:74:9f:45:ac:c5:ae:b5:
d7:55:33:6c:db:72:ba:fa:37:8b:a4:a3:59:30:91:
41:c5:33:77:2b:ab:58:14:df:0d:1c:cf:3a:a3:1d:
41:21:26:39:88:8c:30:7c:46:19:00:a2:2e:95:25:
cc:1c:19:ee:41:7e:a3:ef:a9:1d:3f:b3:45:24:9f:
94:4f:99:2d:d3:d3:fa:15:fd:7f:84:75:16:8b:44:
53:94:4c:45:83:3a:50:d9:5b:07:fb:da:0b:93:00:
7f:c7:2d:b1:b5:ae:0c:47:30:f2:86:f9:c6:29:2b:
03:b5:77:7f:59:fe:9d:ec:f0:fb:61:91:51:c1:03:
9a:44:0a:6b:8a:d5:a7:98:34:61:bf:93:3d:f8:91:
9f:61:f1:cd:ea:dc:56:7d:aa:be:21:61:5c:ff:1a:
0b:fa:ef:2c:fa:d4:3a:09:d3:56:74:15:54:69:9c:
a8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:8E:25:65:26:E2:10:42:9C:FF:D6:EA:3B:59:C4:42:D2:B7:17:C5
X509v3 Authority Key Identifier:
keyid:4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:10:a4:7c:29:d2:0d:d6:33:4c:ca:d9:f7:c3:d6:2e:75:a4:
47:37:d9:7a:08:0d:53:be:76:f1:4c:79:61:0a:ad:84:1d:7d:
c3:97:54:8e:4d:43:7e:ba:ee:35:15:90:a5:0f:38:36:e1:ab:
ed:8b:78:32:0d:cd:50:b2:c5:87:f6:34:88:70:23:63:d4:ef:
be:70:03:14:75:9b:45:67:d3:ea:1f:58:27:db:1a:aa:98:c9:
c6:b7:33:3f:03:4e:17:31:1e:47:ad:02:3a:f4:6e:70:7b:15:
9c:92:53:3d:b8:db:8d:cf:12:cb:0f:de:0c:12:43:4b:03:c5:
ec:fc:1c:60:38:08:da:9e:4a:1e:26:de:82:e5:16:81:b7:67:
b8:73:63:62:ba:81:6b:c0:00:1f:00:6b:7e:35:23:b8:01:fe:
ed:ee:91:cd:7c:0b:71:ab:55:c2:26:1f:0c:88:fe:90:0d:4b:
78:42:a7:f6:33:0c:1e:a0:d5:c1:01:a0:6c:5f:d0:ce:ee:25:
6a:8f:53:95:79:89:18:99:cb:55:99:b5:54:a7:3b:db:8a:15:
b0:f0:38:44:70:26:5b:aa:06:9f:08:85:44:55:66:53:33:6b:
8c:0f:31:bf:4c:b4:55:7c:49:2f:45:6e:7a:1a:93:51:ff:68:
63:29:4e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:26:57 2025 by rpki-client