Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
File: RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft (raw, json)
Hash identifier: 8QOYQOaomNDuiqt9z2QRzz5++DQFIc+8zJEfie3Q0fs=
Subject key identifier: F8:3F:32:26:8F:E9:D3:4B:98:C6:57:CB:83:5D:4B:D4:D9:DC:4D:A5
Authority key identifier: 44:8C:A3:95:37:59:7C:FA:E6:0A:E0:42:1D:B8:E0:98:B4:E2:61:30
Certificate issuer: /CN=448ca39537597cfae60ae0421db8e098b4e26130
Certificate serial: 0196808F9156FD3F12EF740CE5A30916245B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 08:00:14 +0000
Manifest this update: Tue 29 Apr 2025 08:00:14 +0000
Manifest next update: Wed 30 Apr 2025 08:00:14 +0000
Files and hashes: 1: DVCmwON0mS6l5sSG4weDe20V1zw.roa (hash: jRc8aZ9DxIdAIzUKCrei9MUaFGOvyvUWkRGm1QRrv9c=)
2: RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl (hash: qy9NZYvi/4tfKVWNg6YQiIeGPbsEYd8toqK7KedRKlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 08:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:8f:91:56:fd:3f:12:ef:74:0c:e5:a3:09:16:24:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=448ca39537597cfae60ae0421db8e098b4e26130
Validity
Not Before: Apr 29 08:00:14 2025 GMT
Not After : Apr 30 08:00:14 2025 GMT
Subject: CN=f83f32268fe9d34b98c657cb835d4bd4d9dc4da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1e:a5:6d:8c:d5:30:51:c2:64:87:09:91:cf:
e1:82:4b:fc:85:7a:c3:45:5a:ab:7d:ab:9b:dc:5a:
9f:8a:71:18:12:44:7f:c0:26:89:9d:59:66:8a:12:
2b:aa:80:1c:0e:10:15:69:9f:ca:95:2d:73:c1:71:
c7:5a:03:05:79:1f:8f:c8:0e:45:43:5e:15:e6:c0:
69:27:2c:f8:e3:fd:db:ca:93:a2:74:35:33:f4:b8:
d5:d5:c2:12:b7:7e:6a:91:f1:1d:db:2b:0c:20:c5:
4f:9a:4d:b9:93:f7:aa:37:f5:37:6f:c8:11:a0:55:
0c:a9:ae:31:79:3e:ea:f0:95:fc:57:9c:78:5f:8b:
d9:a2:48:24:e6:cf:a0:7f:d2:d5:2d:eb:36:e7:bc:
4d:7e:7a:80:2f:87:5b:68:97:21:42:73:0c:ff:a6:
fb:1d:ab:1f:b7:9e:3f:5b:2a:2c:93:7f:bd:f7:4d:
24:45:0b:5a:97:83:9e:03:a1:fe:30:32:3d:64:d4:
a3:66:4c:f9:ca:0e:0c:8b:c3:b2:4a:92:84:a6:1b:
94:28:cd:82:02:c4:54:13:39:54:9a:e8:9d:dd:a5:
ea:9e:4e:12:56:52:51:ea:99:29:6d:2e:da:86:35:
7d:31:eb:65:e9:9f:d5:d6:4c:d1:99:32:74:86:29:
fa:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:3F:32:26:8F:E9:D3:4B:98:C6:57:CB:83:5D:4B:D4:D9:DC:4D:A5
X509v3 Authority Key Identifier:
keyid:44:8C:A3:95:37:59:7C:FA:E6:0A:E0:42:1D:B8:E0:98:B4:E2:61:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c6:9f:99:1a:90:a1:53:d2:34:35:de:79:3a:48:d7:a2:7d:
af:65:0f:2a:9e:f7:68:f2:b9:5f:b3:45:e7:51:98:c6:01:29:
d8:97:d3:03:41:bf:73:12:4d:16:a8:90:5c:8b:ff:c2:b4:92:
fd:5d:ea:ee:fc:d5:c9:04:d6:fd:12:ff:f5:50:a9:04:f2:55:
53:1b:de:41:68:70:8e:cb:fa:51:23:5e:62:7b:9e:f6:11:d7:
f7:15:0f:15:01:4b:c2:97:8b:ce:69:5d:af:69:4c:08:cd:20:
e0:e6:0e:91:27:b2:ec:51:2a:31:c0:88:fd:62:44:7c:2d:2b:
21:bb:75:13:10:d1:68:cf:03:c9:75:26:8d:44:1a:42:f1:aa:
ac:49:45:9f:c3:0a:d1:e5:2c:8d:b5:94:15:25:b9:4a:ff:cf:
e7:c9:a6:fc:3f:27:cf:84:08:c5:52:fa:4b:5b:16:f7:8f:97:
c8:71:c5:84:8d:08:fb:88:c0:f9:2d:40:d5:ab:48:bb:5b:f8:
0c:ac:bf:70:c7:d5:3e:e1:4e:14:9f:f2:c2:d4:03:1b:2e:4c:
3e:a4:c2:de:65:aa:bb:52:14:a8:63:3e:8f:25:89:81:c8:bf:
6f:94:68:bf:0e:0b:ff:45:10:22:0a:26:84:0e:65:23:a1:83:
5d:37:d0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 18:42:36 2025 by rpki-client