Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: 3/sdBhl2m7cXu99tpQb3tfgw+Mz5C+oYrFzjd6tvri8=
Subject key identifier: 77:1D:50:C5:9F:2F:BB:A2:CB:E6:36:BF:1C:EA:90:78:6B:8B:BC:9A
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 0196956055B2145D010202CE61367D19B7AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 10C6
Signing time: Sat 03 May 2025 09:00:40 +0000
Manifest this update: Sat 03 May 2025 09:00:40 +0000
Manifest next update: Sun 04 May 2025 09:00:40 +0000
Files and hashes: 1: KWc-RAvt2weoUx0MAyuZekiSu6M.roa (hash: hfmB9slnA1IL3HuDstN6ATg7sfXi2D378t9Xob1Z1hA=)
2: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=)
3: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: WJT74n0g0yZEVoEWpXEVXIA26ftD4sAGo35txzSr26g=)
4: w-1zMbc9fSVVQQhGydFD8XrHnGg.roa (hash: 2dYJVen0mOZhk8iHs1ljj0nfQhsjWVxn7a9kKF8KMns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:95:60:55:b2:14:5d:01:02:02:ce:61:36:7d:19:b7:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: May 3 09:00:40 2025 GMT
Not After : May 4 09:00:40 2025 GMT
Subject: CN=771d50c59f2fbba2cbe636bf1cea90786b8bbc9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:dc:45:b0:4b:68:c0:5b:af:a5:3d:64:7d:3b:
14:94:ce:67:a5:ec:b5:ca:03:7b:c8:0f:db:d7:33:
aa:77:46:d6:8a:2a:58:ec:f8:21:d8:1a:5d:c7:bd:
cb:a7:44:04:9e:81:29:e5:1a:4f:e8:6d:35:2b:fe:
d2:af:6a:f5:c2:6b:03:31:e1:54:63:7e:27:a8:48:
1f:77:f6:d3:e2:79:70:c9:a3:6f:f0:4c:ed:26:dc:
a5:49:71:3b:c8:17:ea:19:cd:f0:0f:c2:4a:9a:bb:
91:b3:67:b8:8c:9f:61:e3:90:4d:5d:22:fa:54:8f:
31:5f:0a:7a:72:e8:07:f1:87:9f:dd:d3:be:29:99:
43:8c:f1:c1:4f:31:2c:5e:07:0f:26:6f:53:75:91:
61:6c:93:91:13:b0:b6:d7:97:7b:1c:06:2d:2d:d2:
bd:fb:f2:bb:4e:87:58:11:6a:f2:8a:ae:b0:1e:8c:
3d:6e:9e:ee:2b:5b:75:13:a4:7d:af:7b:da:c9:27:
db:b7:d1:95:67:99:4a:27:4d:a6:8d:e8:00:37:d4:
3b:04:1a:d7:7c:6c:f2:a4:92:20:fb:bc:a8:5c:7a:
ac:33:59:aa:d7:b2:c4:f5:d5:a3:65:53:15:38:af:
f3:5f:2a:69:07:18:16:d7:df:bc:0d:f7:ae:e6:80:
b9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1D:50:C5:9F:2F:BB:A2:CB:E6:36:BF:1C:EA:90:78:6B:8B:BC:9A
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:34:fe:77:01:d5:b6:7c:5a:e0:89:f5:15:89:e6:59:5a:19:
21:c0:b6:a0:be:01:fc:b8:58:c3:8e:bd:1f:7d:f2:e4:78:02:
ec:71:27:a0:6e:38:44:4e:93:59:0d:8f:9f:d6:1c:10:77:50:
9a:65:02:3f:b9:f8:23:ab:b4:a1:b7:7e:3d:9c:e2:e6:3e:e0:
ae:29:2a:99:61:e4:6a:83:03:23:7f:e5:81:f5:aa:0f:2d:6d:
b2:f0:32:b7:f7:3c:69:83:c7:61:60:86:10:1c:7f:5e:1b:6c:
c0:4f:4f:ac:37:23:93:b2:41:81:ab:bb:77:54:0c:d5:9c:fb:
02:42:0c:98:47:c1:41:7e:9a:86:c0:71:fd:60:b8:d7:67:68:
f1:74:9a:7a:c3:ce:d3:ef:3d:74:e9:41:fb:40:ab:bf:1b:60:
bf:fb:3a:be:70:51:47:a5:15:8f:14:cc:0b:51:03:15:ee:e3:
bd:2b:89:e2:f2:5d:84:a7:b1:f1:03:d4:46:f1:fa:ce:a5:4a:
e4:30:eb:91:11:cf:5f:d9:59:c4:d9:65:f1:e3:62:ed:22:82:
ef:2b:7b:34:be:11:ae:7e:00:48:cf:ea:49:88:d3:c8:63:5d:
1f:19:80:ad:2f:bf:22:56:38:f5:85:df:70:61:92:87:cc:d2:
9c:8d:c9:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 14:07:05 2025 by rpki-client