Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
File: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft (raw, json)
Hash identifier: 2t1t9hOfCuXEUMNVQKXGHvWlskPmuWSLDX6Yl2c3nCU=
Subject key identifier: F8:6B:D1:91:BA:A6:8E:74:BD:83:43:77:82:18:4F:CB:0D:19:71:E5
Authority key identifier: C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
Certificate issuer: /CN=c8544c778152f0fd85e5dcb44904f001e5987424
Certificate serial: 01967D57FD46BD7453916085AB788268F21D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
Manifest number: 05BE
Signing time: Mon 28 Apr 2025 17:00:40 +0000
Manifest this update: Mon 28 Apr 2025 17:00:40 +0000
Manifest next update: Tue 29 Apr 2025 17:00:40 +0000
Files and hashes: 1: S6l_0JOcWBI56o1Ky2VXoMdeNbs.roa (hash: Wj6L5jF5/gTOwMGZzw/KKTZV7RAbfIUF0qejcJRN4Ao=)
2: nUgVe_wCiJGaFj6dh7AjUlPsEn0.roa (hash: jaTBLGxMAzmUNw1xz6jc+rhc56U1GYTnqK8npgQkUZU=)
3: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl (hash: 0qoJ3Pnr3Jb7GVGklrot5S/4AQChCXexUn6DkdqqhnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:57:fd:46:bd:74:53:91:60:85:ab:78:82:68:f2:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8544c778152f0fd85e5dcb44904f001e5987424
Validity
Not Before: Apr 28 17:00:40 2025 GMT
Not After : Apr 29 17:00:40 2025 GMT
Subject: CN=f86bd191baa68e74bd83437782184fcb0d1971e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:45:23:1a:a9:81:b2:d3:73:0e:e2:a1:d2:08:
a4:58:e6:04:dd:c4:53:d9:c8:7e:8d:0a:fc:e8:da:
c3:8d:69:0f:99:f4:42:41:1f:f5:8f:0e:93:74:4a:
85:30:a2:89:2d:d4:03:ae:09:c8:d0:d5:df:4b:8a:
f4:fc:2b:1a:2d:4c:16:ba:36:71:16:5d:87:1c:fa:
a2:15:c5:9d:32:db:85:33:58:61:e6:b2:40:57:0a:
95:09:43:cd:53:f0:13:df:91:f6:9a:2b:a4:b0:59:
b9:e2:e6:6e:61:1f:cd:7b:3e:2f:18:a1:8d:3e:30:
48:1b:22:53:40:cb:7d:0f:23:12:27:22:45:e9:62:
7a:7d:68:94:2b:82:75:36:38:b8:96:09:d5:9a:d6:
ab:58:23:28:ab:ba:04:11:7e:15:a8:ee:36:22:13:
6d:7e:98:45:9b:8c:ae:f0:b3:5b:41:bb:71:07:0a:
37:0b:c3:2a:b5:97:06:a2:19:57:30:4a:58:fc:e7:
c1:fc:62:a0:e0:c0:18:1c:f6:a6:88:d1:6c:d2:fe:
b4:a3:9a:64:93:f3:1c:e1:cd:ea:88:ea:d7:fa:4f:
64:39:dd:48:f7:ba:fa:6c:35:d0:47:a3:f8:04:46:
7d:6c:d2:c2:b8:c8:75:a0:a6:c1:d2:ea:2b:86:44:
f0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:6B:D1:91:BA:A6:8E:74:BD:83:43:77:82:18:4F:CB:0D:19:71:E5
X509v3 Authority Key Identifier:
keyid:C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:b3:18:8d:e7:42:38:44:99:7a:c4:4e:5d:b0:f4:16:71:9b:
4e:ed:7a:de:9d:96:9a:b7:c0:c7:05:39:8e:2c:b0:45:d3:39:
67:e8:0b:22:bf:d6:25:f4:66:17:5d:92:e7:39:ed:29:38:8f:
26:b5:01:9d:af:7e:c0:24:ee:55:8d:1e:85:e9:1f:74:a9:e6:
4f:d3:8f:89:ac:59:85:f8:2c:0d:75:34:00:38:4b:b1:4d:03:
3d:cb:88:da:8d:30:c9:19:8f:54:e9:1b:65:f7:b5:0c:4c:f8:
3b:19:10:cb:cf:84:69:97:b2:70:2a:2d:c9:fc:f0:13:02:3b:
26:42:25:7d:67:32:b9:e4:8c:f1:0d:93:d7:14:6c:c2:47:98:
4e:8a:f3:6c:f9:92:1a:6d:21:98:78:7d:9f:e8:aa:1f:7c:ca:
e5:27:85:8a:9e:eb:2c:c2:2c:9b:ab:5f:f0:4a:c9:97:a1:fe:
a5:65:85:51:d8:b7:d0:0f:4a:c1:d3:f4:00:24:c9:12:78:19:
a1:bc:58:f9:ab:c3:de:96:18:36:5f:a3:96:08:2d:10:26:de:
2f:b3:e5:b4:d9:c8:73:95:4e:38:07:89:18:0e:65:62:7f:f6:
e4:ee:15:30:55:23:c3:ca:1f:89:3e:33:46:48:f2:45:1c:44:
b2:1f:f2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 01:20:53 2025 by rpki-client