Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json)
Hash identifier: ycTZlx/AYqhmt7amIYaqKIIr4bRhlcM9+eQCVmv0a3c=
Subject key identifier: F5:02:F8:56:C2:61:20:AD:CC:5D:10:88:AB:AE:CD:1B:37:8F:56:CF
Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Certificate serial: 0196C1CB45F5FDFA8FC378D2DBF6847AEB1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
Manifest number: 0DA9
Signing time: Mon 12 May 2025 00:00:46 +0000
Manifest this update: Mon 12 May 2025 00:00:46 +0000
Manifest next update: Tue 13 May 2025 00:00:46 +0000
Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: KeAXfpSUynQd6qGgq6tKBTyk1LK/xS99VxlAxyKx7Fk=)
2: v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa (hash: g731f8Kk7ZRmBzHdANv/XJyJm7Gc4rKXDwNwW3MJnpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:cb:45:f5:fd:fa:8f:c3:78:d2:db:f6:84:7a:eb:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12
Validity
Not Before: May 12 00:00:46 2025 GMT
Not After : May 13 00:00:46 2025 GMT
Subject: CN=f502f856c26120adcc5d1088abaecd1b378f56cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:45:21:8d:b4:43:df:94:9e:f4:a8:71:c6:b7:
16:4c:34:ff:31:79:cd:b1:af:10:e3:74:de:80:b0:
4d:1d:ba:72:8e:db:8c:91:67:5b:f2:bd:9a:99:e8:
76:e7:41:d6:7c:a2:e9:d1:4a:ab:0b:54:70:6b:57:
b3:17:d3:ed:49:0d:27:26:45:58:26:e1:61:60:89:
84:86:36:f2:e1:eb:f7:c0:1c:fe:06:5d:d1:d6:4c:
2e:42:8d:68:9c:bc:6b:0e:96:0c:cb:37:78:c3:ed:
fa:8e:1a:18:e7:33:10:6e:31:f0:00:2e:86:f3:44:
e2:47:03:2c:a9:92:22:eb:0f:14:e4:18:03:d1:29:
b3:69:2e:a4:a1:ad:54:7b:0b:b9:d1:e8:29:de:a0:
bd:0d:50:e4:8f:e5:1d:d4:85:d9:60:de:48:a1:a4:
37:2b:91:d5:d7:2d:38:99:61:ac:2f:76:7a:cf:a5:
0d:2b:6f:6c:d9:64:42:40:0a:b9:2d:ab:60:7b:fe:
71:25:5f:79:a2:cc:4e:a6:e2:e7:93:77:0c:83:5c:
1a:35:58:f7:84:99:7d:18:9a:8c:b0:5f:a2:1c:af:
dc:74:09:43:0e:ea:79:b0:d9:a1:30:b6:4c:91:b7:
1b:e9:23:77:7c:86:48:6a:26:80:c1:75:6a:b4:df:
22:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:02:F8:56:C2:61:20:AD:CC:5D:10:88:AB:AE:CD:1B:37:8F:56:CF
X509v3 Authority Key Identifier:
keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:76:6e:3b:37:1a:56:ed:cd:ba:29:2a:cd:eb:65:66:11:1e:
f0:36:41:6e:40:0d:59:d7:55:0e:8b:f4:77:49:f2:4d:4d:9b:
a6:b9:5d:b6:48:a3:45:48:df:ab:0e:65:cd:7b:b9:27:83:6d:
1d:a4:ae:5a:97:c2:c7:fa:bd:fb:7e:92:b6:9a:6d:9e:9e:0f:
3d:ab:5f:91:f1:8b:4f:37:da:77:45:58:0a:2f:49:ea:e2:47:
4c:33:ba:ae:35:0e:d4:5a:e2:bf:73:6b:9a:a8:ee:f8:32:2d:
ac:57:30:d5:1b:97:a0:a2:bd:4c:f2:d8:a2:79:c3:14:a8:aa:
29:be:17:a0:b1:f6:3d:14:22:8c:55:76:9c:e4:d6:a8:da:56:
db:ce:a3:15:04:ef:93:46:f6:e7:7c:b2:0f:2c:32:83:45:e7:
fb:41:12:11:40:3b:db:7d:26:b5:3f:80:99:e0:40:9e:20:84:
e7:e9:86:a8:2b:f1:1a:d5:1b:d2:08:c3:24:b7:7c:46:1f:87:
de:fc:5f:d3:3f:ec:72:5e:0a:a5:b3:ec:d2:5b:18:ff:3a:ea:
35:75:3b:c8:56:85:b7:bd:99:56:4b:4b:ae:5b:3a:8b:33:48:
b1:90:b9:05:c8:a4:8c:4c:f3:32:f9:d8:70:e0:47:e2:93:e1:
37:c3:14:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 05:21:39 2025 by rpki-client