Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: P2OPBeBwSHcfWhYcHNHxcArGgALBU7lvVG2v6YU+d5o=
Subject key identifier: 69:26:6E:F1:7F:86:C0:23:93:DB:42:23:58:58:DE:28:C0:D6:D6:F7
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 01969ED0F080D006D6F56CB2B23E4DC42110
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0A43
Signing time: Mon 05 May 2025 05:00:15 +0000
Manifest this update: Mon 05 May 2025 05:00:15 +0000
Manifest next update: Tue 06 May 2025 05:00:15 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: hd8lkQ2Qc5ZcHoar0DsHqcEKy2G1oas2Jr7h9TtRCwc=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:d0:f0:80:d0:06:d6:f5:6c:b2:b2:3e:4d:c4:21:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: May 5 05:00:15 2025 GMT
Not After : May 6 05:00:15 2025 GMT
Subject: CN=69266ef17f86c02393db42235858de28c0d6d6f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:94:85:99:4c:6e:f4:20:33:1c:8d:8d:49:12:
d7:2b:63:19:39:53:2c:8c:4d:30:7d:af:04:27:40:
3b:36:f1:24:8b:68:d9:f7:3c:10:f5:1e:d8:c1:72:
c0:5a:5b:9d:5d:3e:b1:96:f0:9b:80:1f:c3:10:c2:
bb:bd:21:18:e9:8b:c6:d9:7b:43:aa:99:57:2b:e9:
4d:a3:7c:5a:2c:44:72:63:39:c6:d8:ea:ae:ee:6c:
c5:14:ca:32:46:d7:e9:60:ea:4a:1e:60:6e:ac:af:
b6:da:af:e3:f1:cd:c5:a0:bc:0e:46:8c:10:ca:e7:
42:95:4a:ad:65:e6:01:a2:c3:6b:b7:2f:36:d5:34:
1c:b1:b1:82:0e:78:4a:32:34:4f:3e:8a:75:a7:ed:
8e:0d:b8:f7:68:26:8f:e4:2e:53:2b:ca:71:bb:68:
49:bf:9d:f8:8a:43:6f:f3:07:ce:07:28:a1:50:e9:
c5:c6:83:2c:69:8b:94:73:50:4d:3d:a9:5b:eb:37:
05:50:c8:97:ad:d6:4b:c9:c2:48:c1:c3:13:ea:f3:
81:bd:30:52:0a:d4:11:a9:55:e5:7c:63:dc:ac:72:
48:4d:e4:cc:69:94:62:52:35:40:22:20:52:99:7a:
63:d0:55:a3:2c:4a:c2:72:f3:d2:31:c2:3b:0d:e4:
65:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:26:6E:F1:7F:86:C0:23:93:DB:42:23:58:58:DE:28:C0:D6:D6:F7
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:d6:be:f2:6d:6e:57:eb:a5:9d:46:c9:c5:0c:60:5b:5f:bb:
a1:5d:4a:54:a0:de:22:55:70:3d:8c:62:29:f1:7a:b4:09:9f:
71:5c:ee:2b:a3:82:07:2b:93:b8:37:f0:05:e6:be:42:c7:12:
f6:29:ac:0a:ba:e3:17:61:08:cd:d5:50:7c:48:09:74:af:85:
91:ab:ce:df:59:5f:c9:3c:78:f2:fd:d9:f1:bd:3e:1d:e9:73:
05:0c:cb:5c:1f:90:5a:bb:fd:09:07:d6:99:fa:e4:f0:90:ec:
76:3e:f0:e5:52:20:8d:c9:3b:dc:4a:5b:0f:0b:39:b1:f7:c5:
87:3f:56:13:39:3d:9c:c3:a3:b8:a9:18:c1:82:70:ad:d5:6f:
2f:b9:45:28:b7:f6:c8:f9:2a:62:8c:a2:b8:16:85:b7:8a:ce:
a1:ee:df:c0:0f:2b:f6:9d:b3:30:ca:ed:34:ea:18:d3:2d:34:
5d:55:02:bc:f8:d7:5b:84:69:f4:22:ac:3c:2e:ee:ef:4c:2a:
2d:27:25:c1:86:4d:41:f2:16:fb:15:d0:68:aa:e3:7a:2f:d8:
0b:e0:bb:8e:6a:11:1c:69:b9:9b:1b:c7:60:3c:15:f3:0f:8f:
a3:09:9d:44:ec:98:6a:6f:03:13:9b:27:0a:47:45:b3:5b:67:
e9:28:f5:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:44:23 2025 by rpki-client