Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
File: rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft (raw, json)
Hash identifier: O7i5DIgcgxRh6OvrjTaOPnGzfIIj9gtP+C0l5m9zDYY=
Subject key identifier: E8:49:88:61:70:BD:58:59:F2:F7:98:5D:B1:99:C3:9E:8D:10:B2:05
Authority key identifier: AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
Certificate issuer: /CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Certificate serial: 0196B2585CA4418F63204201CB560DEF2110
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
Manifest number: 11A8
Signing time: Fri 09 May 2025 00:00:57 +0000
Manifest this update: Fri 09 May 2025 00:00:57 +0000
Manifest next update: Sat 10 May 2025 00:00:57 +0000
Files and hashes: 1: r6C99vK2TllFCTWcqpJRSg5MRPM.roa (hash: 3+br3Wh/zPJPiW24ubp7XOxLj4qW7AeahE4kU9GEl1U=)
2: rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl (hash: ytYpE5FqU+X14T3sBdriJdftd29wiTkj7+H2dHHSMno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:58:5c:a4:41:8f:63:20:42:01:cb:56:0d:ef:21:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Validity
Not Before: May 9 00:00:57 2025 GMT
Not After : May 10 00:00:57 2025 GMT
Subject: CN=e849886170bd5859f2f7985db199c39e8d10b205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:00:c7:17:14:00:c1:96:85:a8:d7:9e:3f:f5:
3b:7e:91:f5:ca:9b:b3:ec:f4:a8:d8:b3:d6:c2:b6:
e9:bb:43:92:aa:d0:26:82:1b:ee:9c:ce:17:2a:af:
25:da:11:28:03:19:f4:08:95:2f:84:c7:3f:56:b3:
9d:78:af:36:2f:ee:cc:7e:10:ae:3b:91:6f:de:d2:
d3:60:2e:fb:44:13:39:b0:e3:d2:bb:ff:12:41:40:
de:ae:fa:cc:4b:29:b5:2c:4a:5a:49:1e:32:4b:3b:
4e:f4:53:5b:0c:5b:a2:a6:84:74:77:89:3a:d0:94:
9d:b7:d0:f0:f5:0b:38:0a:ea:4a:b3:92:b2:61:98:
77:2e:22:7c:7e:7e:cc:d8:c9:63:54:1f:7e:a1:f6:
69:e8:3f:45:fc:ee:0a:46:64:f8:82:7c:49:5e:88:
0f:d8:29:2c:f1:02:59:c1:44:d5:56:56:b6:69:5e:
c2:a5:01:11:4e:ae:ee:76:30:f6:7d:0d:ac:e5:07:
fb:21:5c:ca:4c:88:a2:2a:c1:8f:ed:2d:a3:9e:62:
01:8b:13:fe:6d:bd:1a:92:53:89:5f:fc:2a:79:71:
35:19:06:be:32:01:0f:5d:49:29:83:6d:db:9b:0d:
4c:c5:85:a6:8a:83:c7:1f:93:b0:11:95:99:c1:3c:
4f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:49:88:61:70:BD:58:59:F2:F7:98:5D:B1:99:C3:9E:8D:10:B2:05
X509v3 Authority Key Identifier:
keyid:AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:a6:75:3c:b1:f8:63:34:73:40:59:cf:60:3d:53:d7:f4:e9:
2c:c5:54:59:63:9d:13:36:26:06:57:93:e1:65:b6:14:c8:37:
8a:49:e1:51:6c:b7:3f:4b:dd:22:a8:c3:72:20:77:e7:bb:f2:
47:70:68:43:81:98:d1:d9:9b:44:e0:3b:15:78:f6:b6:ef:e7:
6c:08:10:ad:9d:a3:40:fe:72:28:9b:bc:ca:70:a9:19:a7:f8:
1d:34:d5:fb:4f:18:73:db:a4:1d:a4:26:31:f5:97:0b:9f:8c:
bb:6a:29:11:14:6c:e9:ce:e8:cb:8e:9f:3e:d0:44:10:9c:5c:
3d:c9:e9:dd:2b:c4:d4:48:2a:44:5c:fd:cc:3a:29:e4:e8:08:
cb:81:49:b3:d0:50:57:41:d5:5c:02:8f:8a:b2:87:fc:78:97:
5e:e9:74:76:e4:cd:49:ad:60:33:4a:a7:31:3c:8c:62:b4:ae:
7b:93:ce:9a:ad:93:cd:24:ae:69:e7:a5:f1:97:1b:7b:de:db:
c6:9f:4a:35:bc:63:df:d8:c5:ba:3e:b7:ff:1b:71:f1:21:21:
ef:2f:14:8e:ce:3b:47:29:40:b6:88:ea:b4:f4:2e:26:40:5e:
4a:0b:19:b9:a7:aa:38:c8:15:54:fd:98:01:eb:a9:24:2f:e4:
20:02:dc:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 03:48:24 2025 by rpki-client