Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
File: cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft (raw, json)
Hash identifier: 9rLwwmr3rqRGEAOWs65Tx/0L03o1Eb0N701fxURLqSo=
Subject key identifier: B3:AC:E5:35:26:22:32:60:E6:0A:06:EB:22:0E:61:22:78:A8:A1:DF
Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd
Certificate serial: 0196C1CB13A7F8A458B3EF8A71096174C904
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
Manifest number: 1536
Signing time: Mon 12 May 2025 00:00:33 +0000
Manifest this update: Mon 12 May 2025 00:00:33 +0000
Manifest next update: Tue 13 May 2025 00:00:33 +0000
Files and hashes: 1: X75BC-oQSIZ_Eow4PmOQdnEFFSA.roa (hash: 9fCRye0I7SNN/gpC5nOojc7Nk1BoVgXxf8JAD5uwXBE=)
2: cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl (hash: Q6Ktk2VgQ0wx/9c0lvaAQFJmimGzobZBIF/hhKcWAvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:cb:13:a7:f8:a4:58:b3:ef:8a:71:09:61:74:c9:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd
Validity
Not Before: May 12 00:00:33 2025 GMT
Not After : May 13 00:00:33 2025 GMT
Subject: CN=b3ace53526223260e60a06eb220e612278a8a1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c2:b3:69:63:fb:6b:cf:10:c3:f1:6b:7e:3c:
3f:6b:ea:10:71:75:fc:37:ef:e6:4a:bf:1e:e5:5c:
a8:77:35:da:3c:be:92:08:74:34:5e:03:8c:e6:b1:
ff:54:8f:b7:83:1a:4d:d5:7c:ef:4a:0a:fa:7e:75:
b5:14:63:ef:f9:fc:02:59:58:9b:e7:9f:b6:31:89:
b3:ce:c2:02:c0:90:8f:8c:ce:9f:5a:10:5f:98:5b:
37:ce:0e:5c:e1:3b:ee:59:6e:02:d4:fd:f6:1c:30:
bf:91:b7:fa:59:59:b6:ce:c0:9e:d1:72:40:8c:01:
99:80:d7:51:47:66:51:f1:00:03:97:8d:c4:d7:6b:
08:43:39:cc:39:aa:c1:a7:bb:0b:94:53:da:d0:92:
4a:89:6a:81:6e:c8:63:68:2a:ab:cb:93:f0:4d:27:
09:a1:68:63:57:5b:5d:5c:a8:10:13:fe:63:b7:50:
a1:bb:0f:e2:fc:da:53:0b:aa:14:8c:28:5a:39:6a:
ca:ef:45:ac:a3:44:ac:0a:4a:6f:f6:a0:7d:27:52:
4f:c8:27:90:11:de:b0:aa:a9:33:57:71:4f:ea:d3:
13:94:e8:2f:e3:97:e7:be:c6:92:af:31:99:1c:bf:
8b:eb:5e:7a:41:15:8d:b4:ac:bc:f9:20:98:76:08:
a8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:AC:E5:35:26:22:32:60:E6:0A:06:EB:22:0E:61:22:78:A8:A1:DF
X509v3 Authority Key Identifier:
keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:47:70:47:05:c2:8c:67:20:10:5d:1c:55:8a:24:84:4f:6b:
a3:ff:85:b9:ba:1f:e5:f3:48:18:23:b7:90:e4:0c:20:55:ac:
7e:c1:55:a5:7c:98:5a:df:6d:21:84:e7:ca:e5:0f:06:32:be:
fd:88:f3:c2:04:48:62:6f:04:3c:13:ab:4f:a7:1d:05:63:84:
de:cc:f7:5b:a6:7c:1d:16:f1:6c:49:97:83:00:01:3f:20:c4:
ff:f1:5f:66:ba:80:6f:cd:0b:31:cf:e6:8a:57:f6:31:c2:d5:
65:e3:82:df:4e:06:68:88:ae:65:bc:f7:f6:ab:ed:f9:c3:f3:
6c:c9:fc:98:c1:53:73:17:27:e4:f2:4b:79:0d:f2:60:21:bb:
fb:76:ad:93:94:7f:9c:cb:24:46:16:72:75:0e:c6:29:ba:c7:
bc:9b:0d:35:16:b9:ce:db:97:76:e4:c8:38:d9:b3:72:83:c5:
a6:56:a2:a3:31:fb:e9:ed:8f:2c:17:f4:d3:5b:af:00:86:83:
04:1c:e9:dd:19:85:b4:d7:21:70:fb:94:10:dd:ba:f8:df:02:
00:7f:d6:ff:74:9d:2e:93:82:6a:53:23:a4:77:9a:56:61:ea:
a1:e5:1c:a6:3f:58:16:12:eb:be:bd:03:58:c7:c2:32:de:c2:
55:4b:a3:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 02:13:23 2025 by rpki-client