Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json)
Hash identifier: 86Eo+WoiBi/Cx/8ZHjwPbOxM7UstID2kal9oG1ErT6w=
Subject key identifier: B6:42:D4:BE:18:F5:B0:1F:A8:F0:4D:1A:FA:5A:FB:16:33:22:DE:56
Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40
Certificate serial: 0196BF00DE7EFEE748901D3CED3654BE53E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
Manifest number: 1534
Signing time: Sun 11 May 2025 11:00:27 +0000
Manifest this update: Sun 11 May 2025 11:00:27 +0000
Manifest next update: Mon 12 May 2025 11:00:27 +0000
Files and hashes: 1: a0gi81K4PU-mZZPSh82aNeLjsVI.roa (hash: Id1bqvDurbpWKdNvf29qBzclAu3m5HKcR5Kg3lRHGKE=)
2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: QaoN2ptZn5ywKg4Ct1VWZZRGsPPy+BSZXoZKwMrZWX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:00:de:7e:fe:e7:48:90:1d:3c:ed:36:54:be:53:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40
Validity
Not Before: May 11 11:00:27 2025 GMT
Not After : May 12 11:00:27 2025 GMT
Subject: CN=b642d4be18f5b01fa8f04d1afa5afb163322de56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a2:d6:7a:9b:78:40:5d:d2:ea:ca:ba:8c:9e:
72:b2:05:62:ae:b9:1e:9f:f4:9a:06:c2:d1:7d:e5:
69:79:7b:9e:d0:3c:f6:ca:f9:fa:f3:09:c1:a5:2c:
61:69:64:8d:cb:ce:a8:7b:68:73:49:56:46:c4:35:
e4:ac:72:dc:be:df:d5:11:7a:48:b0:bc:78:60:43:
8b:9e:c6:db:70:29:e6:9c:7a:df:31:63:85:be:e4:
60:71:b6:f6:1f:93:cb:34:80:49:db:69:43:03:fe:
9d:27:1f:4d:ab:d5:cb:3c:23:13:bd:7c:9a:76:e9:
be:79:f0:49:ff:2f:cb:2e:b6:7a:71:d7:a6:58:56:
f8:ce:d2:a4:dd:05:cb:53:08:b1:2e:27:2c:32:99:
d5:49:ab:39:56:33:a0:64:27:aa:60:56:5d:45:c7:
09:77:01:b4:44:b3:2c:87:6e:6b:09:bb:81:b4:4e:
68:47:48:b1:25:38:e9:2f:6b:5a:c0:a8:07:41:9e:
05:e3:b4:0d:74:8c:c9:5a:f4:bf:2a:16:8e:c8:77:
a2:b2:fe:a3:71:ab:8d:d6:ed:7c:0a:6b:24:98:99:
3c:a4:48:5c:85:62:57:3a:91:ac:46:11:af:f1:d8:
6c:64:f1:34:de:1b:e9:13:1f:d4:d5:cc:c5:cd:f8:
d0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:42:D4:BE:18:F5:B0:1F:A8:F0:4D:1A:FA:5A:FB:16:33:22:DE:56
X509v3 Authority Key Identifier:
keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:5d:85:d1:80:50:31:e6:02:ca:34:3a:53:b4:22:3d:1e:ed:
22:11:aa:66:8c:fa:32:8a:d0:73:b2:8d:79:5a:4d:ef:57:15:
a3:cd:ca:24:aa:42:98:3c:0b:d6:76:cd:dc:bf:66:21:da:11:
36:b6:16:99:f4:6b:2a:c5:0e:53:d7:be:86:3c:33:7d:f1:67:
70:54:1f:3a:8f:33:9d:b1:66:a5:2a:54:83:8d:5b:bd:25:4d:
a3:a9:0d:ca:ba:f8:a6:08:a6:f2:03:96:f0:ce:72:79:b2:76:
df:3f:f4:f2:53:33:59:b6:e3:4b:50:60:31:81:53:9c:4c:b6:
9d:10:cc:85:04:46:d1:91:e5:14:d3:37:31:a8:3a:19:dd:5c:
4e:aa:73:b3:b4:21:72:96:08:45:8e:e9:77:39:7b:5d:72:cb:
86:82:f2:55:b4:19:c0:59:9b:9a:d1:04:c0:40:77:94:a0:62:
ec:b8:9d:b1:6d:b8:55:df:90:9b:67:11:9c:b9:f0:ed:b2:97:
ce:44:9b:c8:57:68:dd:0f:77:11:e1:c6:ee:69:94:ad:77:f9:
78:4f:75:23:45:36:ac:46:46:65:3e:ff:e0:e5:29:37:b8:28:
55:8f:94:1a:84:0f:77:29:11:b9:06:1f:09:a5:4c:5a:0b:a6:
b6:f9:d4:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:46:22 2025 by rpki-client