Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json)
Hash identifier: lrLJQ+pS3763nMrbri7x2Qlc2nDX33Ms79zUDUuOuWE=
Subject key identifier: B0:B6:F7:AE:7D:DA:50:8B:2F:5A:44:F5:49:10:BF:CC:6F:20:CD:E4
Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be
Certificate serial: 0196AFFC8720AA8F0A2E0EC400042970E7BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
Manifest number: 0887
Signing time: Thu 08 May 2025 13:01:24 +0000
Manifest this update: Thu 08 May 2025 13:01:24 +0000
Manifest next update: Fri 09 May 2025 13:01:24 +0000
Files and hashes: 1: 5moGvKAoN95-3rdirRXOwCahhvs.roa (hash: SkhAzMm5Jb5vcIiM14h4SYz3DQTRyqaR2eF+qq4Rdl0=)
2: RuuQV8FVAOprAh_8jcQjyKszeBc.roa (hash: kX89cdA0JPKtfSqgIarOumMCZ1cTxgD0uR8aSG1ObUs=)
3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: ZP5yFubSxhF6NEQmmMa20zNG7RqL/ohMQHz+QB3/GzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 13:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:fc:87:20:aa:8f:0a:2e:0e:c4:00:04:29:70:e7:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be
Validity
Not Before: May 8 13:01:24 2025 GMT
Not After : May 9 13:01:24 2025 GMT
Subject: CN=b0b6f7ae7dda508b2f5a44f54910bfcc6f20cde4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1a:df:e7:b6:fe:d9:bd:04:c3:68:e0:2c:69:
15:54:91:bf:e1:0a:56:04:f8:de:b2:63:25:8a:1f:
41:67:cf:6a:7c:08:70:dd:c8:e1:d7:c5:2a:f3:04:
6d:ed:77:5a:cf:8b:bf:4e:0e:5b:94:6c:c3:f4:92:
c3:52:89:a3:8b:47:4e:e7:8e:96:fd:46:be:74:9a:
5e:43:80:c0:ee:f9:33:61:f5:e2:51:59:80:4d:65:
b6:cd:42:d2:25:3e:02:65:d5:5f:41:9c:0b:b0:46:
da:ed:44:19:70:e6:8a:23:76:a3:96:43:af:08:9d:
db:10:68:d4:93:14:d8:57:0b:ce:4f:76:b7:a4:57:
3a:c8:de:27:58:de:5c:1b:50:b4:5e:d6:8e:d8:c9:
a6:de:35:13:09:d1:14:0e:3d:dd:2b:0c:32:87:60:
95:cb:8e:ca:9f:d5:61:e8:97:05:a3:f8:63:2d:de:
e7:84:14:3a:27:c3:96:5e:d6:69:3f:94:d7:cc:86:
c7:80:a5:ec:c8:7d:86:6e:2f:c3:92:a4:68:e8:76:
69:fb:e5:fa:da:3f:ec:82:b2:76:04:b6:72:30:db:
c1:ed:22:b2:50:01:c2:04:6f:77:ac:3e:28:dc:07:
fb:ca:4b:e3:d5:ed:49:82:df:49:43:db:f6:5c:63:
5a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B6:F7:AE:7D:DA:50:8B:2F:5A:44:F5:49:10:BF:CC:6F:20:CD:E4
X509v3 Authority Key Identifier:
keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:bc:8b:1b:56:99:1d:b3:4d:51:9d:bc:cd:1d:cf:98:d0:cd:
fe:51:c5:97:a2:1d:7d:d7:72:bc:f0:1c:b0:3a:3e:ef:45:26:
d0:f5:ab:2a:02:64:ee:35:30:15:a0:c7:af:0c:47:11:be:23:
93:d1:ab:e2:03:53:bd:b6:3c:85:62:aa:ad:78:1e:03:b0:62:
49:d5:b4:10:f0:99:ee:a4:85:d2:1e:c5:1c:4c:48:0b:5e:73:
78:10:ac:74:16:a7:b6:48:06:6a:b0:5a:f2:ac:aa:18:8f:5d:
0f:40:d2:c9:44:19:f9:af:be:1d:9a:b0:c4:d6:98:cc:c7:0d:
99:b2:2b:95:39:00:a6:66:98:d4:1e:f8:f7:14:26:22:82:34:
b6:13:a9:c0:9e:19:1c:66:48:05:ab:68:0f:49:a3:1b:2a:5d:
11:10:a0:de:6f:67:d5:6b:be:95:5b:4f:2f:9d:24:92:f4:56:
13:b5:38:69:da:e2:18:0b:e8:e2:04:b5:96:3d:5a:2a:92:2f:
68:1a:6b:46:10:77:8c:c3:91:34:91:a0:6b:b5:b0:63:1a:04:
fc:ba:45:82:d3:1e:4e:91:72:5a:4a:08:64:88:5c:28:17:1b:
20:8e:74:90:98:b1:21:1f:b5:56:82:4f:56:d5:aa:ef:0e:2d:
b4:09:5b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 19:01:57 2025 by rpki-client