Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json)
Hash identifier: AJ8p9346o1PYAe7cN2RVuBhLg7yrX9tQrUsmtqn/jvY=
Subject key identifier: 71:5E:87:8B:51:5C:72:1C:CA:EE:BE:AB:D0:D0:22:4C:8F:D8:9B:59
Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Certificate serial: 0196A4D379E1E1C7F17BFF4D9868B98A0535
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
Manifest number: 1526
Signing time: Tue 06 May 2025 09:00:44 +0000
Manifest this update: Tue 06 May 2025 09:00:44 +0000
Manifest next update: Wed 07 May 2025 09:00:44 +0000
Files and hashes: 1: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: 404li/OFk6DJcBornmqQT2+rL01BUnZ9pv3x+xl2srM=)
2: ZmJk3i0UqR_uJ_XLaSjGUe2aH00.roa (hash: BCwdh7j1ZUyJ+mVEfLtfrzwX+n9rg9YN807VJjPHsUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 09:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:d3:79:e1:e1:c7:f1:7b:ff:4d:98:68:b9:8a:05:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Validity
Not Before: May 6 09:00:44 2025 GMT
Not After : May 7 09:00:44 2025 GMT
Subject: CN=715e878b515c721ccaeebeabd0d0224c8fd89b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:93:ee:e7:fa:66:80:b2:b7:fb:da:0b:4e:73:
38:0c:15:48:e7:65:25:92:91:a4:5e:6f:92:6a:a2:
c1:43:01:7b:72:1b:d3:23:7c:54:c9:c2:6f:6b:1f:
cb:d9:3f:d1:0a:91:16:f0:79:ce:a3:be:82:8a:de:
36:8b:ef:72:08:e0:20:f9:77:5a:c7:f0:23:3b:09:
83:1f:6a:91:b4:6d:e0:98:88:e8:f1:0b:87:3a:ad:
f4:bc:2a:53:d5:68:ca:79:92:b8:19:80:7b:1c:ee:
8d:7b:3a:8e:47:cc:85:e2:c6:a7:c8:85:66:89:e4:
7d:e6:4f:23:03:21:ef:f2:ce:b7:fe:37:ec:99:e6:
e1:5c:15:0d:8b:9d:7c:6c:80:4b:d1:f2:61:9a:05:
95:9e:10:9e:b4:e1:aa:77:42:1a:da:da:e4:7b:28:
7f:54:f9:ed:1e:c7:c0:58:7c:ed:b3:32:24:19:6b:
e0:35:0c:55:c7:84:08:d1:61:e3:f3:2b:21:85:05:
14:ab:51:c6:e3:cd:a3:b2:66:c0:71:46:8f:3c:0e:
cc:0d:8b:cf:80:8c:bb:90:cf:f9:cb:8b:b1:d3:b9:
ef:e1:49:79:2b:27:c3:7f:ec:2d:76:19:c3:bb:95:
ba:81:b0:af:fa:e6:98:9f:07:bc:c2:db:fb:a1:b2:
85:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:5E:87:8B:51:5C:72:1C:CA:EE:BE:AB:D0:D0:22:4C:8F:D8:9B:59
X509v3 Authority Key Identifier:
keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:08:da:f2:19:b1:10:51:2d:b9:b2:a9:30:f6:d6:28:25:5b:
95:d0:97:49:9d:65:0e:a5:8d:84:64:a3:b2:47:c2:6c:7d:b6:
41:0d:23:34:9d:db:6c:8d:19:83:9b:6a:ba:1a:91:12:db:59:
69:7c:61:49:19:7b:f8:2c:5d:a9:c7:77:1a:37:45:67:0d:69:
5c:85:bc:05:d4:04:0d:38:bf:70:61:6a:07:0a:89:0d:4d:e5:
0a:00:5c:0b:90:09:58:bf:a3:08:44:51:41:70:63:e0:73:96:
e4:2e:8b:dc:c6:b1:d2:48:93:21:78:fc:6b:00:58:c9:b1:20:
0d:f3:60:37:f6:13:0f:d7:03:c3:17:ea:a9:64:08:3e:9a:49:
5f:fa:bb:d6:6a:be:f8:77:88:2e:ee:39:f1:db:19:5c:86:0f:
66:9b:4f:2c:c9:ee:f8:ac:4a:53:0b:2b:e5:76:a5:8c:d9:64:
31:5b:4a:63:50:c7:a1:06:c9:c5:72:9f:b3:2a:63:f7:ab:05:
9a:0d:d5:ea:ef:43:46:f8:cc:ff:e9:09:79:67:22:7c:93:4c:
37:f1:5f:7c:6d:3f:eb:82:b8:93:27:37:2d:8a:3f:52:14:2b:
65:a7:98:83:e9:61:16:8d:73:ce:82:f0:21:59:69:d3:91:b9:
21:e9:55:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 16:18:59 2025 by rpki-client