Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json)
Hash identifier: HKR2RmcITgvf4/2foEFRKsJBMioGxXqFpwfbKk7KQko=
Subject key identifier: B3:E7:AC:A2:74:D8:90:0E:73:57:2C:82:06:D9:B7:DD:AC:5B:49:F8
Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Certificate serial: 0196BAED2EF29ADC33EF4DBEC6EE546AFA62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
Manifest number: 01E6
Signing time: Sat 10 May 2025 16:00:28 +0000
Manifest this update: Sat 10 May 2025 16:00:28 +0000
Manifest next update: Sun 11 May 2025 16:00:28 +0000
Files and hashes: 1: q6cfXUDveWHdgQWTYKqVwvvOAe0.roa (hash: BJPMM6GNYN6IqCj9i2G5fXzbZjuTVnz0OtAPd8t+eZk=)
2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: GYmTnxw2rLrM7rQQK7jT8W/FIIj6d5+fFXUqB3MqZ0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:ed:2e:f2:9a:dc:33:ef:4d:be:c6:ee:54:6a:fa:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Validity
Not Before: May 10 16:00:28 2025 GMT
Not After : May 11 16:00:28 2025 GMT
Subject: CN=b3e7aca274d8900e73572c8206d9b7ddac5b49f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4f:bd:83:27:b4:58:87:ca:e2:68:d9:eb:43:
4e:ab:50:2d:53:84:6a:ab:d1:f9:25:66:f0:ce:5d:
98:9d:d8:6a:8a:81:69:89:6f:3f:0c:6f:8e:3e:94:
42:5a:45:c8:74:4b:93:77:02:89:7e:0f:8d:df:8c:
a9:07:c1:81:5c:5d:26:97:b8:54:94:be:78:00:66:
e1:6d:b6:f7:6e:4f:1d:e7:19:4f:4b:44:78:26:59:
4a:cf:b4:4f:dc:7e:9c:c6:31:f6:a4:f2:5b:2c:69:
b4:1e:b7:57:60:49:c4:b8:79:27:ec:9d:6d:3b:c9:
8b:60:d8:6e:cb:d9:bd:ad:71:80:4d:78:42:fe:74:
ce:e3:e3:18:38:fc:b9:87:78:4c:98:3d:ef:c7:2b:
fc:63:9b:ae:ff:fa:a6:f1:30:29:92:b8:2c:14:f1:
ce:ff:fe:9f:da:72:7c:fa:07:d1:32:8f:25:69:c7:
4c:c0:84:0a:b7:52:7d:01:b3:27:37:7b:aa:e6:d3:
9a:17:7d:98:79:89:fc:fb:e1:40:4a:5d:59:17:f8:
85:dd:66:95:fb:4f:d6:dd:26:71:21:b6:f1:ea:39:
04:9c:b6:05:e2:c6:24:01:7a:3d:5a:eb:b4:9b:5c:
08:a8:0d:94:90:d4:dd:5a:f0:ec:00:f2:e0:8f:15:
c5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E7:AC:A2:74:D8:90:0E:73:57:2C:82:06:D9:B7:DD:AC:5B:49:F8
X509v3 Authority Key Identifier:
keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:f2:c5:24:c3:55:62:30:bb:ab:03:16:76:1e:ed:97:09:59:
04:fd:fd:ab:e8:84:07:8a:1f:e6:02:e4:25:f9:d9:14:b3:cf:
78:5f:fe:be:e2:69:52:97:07:37:7c:c0:33:07:db:c9:01:95:
b9:99:c4:ec:f4:29:05:1e:40:6d:1b:d9:0c:ab:57:cd:d3:7c:
52:ae:22:ad:07:66:b5:6c:e0:cf:55:1b:1a:39:fa:aa:7f:84:
a4:89:bf:03:31:d1:10:cd:76:6e:79:f0:d6:d0:c4:2d:95:ba:
26:e9:c1:27:60:7e:c8:c0:a0:fc:17:ef:ca:f9:7e:17:c3:67:
6e:fc:a0:5d:42:19:4c:d4:f7:95:97:70:96:3e:4d:c5:ab:d2:
f6:98:d3:f7:46:5e:94:69:e9:52:57:0a:d7:e1:c1:cf:65:0c:
13:43:92:c4:b4:6f:5d:e8:e7:95:dd:11:13:1d:91:7c:7a:a3:
92:3c:74:ed:fd:c9:70:57:8e:d9:59:1a:46:a8:e9:67:62:85:
fd:85:bd:9c:2d:5d:6d:8e:32:d6:ca:3f:06:f7:32:e9:43:05:
6b:98:5e:95:80:15:e4:c7:d2:3e:b3:25:ab:4a:cb:4d:0f:c9:
1b:79:a9:17:90:05:25:de:b5:7a:c4:b7:be:ae:df:3d:16:81:
20:fc:f7:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:08:45 2025 by rpki-client