Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
File: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft (raw, json)
Hash identifier: TF2qo4+ZZ/c81u4V6gE+ljVPesWUqWPgdrdgaDDEfnE=
Subject key identifier: 8A:8A:2F:6D:99:41:F6:00:57:68:30:64:A9:B2:64:A7:88:21:7D:80
Authority key identifier: C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81
Certificate issuer: /CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
Certificate serial: 0196B0D7CE5F39753991C893DDA221CF8A5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
Manifest number: 0CFB
Signing time: Thu 08 May 2025 17:00:55 +0000
Manifest this update: Thu 08 May 2025 17:00:55 +0000
Manifest next update: Fri 09 May 2025 17:00:55 +0000
Files and hashes: 1: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl (hash: UIGS3EYIVA80jN1IKtYd2JusG3f9NyG7B03ClckfBPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 15:42:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b0:d7:ce:5f:39:75:39:91:c8:93:dd:a2:21:cf:8a:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
Validity
Not Before: May 8 17:00:55 2025 GMT
Not After : May 9 17:00:55 2025 GMT
Subject: CN=8a8a2f6d9941f60057683064a9b264a788217d80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ec:cb:a6:d5:77:21:d7:bb:fe:b6:ea:09:53:
a6:25:eb:98:d2:4e:44:67:9c:99:b1:6f:26:1f:cb:
9d:42:98:65:ce:51:81:5a:11:b5:0f:61:35:99:c0:
ca:70:67:7c:49:a1:f2:98:1a:b2:73:4a:03:3e:e3:
fb:b0:43:c6:e4:66:03:d0:01:9b:cd:80:d5:97:5d:
a3:8c:75:ca:d3:d8:11:f5:c3:e1:47:ba:f6:da:6f:
36:9a:17:84:7b:f8:c8:62:5f:10:03:16:38:62:f0:
47:b0:d8:ec:80:d5:54:a9:e1:e7:dc:22:66:aa:f3:
07:b4:42:97:84:a4:ce:2e:43:e9:4c:c8:8b:db:be:
31:b6:b5:e3:12:d9:d9:70:4d:b5:58:17:cd:9a:a2:
21:fe:a2:9a:df:22:14:ac:49:c3:15:58:1a:b6:db:
96:9f:d2:ac:c9:06:31:cd:80:e4:13:eb:09:62:2a:
4b:5e:4f:cb:67:c5:3a:a0:96:38:ff:90:e1:07:d0:
ed:55:87:8d:fc:c7:05:6b:77:85:dc:6a:e2:68:b5:
96:3b:07:d6:dc:56:ce:79:55:2a:94:8d:1f:96:da:
9d:53:18:60:58:82:f8:35:e2:34:4b:61:e3:3a:a4:
42:52:af:4e:fa:6b:16:f5:08:c6:63:77:c3:e0:23:
bd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8A:2F:6D:99:41:F6:00:57:68:30:64:A9:B2:64:A7:88:21:7D:80
X509v3 Authority Key Identifier:
keyid:C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:2c:86:d3:e7:98:c6:6c:ba:b1:8c:ba:c7:26:60:26:ba:31:
de:13:cd:27:43:93:b2:fb:4e:c3:38:6a:3f:5a:3d:71:bc:3c:
41:c5:b1:05:b2:65:e6:e7:6d:53:2b:79:0b:31:d2:11:41:60:
18:b2:44:ae:69:27:bb:d4:15:ba:42:45:61:83:a6:12:e1:3e:
a1:b4:2d:ee:67:83:b5:6c:99:84:06:5d:29:6f:2a:17:1b:ac:
ea:2e:e4:6d:95:e0:ef:f4:d5:1a:24:d9:e1:0d:8e:eb:bd:68:
b3:6d:2f:f2:b2:c7:92:17:be:73:51:38:af:1e:ce:b6:0f:ef:
48:8a:f6:f0:03:9d:7e:eb:25:b1:15:ff:a3:5e:89:94:a8:79:
c6:79:85:0d:6a:66:92:28:ae:24:19:8a:da:1a:e4:4d:ed:d3:
3f:e8:7f:d1:d0:be:72:02:13:4b:15:d8:90:f2:25:a2:28:c7:
a8:5b:a6:30:08:90:50:e8:2c:e8:91:b2:4b:e2:97:aa:0b:65:
aa:70:cf:98:f3:90:86:80:29:95:6c:b4:d1:8d:d1:f2:db:6d:
79:c2:fb:b5:22:3b:70:91:6b:de:de:22:2d:c5:ac:1b:78:72:
28:e9:26:1d:83:1b:a8:9f:bb:97:29:8d:d1:1a:22:66:f7:1b:
b3:2a:fa:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 23:31:25 2025 by rpki-client