Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: X8I7rqW2OFAsHDxkMxG4YF0cOyxjEnJwRvMVa66o4tk=
Subject key identifier: C0:E0:A4:67:C0:D3:8C:ED:3C:16:FE:1D:1A:C5:36:4C:37:47:09:DB
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 0196D7E4DEED6DCA840CE626CAB140BD7EFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 025D
Signing time: Fri 16 May 2025 07:00:22 +0000
Manifest this update: Fri 16 May 2025 07:00:22 +0000
Manifest next update: Sat 17 May 2025 07:00:22 +0000
Files and hashes: 1: 9jS2v21J95xARBtQOtdTT0EtYBQ.roa (hash: BeiYvaVP67aUM+eVkzjpflxlaHwkNmiJmUTQZAVqkOQ=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: 6eW7UMhBeykhqEHP1KD5mXgoE1l7kpbYo9r5RhnjeC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 07:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d7:e4:de:ed:6d:ca:84:0c:e6:26:ca:b1:40:bd:7e:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: May 16 07:00:22 2025 GMT
Not After : May 17 07:00:22 2025 GMT
Subject: CN=c0e0a467c0d38ced3c16fe1d1ac5364c374709db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1b:04:63:f4:e2:df:b9:f4:4f:4e:34:47:dd:
ae:75:2c:87:93:48:29:bc:c8:55:e1:c5:8d:7a:94:
26:a5:91:f1:2d:d3:ae:b8:66:67:3e:2d:26:ec:3b:
4a:67:2a:12:4f:13:92:07:21:2d:da:ad:ec:61:07:
5a:22:96:02:f1:af:df:b3:37:98:b4:15:96:15:69:
09:bc:70:49:d5:9d:f5:99:3c:d2:6d:c0:d5:f1:86:
6e:d8:14:f1:d4:63:ad:4d:77:bc:a8:7e:7d:9a:68:
08:2b:46:c5:d8:b7:26:66:ef:9c:fa:7c:f5:26:65:
43:cf:65:29:6b:b7:7a:89:81:6f:20:2a:63:bb:3a:
f6:02:c0:2b:c1:35:ec:42:4b:18:99:16:de:9d:50:
93:79:35:1c:34:04:df:52:d2:c6:c1:c3:a5:25:8c:
d7:b9:f9:8f:fe:58:ea:fe:2c:b8:4a:e5:06:04:3c:
3c:d4:e0:a1:45:fa:ba:07:4b:5e:62:5c:df:7f:87:
e6:1b:a4:91:cf:36:18:fe:40:5a:7e:9c:bd:17:73:
98:5c:74:3b:56:4e:d3:98:22:9f:b1:18:3f:6c:ee:
33:03:bc:f1:61:e7:e1:22:af:cd:56:68:e0:4d:e6:
5c:5d:4e:5d:07:07:17:be:df:3c:5a:d6:96:1d:81:
5a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E0:A4:67:C0:D3:8C:ED:3C:16:FE:1D:1A:C5:36:4C:37:47:09:DB
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:13:96:63:7b:ce:33:b5:cf:bf:7d:7b:09:35:b4:1b:c6:50:
fe:b2:2a:f9:c0:de:b2:26:2a:55:5c:eb:11:3c:11:a4:9a:e5:
7f:96:5e:4f:3f:2a:89:9c:05:46:08:48:98:75:a2:22:87:89:
c8:b4:5b:0d:ee:65:94:84:cd:45:03:df:38:27:86:f3:f3:82:
3e:8a:eb:72:6d:22:63:6d:1f:8b:0b:52:7e:18:2f:9a:28:60:
a9:04:60:4a:43:72:e8:00:e9:9a:24:fd:68:97:26:9f:00:12:
b6:62:c9:98:7d:7e:e9:5b:1f:9b:e9:df:54:ea:b9:20:20:c9:
22:45:c7:03:47:72:d9:ba:5e:5c:43:31:3e:9a:e0:6f:36:c2:
e5:86:72:52:1c:40:c0:40:c0:03:d3:af:68:87:9a:5e:4d:03:
bb:20:11:4d:c6:3a:a3:87:09:52:69:fa:5b:89:06:ac:c4:62:
b0:55:1e:a8:b3:35:ed:d4:2b:7d:af:3c:9d:44:9e:8e:4c:f9:
89:e1:36:a3:87:a5:6f:c2:9e:36:b5:97:c3:43:cc:f6:4b:f7:
e6:41:46:eb:62:de:cc:c7:8c:26:86:8d:e9:d4:97:1e:29:93:
8f:c5:23:2e:b7:70:a1:91:2e:56:76:31:53:a7:09:c6:dc:1b:
91:0a:b2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 18:14:12 2025 by rpki-client