Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
File: JY9ajila0de0ih4RlYeQBStXolM.mft (raw, json)
Hash identifier: XnXHL1YzWCl1kHpRqAUCcwk4QHLRHl6QRS2g6A5Zo5c=
Subject key identifier: 1E:41:25:F2:FD:FD:7E:D9:6E:E3:DF:18:9D:52:4D:A8:8D:18:99:A7
Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Certificate serial: 0196C0EF770E7B700B132A5485B29FB367D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
Manifest number: 148D
Signing time: Sun 11 May 2025 20:00:41 +0000
Manifest this update: Sun 11 May 2025 20:00:41 +0000
Manifest next update: Mon 12 May 2025 20:00:41 +0000
Files and hashes: 1: HL0tpswU2gQezd0-x9ZWDdfR-RY.roa (hash: NAIPlF1KgdG7sggbmAwv2GRB6aTgtE/arOeqKYJF690=)
2: JY9ajila0de0ih4RlYeQBStXolM.crl (hash: li5dhEwCQ8q3Fk4hrG4lb0xrBgIx/df2f2LJR5EZzPc=)
3: X5-jl_Od0mEO_dSg7rALYkevjoQ.roa (hash: xqc4fnPLjvYYKZxEv5pbNLPSZEhrMf7SnWN3fQ6sCO8=)
4: ljF5u-YRkQFhR1-JzkqgY4rX8fg.roa (hash: yARJg/r5KzAJTCBC6Aa8YbBreZ5SqvZOXFrSvclMQ38=)
5: s_QDIrLshBQNlu6RPwCemGYvy74.roa (hash: 6Y18bq+vtApdDZHTDEQgo5JwDFt4pJR0lVY1yqjzjsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:ef:77:0e:7b:70:0b:13:2a:54:85:b2:9f:b3:67:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Validity
Not Before: May 11 20:00:41 2025 GMT
Not After : May 12 20:00:41 2025 GMT
Subject: CN=1e4125f2fdfd7ed96ee3df189d524da88d1899a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:37:46:60:65:09:86:77:7b:c2:52:a1:10:b5:
ff:10:6e:88:0a:07:dc:c6:f0:18:3e:6a:04:db:1c:
eb:ae:38:3e:23:56:da:d1:1f:67:35:6d:ca:c9:31:
a7:60:a0:6d:62:4c:df:d4:60:66:d4:63:d3:89:1a:
36:82:17:71:31:5d:fa:87:32:68:53:82:f3:1a:91:
cc:ee:b0:a8:88:4b:12:c9:b2:aa:18:1b:6d:c7:f3:
5a:21:0d:03:21:d1:65:07:11:58:7a:3e:1d:a7:96:
1d:62:a4:cd:0d:0a:2d:b3:2b:ef:05:c7:0e:02:72:
f0:cd:7f:ce:eb:69:fb:a2:3e:ca:6b:20:ba:27:47:
70:7b:62:6c:89:69:f0:52:15:8e:19:76:fb:21:0e:
48:de:0c:c7:4b:ae:a8:02:70:c6:de:30:13:91:9f:
c3:75:0b:5f:23:3a:a9:4d:74:21:5b:8d:30:b6:23:
b3:a7:8f:b9:2e:94:a0:cd:ea:06:f1:f9:1e:04:1d:
c2:39:bd:f4:2c:e4:34:46:68:8d:4d:df:f6:93:bf:
95:df:e3:05:7d:a8:2f:db:d2:a4:7d:12:40:13:b9:
03:19:4c:7c:f3:9d:8e:9b:1b:c9:58:fc:2f:fa:75:
0a:bf:56:e3:b6:71:6e:39:9d:50:04:da:85:8f:e7:
65:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:41:25:F2:FD:FD:7E:D9:6E:E3:DF:18:9D:52:4D:A8:8D:18:99:A7
X509v3 Authority Key Identifier:
keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:5f:36:b8:c2:70:9c:a2:64:80:c3:2e:f1:57:ec:ed:91:5e:
bb:41:86:66:6c:73:a9:f9:66:6d:02:9a:d0:aa:92:49:5d:6c:
19:92:01:02:39:3c:c2:e4:2c:fa:e0:57:9a:34:bb:ad:87:07:
4d:12:db:16:10:72:a9:36:fe:37:76:95:d5:ae:a9:9a:37:4d:
ac:02:8d:b9:c3:6a:0c:88:02:15:f2:e5:9b:19:e2:af:de:b5:
49:10:35:74:c8:1b:b2:3a:3d:9a:ae:10:14:2e:ea:9b:72:bd:
a3:94:da:08:e3:9f:0e:69:69:9a:2f:b6:69:62:a5:21:b9:54:
e5:d6:62:93:c4:78:c8:fc:5c:e4:91:2d:11:92:23:08:6d:54:
af:9a:52:e7:b4:4a:0b:da:84:fe:6c:07:9f:43:19:0c:0b:b4:
29:3a:c0:83:d8:6b:a5:db:08:51:bb:53:a5:39:b2:0b:83:f1:
fe:69:4d:15:d4:9c:fc:f1:2d:70:58:f5:b9:e0:ff:ca:13:fe:
64:57:e0:81:24:f5:01:f7:df:b3:b1:79:69:f7:20:55:32:63:
e9:a5:47:95:60:b0:42:f3:b8:ff:64:c7:4a:db:2e:79:a0:7d:
80:3e:1a:07:9d:5e:be:f3:c6:73:54:19:fb:09:66:d9:e9:3e:
3f:70:27:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:08:14 2025 by rpki-client