Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json)
Hash identifier: KaXKX7jtqwK6NBL/ilMcF05AdRypWw0UJKj/bN/CWB8=
Subject key identifier: 4B:1B:CD:62:2A:CD:E7:F2:48:1F:EC:1D:70:9C:3C:9A:6B:57:E8:96
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 01969E9B3D09B5D771D9D34ADF313382A53C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
Manifest number: 02FA
Signing time: Mon 05 May 2025 04:01:35 +0000
Manifest this update: Mon 05 May 2025 04:01:35 +0000
Manifest next update: Tue 06 May 2025 04:01:35 +0000
Files and hashes: 1: UVQQxsyFxE5G_GAZUd3A6ZXjkCE.roa (hash: zpm9oScjJUHtNk/CwO+EVZyjIHRYFCB8FAgH34Qnsvo=)
2: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: kOAoWHXvhZdjSylIlarRvdtw0z3I6kxfeFD52WMGYxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9b:3d:09:b5:d7:71:d9:d3:4a:df:31:33:82:a5:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: May 5 04:01:35 2025 GMT
Not After : May 6 04:01:35 2025 GMT
Subject: CN=4b1bcd622acde7f2481fec1d709c3c9a6b57e896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:af:18:03:bf:ac:04:61:77:cc:74:3a:f8:c6:
c5:8d:97:36:71:7c:9e:d3:f2:98:c1:ba:c8:ff:a6:
fc:c4:d0:ba:ff:45:30:bb:19:2f:47:1b:2c:16:fa:
cb:83:39:3d:e5:45:e1:58:7a:08:17:58:d6:9e:0f:
a2:4d:81:24:9e:47:2a:b4:14:b3:a4:57:8c:96:97:
f0:28:40:06:b5:77:f7:90:dc:b4:28:f3:02:61:53:
83:0e:73:b4:41:a4:10:ac:07:cf:ca:a5:dc:a9:cd:
7a:94:b2:c5:c4:58:67:c3:c7:7d:b0:4a:bc:55:e3:
71:bc:cd:95:ce:82:b2:1b:37:b8:f8:ff:54:48:48:
24:af:eb:da:41:fa:05:33:03:fb:f3:8d:d6:f9:3c:
f1:b6:9c:92:5a:f0:91:21:ec:d8:c3:15:88:fe:de:
28:7e:d9:3c:29:b7:a5:d2:7a:d0:5b:ce:83:eb:66:
2c:76:02:db:44:7f:0f:fe:be:ed:a6:f7:4f:6d:dc:
86:5d:aa:ed:32:74:fb:0b:c1:a7:5e:1e:95:08:a5:
43:5d:5c:b0:e1:b1:5f:c9:a0:16:ed:f9:5b:50:57:
36:33:80:5d:b8:50:32:eb:53:7c:25:53:a7:2d:71:
f8:6a:2f:d8:21:47:13:c7:a1:fb:29:cd:22:6f:bb:
68:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:1B:CD:62:2A:CD:E7:F2:48:1F:EC:1D:70:9C:3C:9A:6B:57:E8:96
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:19:fb:91:d9:ca:06:a4:c8:ea:cb:64:3d:5d:df:a2:17:3d:
2a:02:76:99:80:59:11:e7:7a:e1:3c:fb:79:97:45:1d:a8:b0:
a4:3c:91:cc:41:43:90:91:9d:8b:1f:0b:31:4d:f7:88:75:38:
09:84:a7:5f:3b:e4:0f:8b:5a:0e:05:51:fc:1e:b1:ad:35:83:
cb:28:3c:89:1a:8e:b2:3b:a3:28:9d:b0:1a:c2:5c:18:bb:0d:
64:2f:08:02:c0:46:48:3e:41:56:aa:97:67:c7:78:76:07:c1:
1c:8b:05:41:87:a3:a9:20:bd:14:c8:59:99:ea:9b:34:42:d1:
ab:69:de:a6:44:aa:a3:31:e6:77:82:8b:85:6e:cb:f7:98:f6:
41:e7:2a:e7:df:b4:0c:62:79:08:6a:8b:41:53:81:35:d5:93:
64:2c:01:24:38:ef:52:b8:e9:b6:f9:33:9f:10:7b:a1:72:98:
32:54:14:4c:1c:30:56:f0:95:9a:fa:63:cb:b5:9c:4d:09:7f:
00:c0:ac:58:d3:a5:3a:d6:d9:da:84:83:b6:6f:54:be:7a:99:
6f:6c:93:52:8f:f8:29:4a:df:62:f4:2d:6c:b8:f6:6b:9b:f5:
f5:a1:e2:02:30:89:f5:ea:94:88:6d:64:69:0a:a3:f7:fd:1c:
c0:29:0b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:17:17 2025 by rpki-client