Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
File: yRjEAZR0zIHsZh_OZObJOJchlto.mft (raw, json)
Hash identifier: DGN1uF44y97jWveDf0ojZgKdP1i2gZtwCYzZ+GH9hSM=
Subject key identifier: DC:AB:E7:01:43:90:99:71:B7:8D:54:D1:E1:A2:2A:1C:BD:BB:2F:F9
Authority key identifier: C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
Certificate issuer: /CN=c918c4019474cc81ec661fce64e6c938972196da
Certificate serial: 0196BAB6564E1E1EE3564153C3DA7A41B563
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
Manifest number: 04D5
Signing time: Sat 10 May 2025 15:00:33 +0000
Manifest this update: Sat 10 May 2025 15:00:33 +0000
Manifest next update: Sun 11 May 2025 15:00:33 +0000
Files and hashes: 1: Jsgd2QMS4v8iKbqKY7mpL6rgdrw.roa (hash: zUKbiJyZKBDLVjXxF3gSP5G2WQgNlz6YzfL6risxYY8=)
2: yRjEAZR0zIHsZh_OZObJOJchlto.crl (hash: IWzbYxTquXViv2VHkm0hczdlsrBu0w9dTFmQe5B4Fr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:b6:56:4e:1e:1e:e3:56:41:53:c3:da:7a:41:b5:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c918c4019474cc81ec661fce64e6c938972196da
Validity
Not Before: May 10 15:00:33 2025 GMT
Not After : May 11 15:00:33 2025 GMT
Subject: CN=dcabe70143909971b78d54d1e1a22a1cbdbb2ff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:25:93:89:fe:d0:4a:dd:32:73:62:f9:77:45:
f1:49:43:6e:6c:7e:47:9c:21:09:08:bb:ec:0d:13:
86:36:63:fb:8a:73:9d:7c:39:d5:99:7a:97:29:83:
9b:5d:d1:e0:6e:1c:68:5b:c2:fc:16:f0:c7:ee:b0:
d0:8f:36:ac:38:37:37:78:b6:b6:5b:8c:e0:54:ec:
02:ca:f0:22:a5:89:8b:bd:f5:5d:8a:31:d1:32:01:
ba:4b:a4:22:02:b7:60:3a:ad:fc:86:92:f9:60:fe:
6f:d3:c9:2c:44:e3:f2:c4:d9:e7:d8:27:3b:6e:cf:
87:ec:44:72:e1:4c:67:62:9c:df:35:63:c8:87:60:
66:00:75:a0:12:aa:e6:77:c6:a7:e5:ba:58:0e:71:
0e:1f:a8:24:c2:39:05:37:cf:62:82:c7:7c:d6:6a:
8d:dd:d3:2c:95:eb:f7:02:93:44:8f:1c:1d:22:b9:
a0:da:9c:aa:35:72:80:59:7b:0c:af:12:38:3e:01:
7e:8b:86:72:a7:2a:6c:b6:37:22:8e:ad:f1:42:0a:
94:7f:9a:ad:fa:8e:d1:9f:05:f7:c5:3d:d5:3a:99:
de:dc:29:38:2a:c0:d1:83:10:5d:7c:4f:18:c4:c5:
b9:e1:7b:71:e7:42:ba:54:7c:36:97:23:1e:d8:a6:
84:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:AB:E7:01:43:90:99:71:B7:8D:54:D1:E1:A2:2A:1C:BD:BB:2F:F9
X509v3 Authority Key Identifier:
keyid:C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:b4:76:b2:ba:b4:8d:8a:aa:5e:3f:ff:28:51:de:ad:2e:be:
aa:3f:66:8e:af:73:cf:aa:ff:77:19:f6:82:14:e4:95:cd:14:
1e:90:cd:29:f7:86:9b:73:f8:a7:36:cc:ea:0f:dc:d8:73:1f:
33:79:a5:f5:06:cd:8c:8b:e3:29:08:26:0f:0e:ca:88:c0:bd:
7f:3e:4d:0f:5e:17:84:2f:d1:18:77:eb:95:f3:10:a4:c3:a0:
a6:45:a5:77:89:8d:bb:50:a1:43:c2:dd:8a:5e:6c:ff:c0:03:
02:f3:b7:bf:71:87:23:48:32:02:8a:b1:71:06:48:9f:cd:4c:
5a:84:b0:5c:b8:04:ca:1c:47:5a:53:72:82:22:d1:ae:a5:f9:
db:ab:ca:12:42:6e:a0:33:ea:a5:38:af:10:d0:5b:73:34:d4:
a6:85:7f:19:b0:0a:05:55:51:35:48:bd:ee:63:a2:c7:b3:03:
90:87:f9:cb:ae:51:d1:6a:d2:0d:b3:6a:00:ee:0e:aa:4c:61:
5f:82:e3:fe:8d:85:d4:50:09:38:c2:66:6c:68:1b:e9:c5:27:
52:fd:98:e2:56:fd:38:ce:e4:bd:28:f0:09:db:a7:a3:33:85:
7a:5f:73:9e:86:51:84:73:ec:76:0e:27:16:db:1c:f1:bb:1a:
8a:c0:6f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:16:59 2025 by rpki-client