Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json)
Hash identifier: bjyTB5FBHCrFnShVwQ4cXDFULHfqQ8z2dJ943Ac9a70=
Subject key identifier: 78:1F:45:08:68:03:38:F0:72:3E:29:3F:CC:52:66:8C:84:F1:31:D9
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 0196BC373BF9E035716ED50349D7B1F94269
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
Manifest number: 10D2
Signing time: Sat 10 May 2025 22:00:58 +0000
Manifest this update: Sat 10 May 2025 22:00:58 +0000
Manifest next update: Sun 11 May 2025 22:00:58 +0000
Files and hashes: 1: nPtNOVhjTVbNoPzqUJGa-Eqnb0Y.roa (hash: Yuz9f1rxV7S4atM+GycUQVhSQinvjc3oT1lXV1zOVuE=)
2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: /SyKaYagXbV8I+s4qqrJQ42+tC9PIoerC5qGnHeFmw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:37:3b:f9:e0:35:71:6e:d5:03:49:d7:b1:f9:42:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: May 10 22:00:58 2025 GMT
Not After : May 11 22:00:58 2025 GMT
Subject: CN=781f4508680338f0723e293fcc52668c84f131d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d0:6d:f8:da:ee:e3:50:07:73:6c:1f:85:b1:
60:88:9a:0b:6a:92:2c:95:0d:98:b4:df:53:b5:45:
5e:ab:7d:f1:fd:bf:02:f6:4b:d4:18:21:14:c9:c5:
ef:31:90:f8:27:7b:98:ca:db:d0:4b:c4:74:a2:f5:
d7:71:b0:f4:7b:73:52:e3:af:65:ef:4b:62:7b:06:
da:21:9c:3d:a2:39:4b:82:c4:99:34:26:b1:b0:60:
fd:51:ca:6d:2c:d2:ac:6e:b7:11:3d:0c:44:82:0d:
f0:83:b1:0d:84:ed:ea:a0:3e:21:0d:92:88:7a:7d:
84:f2:96:e8:b4:ea:b9:cd:b3:1a:36:cc:26:39:5c:
28:e5:df:20:52:58:7e:55:03:a3:bb:50:0c:c1:d9:
03:93:58:1e:9f:18:cd:d0:5c:40:97:16:97:03:6e:
8f:96:c3:cb:a8:52:95:9c:5f:96:71:3c:25:1d:17:
c9:2e:de:da:ad:bd:1c:dd:f9:01:c0:f3:df:86:7c:
19:66:ed:da:b1:6f:7f:f3:7c:b7:02:b4:ca:08:28:
95:da:3f:4d:86:97:4e:09:e7:5e:17:10:7c:bd:a6:
9f:1e:00:df:f8:ac:08:c8:dd:96:30:0a:ca:9b:26:
b9:5f:c4:c8:34:15:61:9e:f8:8c:5e:76:df:89:63:
6e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1F:45:08:68:03:38:F0:72:3E:29:3F:CC:52:66:8C:84:F1:31:D9
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:a5:7b:2b:f0:63:e1:5b:d8:a0:fb:c8:d0:25:f4:2f:51:e8:
27:fa:02:98:eb:40:36:d7:db:b5:0c:67:6c:10:1b:45:36:39:
fd:d5:c3:87:d6:79:5b:90:c0:e9:b3:b9:82:6e:c3:5a:5f:95:
91:8f:b4:51:a4:f1:6c:35:f4:04:b6:47:d8:d4:61:bd:38:c0:
2c:a2:ad:e1:d9:f8:b0:00:3c:87:87:d5:98:d4:89:fc:9c:89:
67:37:b9:9c:82:f8:2e:6c:ca:69:12:37:a9:d0:0a:c4:08:49:
a8:a8:1b:44:96:46:44:14:b2:fa:e2:56:47:34:0a:3f:4d:b0:
b0:f7:14:39:ab:fb:c9:d9:d5:73:d8:ea:54:0a:97:27:ab:05:
fd:31:22:28:56:db:0b:09:6e:b5:cb:43:c5:13:82:c9:23:de:
64:27:42:96:ac:32:fb:49:d7:cf:ed:43:f4:f4:85:06:5d:50:
bc:07:87:2a:a3:0f:bd:6f:ab:ce:65:76:b0:80:c1:94:0b:b2:
78:fb:38:03:15:ed:1c:f2:e0:d5:59:b9:c5:eb:99:f4:b2:06:
d8:c4:c5:88:a7:c8:1f:14:96:3f:6c:b2:e0:c5:2f:b0:0a:09:
5a:ae:4e:f8:28:67:5f:73:b8:c2:fc:81:14:e1:a9:e8:9c:33:
2f:77:13:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 00:35:33 2025 by rpki-client