Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
File: 0xryhyw_VQMHOGbf_vSItxeD2rY.mft (raw, json)
Hash identifier: I3EWYj774kxWdI8qmTC7jZU5cwqs7RWfDZhWfT8tWvs=
Subject key identifier: A4:B0:68:DA:CB:08:90:B9:09:B0:47:AB:73:EE:73:F9:0E:F5:C7:55
Authority key identifier: D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
Certificate issuer: /CN=d31af2872c3f5503073866dffef488b71783dab6
Certificate serial: 0196C2A72C4D8A410183D1A8F7E2BA4F92D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
Manifest number: 1236
Signing time: Mon 12 May 2025 04:00:57 +0000
Manifest this update: Mon 12 May 2025 04:00:57 +0000
Manifest next update: Tue 13 May 2025 04:00:57 +0000
Files and hashes: 1: 0xryhyw_VQMHOGbf_vSItxeD2rY.crl (hash: 04b3bICFJD7K2B+ADbLgBswUeoJFJGeTFxIY1hWgnfg=)
2: Vr2MHbk4BkpwijegPw7svFXxpY8.roa (hash: J4FlYQ16tBtXCX4bdbpdB9oishsKJVSj1Pc1U4pte9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:a7:2c:4d:8a:41:01:83:d1:a8:f7:e2:ba:4f:92:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d31af2872c3f5503073866dffef488b71783dab6
Validity
Not Before: May 12 04:00:57 2025 GMT
Not After : May 13 04:00:57 2025 GMT
Subject: CN=a4b068dacb0890b909b047ab73ee73f90ef5c755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:54:e5:62:d5:6e:d8:09:2a:20:0c:be:a1:14:
c5:2a:d1:46:32:17:34:97:ca:d5:81:46:59:8e:26:
bb:8c:33:20:b5:ad:d1:16:ea:37:ae:d3:b5:2a:98:
fb:35:ef:60:cf:f6:17:1a:90:e8:53:79:59:3b:ed:
ac:a4:24:f1:ff:e7:47:62:1d:c0:ea:e3:72:98:b9:
1b:78:60:cb:b4:be:9b:66:d9:c5:9b:c9:93:3f:6b:
5b:74:2f:0d:b7:f3:93:45:67:4d:13:3a:7c:a5:2a:
4f:fc:43:5c:b9:f8:11:84:cb:4a:cb:b1:62:64:f6:
9b:42:47:9c:24:ab:41:bb:a4:9e:e2:46:a6:84:f2:
ba:90:90:e1:9a:fc:b0:69:e9:35:8f:14:00:c9:b6:
1b:4d:60:67:20:0a:b1:9c:05:56:47:b7:06:c7:6f:
ce:3f:94:16:54:bc:13:10:87:04:8b:b9:52:fe:5d:
f4:43:a0:00:fd:47:27:7d:e4:34:b5:da:40:af:7b:
ea:8e:f7:a9:ff:72:80:7f:b4:22:95:66:8d:bb:e5:
5d:34:51:2c:d6:7c:73:99:6e:e9:f7:f7:e9:e7:d9:
cc:37:33:4b:30:7a:62:5b:6f:e7:60:e7:b5:b0:94:
10:75:ed:fa:c3:d4:9b:97:b7:d5:3e:a1:96:34:cf:
50:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B0:68:DA:CB:08:90:B9:09:B0:47:AB:73:EE:73:F9:0E:F5:C7:55
X509v3 Authority Key Identifier:
keyid:D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:cc:96:3b:fc:68:28:bd:94:ee:73:8c:ec:9b:64:9b:43:58:
6b:57:91:53:17:bf:8a:9f:53:5e:f7:ab:04:80:10:88:d0:dc:
28:e7:8b:d1:f2:87:0b:b4:18:57:2e:37:3e:15:f3:c2:c0:4b:
83:35:11:8f:c5:25:16:e9:bc:4c:98:15:3b:ed:ed:e1:bb:02:
8c:e2:58:7c:4f:fa:78:47:1e:5e:2c:7d:2d:a5:c0:67:c6:00:
41:4a:b8:d3:b1:e1:fc:5f:8c:f3:ad:cd:53:c8:64:b3:76:96:
a6:c8:fa:e6:25:34:ba:d9:c0:20:b9:ca:ae:97:c2:11:f5:55:
4f:e4:d0:f3:c3:e0:8a:d3:47:db:8f:8f:17:c6:3a:11:2e:b3:
af:1a:0d:46:e3:61:fd:0f:05:38:93:de:91:4b:f1:c3:ae:21:
b9:0a:c3:a5:ac:1a:36:d3:8b:0e:56:2c:f5:5d:f0:e0:37:58:
14:6b:fd:b8:03:e5:f7:8f:28:52:6a:22:fe:90:e9:94:27:b4:
d6:43:04:68:47:e7:f7:40:56:3f:fe:36:62:39:4a:74:de:dc:
5c:f4:3c:82:94:02:62:f2:53:c2:8f:42:49:36:7e:71:a4:0f:
7c:8e:e2:56:6e:1d:35:13:07:76:87:54:8a:c6:b4:3b:e7:17:
e4:1f:d1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:41:02 2025 by rpki-client