Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
File: _YmzSchPx7NBKlLWX_Jg0swomrk.mft (raw, json)
Hash identifier: T1GibPFXPoqqrkQMBpbBx88zZK5vO/DuHMIzEKY/j7s=
Subject key identifier: C0:56:A2:31:71:88:63:1F:98:FB:8A:B9:8C:37:17:11:CA:8B:A5:11
Authority key identifier: FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
Certificate issuer: /CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Certificate serial: 0196BFA571F2ADECD99F460CE77554E44362
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
Manifest number: 0BC5
Signing time: Sun 11 May 2025 14:00:12 +0000
Manifest this update: Sun 11 May 2025 14:00:12 +0000
Manifest next update: Mon 12 May 2025 14:00:12 +0000
Files and hashes: 1: 7voLoVZs2GImQRBCo5BKLZ-Uj7w.roa (hash: 4GwoSbNu+hRTl0Hpw8zq+LaDTkSr14kM179EFGiS8KQ=)
2: _YmzSchPx7NBKlLWX_Jg0swomrk.crl (hash: SnDTvBAqzu2ATb6RNOFEUO4ijLuFneqU23GN3l+Rl3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 14:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:a5:71:f2:ad:ec:d9:9f:46:0c:e7:75:54:e4:43:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Validity
Not Before: May 11 14:00:12 2025 GMT
Not After : May 12 14:00:12 2025 GMT
Subject: CN=c056a2317188631f98fb8ab98c371711ca8ba511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d3:72:c4:67:93:3c:60:e3:9e:0a:5c:97:04:
1e:b2:2e:dd:9a:ff:bd:ce:d8:68:0d:30:7e:b8:d0:
65:6c:34:59:5c:a0:fc:a5:97:57:fb:c6:dd:18:e4:
30:3d:d7:74:2c:59:14:9d:dc:28:4f:4e:18:51:65:
bb:6d:9d:a6:4b:39:a9:d4:c9:e5:6f:dd:30:4e:14:
05:aa:10:c4:58:fe:bc:29:e9:c7:a3:59:5a:63:12:
b9:de:a5:be:1a:82:fc:34:ec:96:e1:75:de:93:9f:
d4:7b:28:8e:13:ef:6d:0c:d7:ed:45:ba:ca:b3:c8:
ef:8a:4e:65:59:04:42:ad:8d:65:07:d8:f0:f9:6a:
d2:04:56:fc:74:3d:5a:9e:c2:f4:f7:ae:d7:f5:07:
aa:db:da:9a:ae:c5:3b:ec:7d:cf:41:1c:6f:23:ec:
6f:94:b1:3b:15:f2:b8:dd:51:a9:3b:91:bd:0d:4f:
52:84:dd:7c:8c:7f:43:e6:c2:c8:e7:60:3d:85:99:
57:43:cf:4a:7f:e3:10:0a:25:6a:50:1c:dc:98:97:
cf:72:8e:fc:4d:62:0a:2a:3b:49:a1:2b:d9:42:8a:
25:0e:fc:c3:41:e7:bc:27:c3:3d:cc:48:c2:8b:61:
07:ad:90:74:0b:00:f3:34:ed:5f:1d:c4:e6:e6:1f:
ca:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:56:A2:31:71:88:63:1F:98:FB:8A:B9:8C:37:17:11:CA:8B:A5:11
X509v3 Authority Key Identifier:
keyid:FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:63:a7:3b:84:8c:34:1c:94:d4:cb:62:e9:0a:63:52:3e:94:
76:e5:2e:56:82:14:63:05:5e:a6:2f:28:82:d6:ac:31:2d:e6:
df:ee:6c:fe:ea:aa:34:5c:cf:55:50:e5:92:83:dd:d0:ca:15:
42:09:fe:a8:e1:92:86:f2:44:f5:c0:4c:36:6a:ef:7a:37:77:
8b:80:73:82:cb:ef:1f:d9:fa:88:fa:98:07:fe:1b:ee:41:76:
67:5d:81:51:e3:a6:68:6a:bc:c7:7a:02:85:6a:a1:e2:c1:a1:
38:2f:41:52:24:c6:8f:f9:d7:24:3a:92:06:d3:f3:cd:6c:09:
48:85:e4:a6:7f:0c:b3:ce:61:a6:9a:69:3f:45:88:98:7c:51:
cc:10:94:e6:34:09:2f:6f:bd:05:57:3f:a3:10:fb:f9:21:69:
90:85:06:00:bb:67:63:4e:e3:91:51:c1:13:76:32:1b:00:e6:
77:93:8d:5e:d3:62:69:7f:b5:81:15:9d:34:2c:0a:3e:d7:5a:
44:80:c9:34:86:14:17:66:33:c1:32:a7:50:06:c8:db:52:13:
a0:9b:b4:b8:79:db:66:34:a4:f1:c9:80:e8:cb:90:70:b4:22:
36:bd:2d:0f:54:10:01:c4:20:18:44:a4:b5:f9:58:4a:a8:2a:
d5:72:94:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 19:05:07 2025 by rpki-client