Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: Fn6Hny83ieFgbQWDzwdXTCtsyqt4OASA4h/Au4tbcXI=
Subject key identifier: 24:E5:B1:CE:FA:45:AC:AC:A9:9E:84:53:6B:92:5C:1E:54:37:E7:76
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 0196C9851D4DD4F680AD20A1F2BF7F4C21E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 045B
Signing time: Tue 13 May 2025 12:01:06 +0000
Manifest this update: Tue 13 May 2025 12:01:06 +0000
Manifest next update: Wed 14 May 2025 12:01:06 +0000
Files and hashes: 1: 6bGSQZyXICWLbBfHBORwDUVmEgs.roa (hash: 1jQZKU6KRpYxffMVHliAkA59/J/hUE4iGAwCvJDdSlw=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: z8Tn5+O+xITpCg+H6yXlCwJL1J7XYdSLkmfxsCL/E2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 12:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:85:1d:4d:d4:f6:80:ad:20:a1:f2:bf:7f:4c:21:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: May 13 12:01:06 2025 GMT
Not After : May 14 12:01:06 2025 GMT
Subject: CN=24e5b1cefa45acaca99e84536b925c1e5437e776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:85:1e:91:3c:ca:3f:cb:d4:18:2d:d9:4b:40:
ff:e2:cf:40:89:42:e8:bf:d4:e8:36:a9:20:75:37:
61:8f:5d:41:14:0c:6d:42:76:92:1a:34:fe:f2:21:
a5:99:fe:82:82:c2:3e:ea:41:81:3a:52:47:8c:8e:
3f:41:6f:81:08:11:6b:4a:16:e0:c0:fe:e5:75:12:
9f:96:9a:26:bf:86:92:09:1b:b8:79:0f:4e:db:f2:
ec:f1:81:66:7c:b3:01:ec:87:e4:1d:64:d4:c1:52:
92:a2:da:ce:8d:65:db:32:c3:68:f5:7a:ee:8f:db:
b6:11:3e:35:fc:5d:c6:ed:99:04:52:a2:ca:de:42:
a7:19:5a:fb:7c:dd:55:00:18:ef:b9:ba:13:44:61:
ad:05:b3:26:a6:9c:ab:d9:fa:23:d3:46:3b:2d:02:
25:16:7e:91:24:5a:9b:57:df:68:5a:59:79:f0:c2:
e6:a2:4d:ce:5a:9e:07:77:77:f1:50:98:57:5c:dc:
fb:b3:63:69:e4:50:57:3f:c4:ec:ae:60:2a:35:ec:
91:c1:db:82:21:c2:9a:39:b6:f6:d1:d6:74:bc:cb:
57:a1:d3:3f:e0:a2:4c:63:f3:25:09:29:75:78:63:
4c:62:b5:da:e4:93:36:c3:26:0e:09:e9:0d:4b:f6:
1d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E5:B1:CE:FA:45:AC:AC:A9:9E:84:53:6B:92:5C:1E:54:37:E7:76
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:62:11:0d:cd:a7:91:84:92:10:4c:43:4b:30:d3:e9:f5:e7:
6e:26:c0:fd:3a:ce:e5:8a:95:5e:e7:f9:fb:de:ca:94:ee:34:
d6:70:9d:1f:24:04:42:b9:46:82:48:54:5b:6f:6b:41:92:e0:
a2:4d:1e:e3:17:3d:b6:ce:c4:92:73:44:b1:76:51:68:48:ec:
d6:fc:50:93:2b:65:a4:21:0f:5e:f1:bc:06:4b:60:89:63:60:
c6:20:ca:e4:81:75:7a:0f:f1:ca:08:82:44:99:39:9e:88:85:
f9:9a:22:2c:4d:d6:fc:f2:69:d3:e3:55:71:9f:33:a9:43:a8:
b0:e9:1e:7f:eb:bb:aa:23:c0:92:41:e9:4c:3c:c8:bd:16:70:
d9:1f:f4:49:fe:1e:bf:7b:4b:48:e6:2c:d9:a6:59:b8:c0:c7:
36:be:95:ac:55:4f:5b:cc:3e:2b:b5:b5:1e:3f:b6:97:4a:71:
a2:2f:2a:77:b0:8c:92:0c:52:dc:c0:b5:e4:fd:b2:da:a4:58:
97:09:be:3b:7d:bf:e5:d8:0d:fa:c7:48:41:71:85:a3:ff:e8:
5b:7b:9f:06:08:e4:50:3b:7e:cb:be:1b:a7:c6:eb:f0:81:e8:
90:fa:c8:c0:89:b8:71:f0:f7:32:91:71:2d:4d:d8:c5:18:7a:
74:06:31:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 15:16:32 2025 by rpki-client