Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.mft
File: y5-GErfxR1ABa4SMQvYN82rYMtk.mft (raw, json)
Hash identifier: WIwupYGFJ3gL/aFvYCQohIhBdd+/IfsKMiPzWIcJ7GU=
Subject key identifier: 76:91:E9:BF:5E:45:E2:EA:11:93:E3:DB:B5:26:C2:58:E1:E1:DF:BE
Authority key identifier: CB:9F:86:12:B7:F1:47:50:01:6B:84:8C:42:F6:0D:F3:6A:D8:32:D9
Certificate issuer: /CN=cb9f8612b7f14750016b848c42f60df36ad832d9
Certificate serial: 0196A654B8B54C1E0A9958D2399E433C9A5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5-GErfxR1ABa4SMQvYN82rYMtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.mft
Manifest number: 1528
Signing time: Tue 06 May 2025 16:01:32 +0000
Manifest this update: Tue 06 May 2025 16:01:32 +0000
Manifest next update: Wed 07 May 2025 16:01:32 +0000
Files and hashes: 1: 35Hkh6WGB56LhQUZWJy4fWu8adc.roa (hash: N+zjw78vBIKP/bKJa3b5qGQ6N/RlG9tWFNOT+GZrtRA=)
2: y5-GErfxR1ABa4SMQvYN82rYMtk.crl (hash: yfu4PHruE3IhA10+PW5WNMNUnC0Wzd9sPhW0IhL8Mq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.mft
rsync://rpki.ripe.net/repository/DEFAULT/y5-GErfxR1ABa4SMQvYN82rYMtk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 16:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a6:54:b8:b5:4c:1e:0a:99:58:d2:39:9e:43:3c:9a:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb9f8612b7f14750016b848c42f60df36ad832d9
Validity
Not Before: May 6 16:01:32 2025 GMT
Not After : May 7 16:01:32 2025 GMT
Subject: CN=7691e9bf5e45e2ea1193e3dbb526c258e1e1dfbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f6:26:4a:5f:72:9d:b9:a4:52:9d:2c:48:0d:
fb:20:cc:ca:63:7b:c5:94:d9:99:a3:14:67:05:ce:
cc:90:33:c3:aa:d1:b4:29:e5:4d:3d:38:0b:3f:0c:
87:58:b9:c0:d4:0b:c4:53:ae:0e:45:f1:2c:63:8d:
ec:5e:b5:31:4b:63:19:04:17:2f:77:ae:df:72:48:
5e:a2:64:db:18:62:8c:d2:85:f9:28:e7:18:ee:fb:
65:2c:a3:a9:00:a6:14:b8:fb:5a:d6:6d:48:f5:e3:
c9:de:d9:9c:2f:8a:97:e3:f9:9c:05:62:01:f3:6c:
45:75:11:d6:11:71:f4:d1:05:99:39:26:43:04:24:
fe:1c:6c:80:13:eb:c0:8f:a6:3a:00:cd:0b:48:59:
4a:14:88:84:09:26:65:73:e5:be:6d:b5:f1:39:da:
3b:a9:d3:eb:e9:fa:8d:6e:9d:3e:77:1d:a1:29:f4:
5b:79:07:d6:f3:b6:27:3e:2b:13:50:b8:de:1b:a2:
24:82:0c:db:f3:fc:1b:9a:1c:54:15:63:b9:1c:d9:
e1:d6:cb:ce:36:94:5c:d7:54:1d:c9:68:46:49:d1:
b5:55:e5:69:72:5c:7e:c2:7f:b6:1e:ab:8f:1f:0a:
a1:19:1e:80:db:13:b1:95:bb:b3:e5:76:b3:b7:7c:
92:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:91:E9:BF:5E:45:E2:EA:11:93:E3:DB:B5:26:C2:58:E1:E1:DF:BE
X509v3 Authority Key Identifier:
keyid:CB:9F:86:12:B7:F1:47:50:01:6B:84:8C:42:F6:0D:F3:6A:D8:32:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5-GErfxR1ABa4SMQvYN82rYMtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:ba:6c:0b:9c:c2:0f:3e:7a:c7:ba:d5:13:ba:f0:31:4d:47:
9c:e9:a3:a6:4a:7a:58:36:aa:e2:d2:63:e5:13:0c:d6:18:e0:
35:fd:f4:67:bd:79:18:a2:c8:4f:02:83:05:a7:46:8b:d7:c1:
7b:1b:03:11:99:2f:c3:69:5e:aa:27:cb:6c:b8:fc:7a:81:14:
68:31:76:87:16:9e:f7:34:eb:fa:09:fa:70:27:75:86:66:e0:
9f:99:7c:a2:75:b7:f1:45:6a:a5:95:81:84:1a:0a:5e:46:57:
35:96:65:f7:fb:b5:a9:31:8e:28:50:bf:69:69:79:11:c2:e7:
5b:11:1f:e9:6d:06:c2:29:c8:5d:51:27:f2:33:08:e5:db:7a:
f0:7c:45:65:6a:9b:76:7b:8e:10:00:92:94:7f:0f:da:47:d5:
13:f6:ab:00:df:60:0a:cf:a5:8e:6b:95:7f:88:15:49:a3:bb:
71:ef:ac:28:c8:55:f1:70:4e:65:25:4f:a4:72:f8:02:fd:e9:
48:c3:23:c2:0d:c2:85:ce:61:30:dd:16:1a:8c:ac:83:5d:c7:
ea:05:5d:ee:fd:61:7f:28:07:de:1a:1b:4f:9c:d3:7a:27:5a:
41:33:ab:82:f6:5a:ab:a8:ed:a4:09:80:98:91:55:f7:b3:0d:
c0:9c:14:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 02:43:45 2025 by rpki-client