Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
File: ny8WbQXql29prtWORqQfflBSRHU.mft (raw, json)
Hash identifier: q/iHTly79bh0wIwWCdMTnOqxyCZovtLaQuuC+8XEZFI=
Subject key identifier: D9:D8:AD:EE:B7:59:E8:9F:B7:ED:A3:C7:69:CE:28:6F:52:DC:52:08
Authority key identifier: 9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75
Certificate issuer: /CN=9f2f166d05ea976f69aed58e46a41f7e50524475
Certificate serial: 0196ACFB3DA9107ECE86937A57EC8B7A46F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
Manifest number: 12A2
Signing time: Wed 07 May 2025 23:01:08 +0000
Manifest this update: Wed 07 May 2025 23:01:08 +0000
Manifest next update: Thu 08 May 2025 23:01:08 +0000
Files and hashes: 1: ny8WbQXql29prtWORqQfflBSRHU.crl (hash: yND3blOE1pvFXyVpDZVgpTHdE8NbMPtRZMLyvxtds44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:fb:3d:a9:10:7e:ce:86:93:7a:57:ec:8b:7a:46:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2f166d05ea976f69aed58e46a41f7e50524475
Validity
Not Before: May 7 23:01:08 2025 GMT
Not After : May 8 23:01:08 2025 GMT
Subject: CN=d9d8adeeb759e89fb7eda3c769ce286f52dc5208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a0:14:83:d2:67:bd:05:f2:e8:6b:c9:a1:a3:
f3:41:72:c1:25:13:97:99:ca:9e:8a:18:d1:0c:f4:
fd:29:b4:80:9a:6d:35:ff:b8:1d:27:ff:ee:65:b3:
2e:2a:4a:e5:7f:f5:3f:c6:26:66:d4:dc:a6:6c:bd:
86:3b:6d:eb:98:09:45:bd:b9:0b:a9:ed:f9:9a:6b:
7c:fa:8c:ef:bc:f7:af:be:53:bd:03:7d:7f:f9:c4:
1a:8d:28:89:1a:4f:21:45:28:53:31:36:8f:7e:c0:
c7:fb:39:ee:6d:31:54:e0:67:38:2b:92:46:93:56:
27:91:05:ee:f2:1a:0c:c3:18:da:7c:7f:ad:be:0c:
0d:21:fa:0b:53:a6:a2:8f:c8:3b:fb:79:6b:3a:eb:
ae:17:cd:dc:26:83:d8:f3:5c:f5:ae:a2:14:b4:d2:
4f:56:d1:00:b5:46:46:66:fe:2b:80:02:fd:fe:5a:
3b:70:af:a1:87:b3:2f:93:4f:5d:75:f9:3f:eb:bb:
73:09:9a:42:5e:ed:dd:78:9b:4d:54:34:04:35:7a:
fd:e3:c8:4e:be:99:95:ae:81:7c:2f:7d:d7:85:a1:
3b:d3:c3:ee:56:5e:88:73:6b:e1:8a:80:6a:e9:9f:
08:a2:16:91:a0:eb:25:9f:ba:83:25:22:c3:49:7c:
e4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D8:AD:EE:B7:59:E8:9F:B7:ED:A3:C7:69:CE:28:6F:52:DC:52:08
X509v3 Authority Key Identifier:
keyid:9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:c0:f9:c6:c1:25:2c:0a:45:ec:e5:d2:b4:ab:fe:77:44:21:
95:3e:70:78:0c:c1:70:e2:b3:68:dd:39:ea:83:07:1b:47:91:
c4:08:d9:b3:c5:a8:23:3d:43:f1:32:71:21:a7:cb:e8:45:06:
8a:8e:38:20:15:17:19:94:0f:44:46:30:1f:89:a1:6a:75:15:
27:24:e6:e0:ab:47:dd:72:39:58:65:03:f2:8c:10:08:cc:28:
80:3b:44:9f:c2:d4:1f:e0:41:bd:06:56:97:b1:21:1f:34:db:
d8:5b:ae:1a:b5:87:5c:8f:28:a5:5d:ea:ba:02:e9:3c:f8:e4:
04:f3:6c:35:05:44:99:4f:1d:5f:44:91:e2:b1:ea:5b:04:79:
53:8a:cf:c5:18:a4:19:2f:1e:9e:91:09:03:2a:d9:54:e7:3a:
df:92:f0:6b:12:eb:25:e5:1a:45:2d:6c:24:bc:16:9e:72:fa:
c9:75:1b:52:01:7d:80:06:d4:b7:26:29:f6:f1:5c:47:38:58:
a5:f8:fe:9f:37:13:bf:4b:c8:0c:8a:b1:ea:5d:e3:97:85:8e:
17:bd:69:a1:f4:be:54:e8:b3:1b:92:ed:9d:66:eb:0c:59:53:
05:d0:05:18:8d:77:fc:1a:09:3e:5f:d7:3e:84:0b:dd:55:10:
ab:e1:7a:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 08:44:10 2025 by rpki-client