Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: LqnZ+BFzZLiOGmSawIqYy14isV9I015MuRhyfoYqeKU=
Subject key identifier: 54:0A:AF:5F:D9:C3:17:FF:1E:A9:28:9C:2A:63:8E:6D:86:EC:A7:83
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 0196CB72D325762177516C56D797AFDAD2AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 10E2
Signing time: Tue 13 May 2025 21:00:21 +0000
Manifest this update: Tue 13 May 2025 21:00:21 +0000
Manifest next update: Wed 14 May 2025 21:00:21 +0000
Files and hashes: 1: KWc-RAvt2weoUx0MAyuZekiSu6M.roa (hash: hfmB9slnA1IL3HuDstN6ATg7sfXi2D378t9Xob1Z1hA=)
2: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=)
3: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: 7Y+L6iAiw45JCNoY0Q6bI90mbolHDJLsZiBOVJDzASk=)
4: w-1zMbc9fSVVQQhGydFD8XrHnGg.roa (hash: 2dYJVen0mOZhk8iHs1ljj0nfQhsjWVxn7a9kKF8KMns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:72:d3:25:76:21:77:51:6c:56:d7:97:af:da:d2:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: May 13 21:00:21 2025 GMT
Not After : May 14 21:00:21 2025 GMT
Subject: CN=540aaf5fd9c317ff1ea9289c2a638e6d86eca783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ac:06:41:b2:63:22:12:99:b2:03:38:4a:56:
2a:e3:fe:75:7d:04:26:5a:50:ed:1a:99:c4:98:7b:
aa:d8:f8:eb:47:48:01:5c:dc:63:0c:22:24:3f:5f:
bd:8d:fa:1f:ae:b5:ed:0c:e8:22:ff:c5:34:9a:38:
67:25:df:6b:20:5f:e1:35:3c:6a:d3:0c:7c:4b:84:
c1:3f:ba:72:52:62:d3:7a:b6:51:d1:e9:d1:f4:e2:
3d:86:9a:dd:29:f4:92:25:55:3b:3d:da:ac:79:51:
00:54:56:27:9f:3e:5d:a7:07:81:a1:17:fb:1d:e8:
15:73:ee:64:bd:64:16:7a:fe:56:8a:a2:4c:36:6a:
49:e4:e5:af:b1:3e:f2:b9:e3:5d:89:0c:26:24:9c:
9c:cc:19:00:83:c1:9d:14:30:96:51:d7:db:a6:65:
4e:1e:6d:91:7e:6a:38:13:a0:50:8a:66:88:5c:f3:
b4:bf:76:cb:26:fe:7c:0b:75:12:80:2c:f5:bd:dc:
f6:a0:9b:6c:d3:0a:2c:e9:19:7e:34:af:e5:26:f6:
7e:0a:71:68:56:c8:ab:e6:d5:60:b3:06:f0:5a:1b:
1a:c4:0b:00:ff:95:2f:27:de:c1:dc:3b:1d:9b:8f:
ad:88:c8:5f:21:57:d8:64:4e:d5:d0:db:cc:c0:54:
d8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:0A:AF:5F:D9:C3:17:FF:1E:A9:28:9C:2A:63:8E:6D:86:EC:A7:83
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:9a:ed:34:f0:4d:ad:43:f3:3c:39:2f:2d:e9:25:05:fc:bd:
e5:74:99:46:b8:95:4a:7c:ed:c9:dd:25:c5:46:d8:91:9b:a0:
b7:00:d6:81:17:85:df:f4:65:f8:e4:2b:c5:40:4b:eb:34:86:
d1:76:71:90:26:64:5c:91:b5:fb:5a:0c:38:f6:d7:f2:f4:ca:
ca:09:ad:26:7b:7e:57:f4:58:13:92:4e:68:63:04:ff:ec:a5:
e6:12:3b:24:be:b1:5a:d3:93:51:0c:93:6a:00:47:e5:77:a2:
1d:f0:e9:d1:57:13:32:a1:61:f0:51:23:de:a9:85:5b:4f:11:
fd:9b:61:42:0f:d8:9b:c9:63:6a:d3:94:b7:31:21:3e:c9:5a:
42:57:61:ed:2d:31:0a:0e:d7:9e:42:0b:d9:f4:2e:64:dc:d7:
e8:88:81:d0:29:b2:23:59:55:88:a0:c8:ba:f1:47:98:4e:47:
69:42:13:ad:7d:47:b2:fd:1e:3d:11:d0:60:64:01:2d:fd:8b:
79:6e:22:f6:d0:20:5f:42:25:be:7d:5f:a1:27:00:2e:88:5b:
85:a9:36:f4:7e:92:db:68:19:e7:c6:e8:f1:09:e3:f0:37:96:
1b:03:fc:3d:57:4c:05:70:3a:32:a8:b3:2c:4a:15:6b:a7:a5:
ef:f5:63:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:09:56 2025 by rpki-client