Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
File: yRggtQAH5BxT3WAps3lU01cvTCk.mft (raw, json)
Hash identifier: ohzVo9wdRQG3De/WHaTR/FYQHVl1QOiQuuKyUWqXaG0=
Subject key identifier: B4:5B:91:E1:85:D7:E2:FA:DC:19:31:3F:09:C3:D8:62:47:E4:F2:C2
Authority key identifier: C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
Certificate issuer: /CN=c91820b50007e41c53dd6029b37954d3572f4c29
Certificate serial: 0196BE2559E1931275304A872B3C47B7056A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
Manifest number: 1078
Signing time: Sun 11 May 2025 07:00:40 +0000
Manifest this update: Sun 11 May 2025 07:00:40 +0000
Manifest next update: Mon 12 May 2025 07:00:40 +0000
Files and hashes: 1: juTNVsKtR118cxI6QcWd767caRM.roa (hash: MCsaWupCkvlIsE0i3wi2ave3G1GEJt2KTaWMIAFFXxI=)
2: yRggtQAH5BxT3WAps3lU01cvTCk.crl (hash: vw3zWg5k5Vwq94rtSq0CF+wn8NfBToMb9WalT09q8mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:59:e1:93:12:75:30:4a:87:2b:3c:47:b7:05:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91820b50007e41c53dd6029b37954d3572f4c29
Validity
Not Before: May 11 07:00:40 2025 GMT
Not After : May 12 07:00:40 2025 GMT
Subject: CN=b45b91e185d7e2fadc19313f09c3d86247e4f2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:eb:1c:f5:67:64:fc:f4:54:3e:d3:5c:11:4a:
6f:61:70:62:df:ae:9d:8b:a0:f4:d9:40:b7:15:d6:
57:fb:a0:64:4f:e6:74:1c:70:56:55:5d:f7:b8:b6:
99:a9:a1:ae:cf:89:fa:13:bd:49:53:a0:ef:63:c8:
5f:88:55:63:63:47:7f:6d:9c:ea:25:8d:3c:df:fe:
84:d2:de:03:52:19:1b:c7:ba:71:a8:06:b4:f8:b5:
65:0a:ee:70:6f:3a:9c:c6:bb:a0:1a:4a:77:37:c5:
19:04:fb:39:78:f9:1e:a7:d7:5f:8b:43:a0:3d:ef:
c9:29:77:c4:82:9d:4c:ef:3c:3a:aa:93:6c:de:8f:
07:84:c4:e3:ad:6d:25:ad:72:ed:0f:91:c0:cc:4e:
e6:e0:05:95:18:e7:c8:35:a7:d4:24:44:48:11:62:
0d:eb:43:9f:08:28:fd:9c:15:ac:d5:6b:6e:0b:14:
db:c2:79:7a:34:f4:19:66:b3:1f:43:3c:f1:d4:b9:
bc:27:38:ef:ce:9e:fc:19:43:a3:b6:01:db:cd:61:
fa:55:5c:c7:be:da:00:23:2a:1e:49:d6:8b:54:5d:
19:43:d5:2c:42:0e:63:4b:31:ab:a8:a3:f8:7a:d1:
4e:a7:98:3e:dc:62:da:3c:0b:81:c0:8a:5e:bb:c8:
53:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:5B:91:E1:85:D7:E2:FA:DC:19:31:3F:09:C3:D8:62:47:E4:F2:C2
X509v3 Authority Key Identifier:
keyid:C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:e4:88:9a:7a:45:84:07:23:de:f8:e8:bc:a8:53:1a:2d:9a:
29:15:43:bc:b3:57:c1:b2:38:f2:a9:5b:21:a1:18:2b:6d:93:
31:b0:86:bd:69:22:84:1f:3d:38:07:86:84:e9:6c:46:fb:1e:
3c:f7:b3:c2:91:33:c9:5a:87:48:2c:f4:f2:f6:75:df:be:8c:
3c:17:88:1c:45:a8:f1:fc:7c:88:fa:0a:0c:73:fe:2e:6f:d8:
5a:cd:60:b7:86:a7:ea:50:19:e9:5e:a5:d3:5c:56:c2:45:7a:
75:db:3d:c9:23:af:3e:85:ca:57:ac:c2:5c:44:25:d3:83:60:
86:db:58:fa:91:f7:e4:8f:48:ac:2a:c5:aa:ca:4f:80:21:14:
2b:ea:45:b9:39:3d:08:b1:af:03:2c:1d:41:a8:bc:80:1b:76:
db:a0:cd:c3:f3:5d:67:d6:5e:32:0e:18:ab:15:f1:a0:bc:6a:
ee:8a:b7:46:0f:a4:59:86:11:06:9f:91:ea:3e:34:4d:bd:6c:
b3:26:cb:1e:f2:07:7f:c8:88:bc:fd:4b:39:c2:73:0a:c8:88:
62:e6:b9:c6:08:2e:4a:53:07:94:39:cb:94:ba:cb:da:64:03:
df:cc:3d:79:06:b5:30:b1:cb:e2:b5:a0:cc:87:62:f2:c6:d9:
93:fc:08:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 17:09:31 2025 by rpki-client