Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
File: yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft (raw, json)
Hash identifier: Bu4P0zOWbkYesy5hqpAEKARZC3nRTY9MeTmXYUOuCq4=
Subject key identifier: 7B:17:D8:EE:56:FF:18:01:99:DC:02:43:BE:53:D6:6B:56:7E:E6:F1
Authority key identifier: C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A
Certificate issuer: /CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a
Certificate serial: 0196BFDCD87FEC7F25A01E0BBEFA27646ED2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
Manifest number: 0CE2
Signing time: Sun 11 May 2025 15:00:43 +0000
Manifest this update: Sun 11 May 2025 15:00:43 +0000
Manifest next update: Mon 12 May 2025 15:00:43 +0000
Files and hashes: 1: n0pJCaUiRCl5Ps5_Vu5R9Y3I9qU.roa (hash: yrWbMC7j+dM+coJf76N3ZfAw2TV7juT6B31o0/J59Ds=)
2: yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl (hash: CpmiWI0z0PU+L2OzR5Bog1iH97Os5ckw7muytBoHKbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dc:d8:7f:ec:7f:25:a0:1e:0b:be:fa:27:64:6e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a
Validity
Not Before: May 11 15:00:43 2025 GMT
Not After : May 12 15:00:43 2025 GMT
Subject: CN=7b17d8ee56ff180199dc0243be53d66b567ee6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e5:9c:63:15:5a:dd:52:62:cd:29:92:c5:dc:
83:f6:22:1e:cb:b6:4f:96:b0:c9:5c:27:9f:8b:2f:
7a:b9:ff:56:56:77:8a:67:e4:ba:d2:b4:74:cc:ab:
b2:42:17:60:96:bc:c1:f5:0a:fe:52:11:c1:cf:ef:
d7:fe:97:65:83:56:ff:47:30:d4:9b:c4:6d:2d:82:
d1:e7:74:4f:4f:e9:f7:d8:73:1a:6d:d9:99:e0:85:
c1:34:de:fb:7c:a6:b9:62:a2:b2:7e:ba:03:56:06:
c0:a6:fe:a3:13:bf:9e:fb:0f:a9:e2:f6:b7:c3:ff:
b2:40:20:03:57:71:97:05:08:43:48:4f:6a:0e:06:
ad:08:08:57:38:6c:17:b3:08:db:98:81:ac:d5:e2:
ea:f4:88:05:6c:5e:64:30:4a:80:8d:54:e6:2b:43:
e8:c5:f3:ed:de:7c:83:be:f5:aa:da:66:70:78:fe:
27:1a:6a:22:b7:3d:fb:5b:4b:92:3a:f8:5b:c1:ff:
61:c4:7a:fc:ef:57:c0:7e:43:fd:e7:d7:bb:70:d0:
13:d5:69:0b:ba:39:57:97:95:ee:8b:2f:45:ed:dd:
4d:25:37:7c:29:2b:2f:7f:73:66:34:37:57:a6:ed:
b9:c3:ea:96:b0:ff:c7:14:dc:5b:1b:7a:32:66:49:
38:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:17:D8:EE:56:FF:18:01:99:DC:02:43:BE:53:D6:6B:56:7E:E6:F1
X509v3 Authority Key Identifier:
keyid:C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:3c:45:74:73:91:8f:ff:5b:1b:b7:28:f4:00:2d:53:9c:44:
95:66:9c:6c:f5:70:b2:fb:86:d1:3e:ba:c4:37:c8:32:9e:a2:
46:2a:b5:de:fd:ab:43:23:77:3a:f4:de:89:7a:4f:c2:fb:7a:
91:9c:47:ee:29:20:c6:49:6a:d4:c1:0a:07:ad:96:86:a6:5d:
b6:62:3b:04:83:fc:44:34:70:84:ac:1c:66:3c:00:33:cf:08:
54:6f:a4:b0:31:1e:aa:1a:39:0b:38:cd:73:78:23:69:53:1a:
4e:bd:a9:63:94:74:cb:0b:33:d0:58:57:90:f3:57:7d:59:b6:
87:ad:1d:25:67:41:81:0e:3b:a3:76:60:7e:25:79:19:c9:4d:
b7:62:34:61:c7:f8:d0:e8:1b:48:15:97:0e:a5:74:05:22:c6:
41:16:ca:dc:ca:8b:81:5e:a3:89:b1:8d:52:fd:2c:67:fa:08:
9c:8b:9e:1f:74:4c:89:ff:33:52:10:6f:a8:d2:c0:1a:2a:3f:
36:05:e2:ae:18:17:03:70:bf:ea:ed:48:51:98:71:f2:9a:07:
3d:52:ea:63:2d:c6:fd:1a:1a:a0:41:ee:14:99:a6:d8:20:dd:
73:d9:b2:c1:35:31:e6:90:b3:a6:8c:07:23:ef:b9:c9:38:e1:
c8:2e:35:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:20:57 2025 by rpki-client