Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: mC5Wdka/y1npgCkKylut91ZF25OJ2XvOT/wimS+z0pc=
Subject key identifier: C2:C6:E1:E9:AB:A1:BB:04:F4:55:43:86:3A:39:1B:16:07:18:BA:7D
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 0196BF00E03A9B8C00FEA79EA64F7DA0264E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 09DC
Signing time: Sun 11 May 2025 11:00:27 +0000
Manifest this update: Sun 11 May 2025 11:00:27 +0000
Manifest next update: Mon 12 May 2025 11:00:27 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: iyBuwOIzoYoCMgX1OMFCZ8IEvicWfKJHpmCtrFH5LgM=)
2: tKwKl17jXwIeAtAZEyALLLwTexA.roa (hash: E9CmZ9NzF2HrbXjpDzFF0Gs0klh/PHaYx1PKsYvWrwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:00:e0:3a:9b:8c:00:fe:a7:9e:a6:4f:7d:a0:26:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: May 11 11:00:27 2025 GMT
Not After : May 12 11:00:27 2025 GMT
Subject: CN=c2c6e1e9aba1bb04f45543863a391b160718ba7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fd:03:1a:da:3f:cd:8a:bc:ee:f6:d2:16:b4:
d6:f2:85:ec:80:8f:93:60:97:5a:c8:89:51:7b:7e:
7f:b9:6a:62:e4:ed:81:2a:39:80:09:dc:c9:20:7a:
78:9e:66:53:d5:c2:c1:89:ab:2c:00:36:35:38:05:
76:83:a4:5d:ca:b9:35:2f:b1:4c:a4:97:e2:c4:51:
d9:a6:34:05:60:1c:ef:29:f5:e7:ef:85:a8:b0:e3:
7f:5a:c2:af:50:cc:86:d2:de:72:b6:69:30:b3:98:
79:c5:32:2e:14:31:05:3b:52:a1:21:c1:c3:df:fc:
1f:98:2e:f3:33:45:48:70:81:d0:72:04:f2:81:7c:
b4:3e:23:6f:a4:c9:38:fb:d6:7e:23:67:32:78:12:
b7:9d:d5:2d:db:33:b3:5c:93:73:ef:44:56:73:40:
9a:95:4b:b1:cb:ed:c2:2b:a5:84:87:c4:3f:33:a6:
fe:78:6b:da:3c:7a:14:00:5b:04:04:8e:51:57:bf:
ab:d4:b4:7c:c0:f9:4f:40:b7:a0:eb:c2:ed:26:a8:
c2:6d:72:ed:32:e9:b1:cb:73:d4:bd:60:ef:b8:3e:
6d:4d:ee:f3:c8:e2:c3:f8:4a:bf:2d:2d:9b:ac:82:
75:93:5e:1b:7c:48:7f:b4:1e:bc:e0:09:a3:74:82:
6a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C6:E1:E9:AB:A1:BB:04:F4:55:43:86:3A:39:1B:16:07:18:BA:7D
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:3f:d8:da:a3:03:82:36:38:f6:57:76:08:25:6a:fb:e8:97:
cc:fc:82:3e:9f:4a:49:a5:62:fc:3a:4f:4d:5d:98:e2:7a:49:
21:11:9b:13:e1:52:8e:aa:31:9b:67:0b:92:2a:24:ef:5f:82:
f8:aa:39:1b:50:56:ad:2e:6e:b9:1f:3c:a0:6b:0c:06:fa:3d:
50:29:45:ff:4d:b2:02:56:f3:bd:4b:7d:0c:ff:6f:e4:ab:39:
c3:ca:eb:70:8a:e1:c3:75:d3:b6:d5:50:b0:49:c7:89:cb:a1:
ad:ae:90:d5:e7:7b:00:cd:3e:6f:ea:07:49:4e:60:a5:41:a9:
7c:e5:42:40:42:e6:58:99:44:31:9f:36:30:24:07:e1:34:d3:
2d:87:a4:c3:8a:41:07:1a:37:92:01:17:b3:bb:8d:11:43:03:
23:3b:1d:c6:2f:71:52:06:7e:23:8c:6c:5a:be:b3:14:e7:44:
e5:0a:e7:c0:38:0c:ac:27:18:bc:e0:43:81:f9:02:1a:56:84:
e5:d4:5b:95:af:38:84:e8:ad:4b:ee:32:65:77:84:24:e0:85:
f0:64:f6:42:17:c9:82:b2:b3:87:87:06:79:12:8a:2f:2b:05:
f3:2f:be:e7:ca:f6:73:43:22:20:39:21:2d:22:ee:bb:db:28:
8f:b2:8a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:06:46 2025 by rpki-client