Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
File: yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft (raw, json)
Hash identifier: hiKiNPRnvC8IQRydB0TKJhB9giUJxzZ5hMBWSaNyasY=
Subject key identifier: 67:2B:8F:BB:EF:5A:8D:15:C5:1A:3C:2C:2F:DB:2D:BF:D4:93:6F:AD
Authority key identifier: CA:18:3A:66:91:30:9A:79:D6:E6:60:5B:0D:5C:11:E3:FF:7E:91:94
Certificate issuer: /CN=ca183a6691309a79d6e6605b0d5c11e3ff7e9194
Certificate serial: 01965613260799E6DF2939C48BC02B8F96F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
Manifest number: 148D
Signing time: Mon 21 Apr 2025 02:00:17 +0000
Manifest this update: Mon 21 Apr 2025 02:00:17 +0000
Manifest next update: Tue 22 Apr 2025 02:00:17 +0000
Files and hashes: 1: yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl (hash: Lw+8P9NR+BKoHBQxVjCiszQ86MG5iyhV+ta/3CmNS9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:26:07:99:e6:df:29:39:c4:8b:c0:2b:8f:96:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca183a6691309a79d6e6605b0d5c11e3ff7e9194
Validity
Not Before: Apr 21 02:00:17 2025 GMT
Not After : Apr 22 02:00:17 2025 GMT
Subject: CN=672b8fbbef5a8d15c51a3c2c2fdb2dbfd4936fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:b3:09:8a:db:ad:cf:63:dc:b1:db:f0:e3:b2:
bd:c8:5d:29:8f:19:25:36:d8:19:2f:c3:ac:f2:c1:
e2:99:32:6a:0b:85:78:9f:46:a7:67:28:35:6c:f6:
be:6f:51:87:80:89:86:91:46:24:3d:4d:42:44:eb:
9a:69:ff:89:3a:95:58:da:d6:7e:d1:e5:fb:f9:6a:
5d:60:41:66:da:52:1c:49:c4:dc:7c:5e:16:af:bb:
d6:5f:28:2e:4a:fa:22:a5:a7:4c:9a:dd:14:dd:54:
9d:72:e5:a9:e9:ba:42:29:8f:e6:45:cb:f6:4a:3d:
e8:64:54:36:f4:53:7e:79:f1:44:58:a8:e2:bd:27:
d1:f2:09:ec:07:c0:7e:e9:7b:91:a2:6b:16:1a:1e:
d1:ee:bb:c9:d7:93:34:b4:3e:0e:f5:4d:51:61:96:
47:e5:27:f3:b9:a1:ed:00:68:57:96:a0:7a:5c:0f:
27:c8:66:c5:a0:d2:01:16:b9:ab:ca:3b:dc:bf:4d:
3c:f7:08:e3:0a:2b:5b:ff:1b:98:69:02:43:fd:6f:
bb:82:f2:16:0c:48:1d:32:a4:16:b6:d7:54:10:6e:
75:e8:e2:cf:d3:65:c2:bf:9d:fa:9c:57:a0:0a:17:
85:a3:f8:db:22:e7:d7:91:74:51:a7:5e:cb:9e:17:
51:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:2B:8F:BB:EF:5A:8D:15:C5:1A:3C:2C:2F:DB:2D:BF:D4:93:6F:AD
X509v3 Authority Key Identifier:
keyid:CA:18:3A:66:91:30:9A:79:D6:E6:60:5B:0D:5C:11:E3:FF:7E:91:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:cd:53:60:7a:9c:b0:c8:5f:8c:22:e1:b1:0e:27:36:ac:7f:
17:d8:5a:05:3e:18:97:c1:d2:4b:3a:36:2e:e2:f9:05:98:84:
4b:08:3c:58:f7:f4:b8:9c:01:bd:db:b2:b4:b7:51:7d:62:f0:
9f:6a:20:81:7e:8b:b3:e1:e7:dc:52:47:c8:df:61:fd:e8:7a:
57:0b:80:23:ca:35:5d:b3:ed:aa:0d:6f:7c:5a:9a:fa:02:91:
d5:55:0b:50:96:56:b1:8e:40:d1:fa:a6:f4:03:5d:aa:f4:e9:
79:a5:6b:57:de:0c:06:23:77:6f:5d:d5:69:03:55:52:f6:28:
c8:72:e0:30:67:73:a3:39:84:e8:27:27:35:47:a5:23:07:3b:
c6:80:60:da:f9:ce:3e:60:8b:81:cc:0d:c2:12:1e:cc:7c:5d:
3c:7d:91:8c:51:c3:f7:f3:41:8d:6c:58:d1:a0:4d:27:e5:5f:
a8:a9:13:f6:66:0a:90:dd:24:a5:95:30:86:cd:1f:81:c5:7e:
4b:f5:c5:cd:d5:6a:8f:92:a2:ec:b6:3a:86:d2:74:b5:cb:58:
aa:df:ff:b1:2d:d4:1d:49:04:75:ee:75:45:bc:2f:6e:60:fb:
f4:46:01:b5:2c:ad:eb:f9:a4:9b:79:a1:bb:88:37:68:df:0b:
30:c0:17:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZWEyYHmebfKTnEi8Arj5bwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMTgzYTY2OTEzMDlhNzlkNmU2NjA1YjBkNWMxMWUzZmY3
ZTkxOTQwHhcNMjUwNDIxMDIwMDE3WhcNMjUwNDIyMDIwMDE3WjAzMTEwLwYDVQQD
Eyg2NzJiOGZiYmVmNWE4ZDE1YzUxYTNjMmMyZmRiMmRiZmQ0OTM2ZmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+rMJitutz2Pcsdvw47K9yF0pjxkl
NtgZL8Os8sHimTJqC4V4n0anZyg1bPa+b1GHgImGkUYkPU1CROuaaf+JOpVY2tZ+
0eX7+WpdYEFm2lIcScTcfF4Wr7vWXyguSvoipadMmt0U3VSdcuWp6bpCKY/mRcv2
Sj3oZFQ29FN+efFEWKjivSfR8gnsB8B+6XuRomsWGh7R7rvJ15M0tD4O9U1RYZZH
5SfzuaHtAGhXlqB6XA8nyGbFoNIBFrmryjvcv0089wjjCitb/xuYaQJD/W+7gvIW
DEgdMqQWttdUEG516OLP02XCv536nFegCheFo/jbIufXkXRRp17LnhdRkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGcrj7vvWo0VxRo8LC/bLb/Uk2+tMB8GA1UdIwQY
MBaAFMoYOmaRMJp51uZgWw1cEeP/fpGUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWhnNlpwRXdtbm5XNW1CYkRWd1I0Xzkta1pRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8wNzc0YmItM2IwYi00ZjQ3LWIxNTEt
MTllNzA4NDY5Y2VlLzEveWhnNlpwRXdtbm5XNW1CYkRWd1I0Xzkta1pRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS8wNzc0YmItM2IwYi00ZjQ3LWIxNTEtMTllNzA4NDY5Y2Vl
LzEveWhnNlpwRXdtbm5XNW1CYkRWd1I0Xzkta1pRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANs1TYHqc
sMhfjCLhsQ4nNqx/F9haBT4Yl8HSSzo2LuL5BZiESwg8WPf0uJwBvduytLdRfWLw
n2oggX6Ls+Hn3FJHyN9h/eh6VwuAI8o1XbPtqg1vfFqa+gKR1VULUJZWsY5A0fqm
9ANdqvTpeaVrV94MBiN3b13VaQNVUvYoyHLgMGdzozmE6CcnNUelIwc7xoBg2vnO
PmCLgcwNwhIezHxdPH2RjFHD9/NBjWxY0aBNJ+VfqKkT9mYKkN0kpZUwhs0fgcV+
S/XFzdVqj5Ki7LY6htJ0tctYqt//sS3UHUkEde51RbwvbmD79EYBtSyt6/mkm3mh
u4g3aN8LMMAXIw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 10:50:19 2025 by rpki-client