Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
File: Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft (raw, json)
Hash identifier: siBsjg53K1eHL3l3R/gXEKlgSJHgNVsMhiBpBC28pu4=
Subject key identifier: D5:6D:57:67:AE:BC:F4:6F:6B:BC:27:34:CF:5C:50:E1:18:A2:78:23
Authority key identifier: 63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
Certificate issuer: /CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Certificate serial: 019641E8591BA4A14F9AB139CB312271C53C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
Manifest number: 0220
Signing time: Thu 17 Apr 2025 04:01:08 +0000
Manifest this update: Thu 17 Apr 2025 04:01:08 +0000
Manifest next update: Fri 18 Apr 2025 04:01:08 +0000
Files and hashes: 1: Qzda_dpxvv_9oCqZ0rKtNjYGFYA.roa (hash: yhmVIZybj8mBYPvdFgcuCe4v8sYhgAuDZKiw+Hdv0f4=)
2: Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl (hash: spXJ27cZpv7tF7Gl/1rL5g9JOPey6iurXsRjoH8X6+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 04:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:e8:59:1b:a4:a1:4f:9a:b1:39:cb:31:22:71:c5:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Validity
Not Before: Apr 17 04:01:08 2025 GMT
Not After : Apr 18 04:01:08 2025 GMT
Subject: CN=d56d5767aebcf46f6bbc2734cf5c50e118a27823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5e:8e:c0:62:45:52:bb:9e:bc:ac:c2:2e:1a:
7b:ac:3c:ef:dc:d9:d6:39:78:97:e7:92:61:59:5d:
87:ed:9b:02:e6:46:7f:c9:0b:66:5f:77:a2:10:ce:
30:58:6a:91:c5:83:67:18:82:f5:e7:c0:f5:02:be:
df:5a:56:da:7e:4b:29:09:2e:c1:be:bf:80:75:a1:
b1:02:18:20:96:e2:f5:58:2c:2c:c7:cb:9b:15:5b:
44:df:a3:48:e1:63:be:3c:9a:ba:1c:4e:1c:a4:6d:
06:ec:9a:b8:39:d0:39:bb:a8:a0:21:b8:46:6f:d6:
31:8e:5d:bd:dd:75:bc:11:f0:b2:ac:c3:d1:0b:6f:
3f:23:de:21:7d:0f:0f:81:bb:9c:52:ee:0b:57:7d:
22:c3:a3:4e:f1:93:d6:bc:f2:c9:d7:2c:14:03:c9:
76:28:2c:e6:e2:a1:55:fb:8e:2c:80:30:07:38:fc:
1e:81:53:f1:cd:cc:ad:92:c6:0f:70:71:a1:ca:97:
4d:43:68:13:8a:12:40:cf:89:7c:b9:ef:51:ed:0e:
e8:89:65:61:47:da:a3:f0:77:90:4f:6d:1a:89:b8:
03:db:bc:dd:9c:1d:fd:ed:b1:18:9a:d0:a9:71:1c:
3c:fc:9a:ce:b2:51:8e:02:7c:83:12:61:a2:a7:c2:
02:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:6D:57:67:AE:BC:F4:6F:6B:BC:27:34:CF:5C:50:E1:18:A2:78:23
X509v3 Authority Key Identifier:
keyid:63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:c6:a3:5f:7d:7e:89:a9:f6:4d:73:40:28:65:fc:d7:ce:c7:
59:23:b9:b2:11:d7:da:4a:87:92:fe:7f:30:2b:fd:e5:bf:9a:
91:a5:bc:64:b8:f8:12:d7:36:25:19:b6:7d:6c:12:81:38:e5:
22:35:16:ab:8d:66:f9:66:b0:e7:43:20:15:e7:96:2d:40:de:
0a:a4:10:3c:95:43:bc:70:07:55:f2:ac:20:40:20:1f:00:15:
0a:a6:6f:b5:67:90:41:8d:4e:d1:56:42:e2:aa:a5:24:f9:3e:
46:a2:10:31:be:85:ab:9c:b4:91:12:4f:85:16:3f:60:4f:0b:
4e:8a:58:4a:ec:b1:6d:6d:1a:5e:4a:e7:e9:92:44:40:0d:07:
62:7f:f5:4f:1b:6b:d5:69:72:f2:d0:51:9e:d3:39:bb:bc:d7:
19:08:c3:dc:29:c3:29:92:d6:44:a2:56:39:4c:1a:15:2b:c1:
64:58:2a:cf:a8:86:24:de:3e:66:d7:29:80:c9:f2:1e:cd:c0:
3b:a3:9a:b3:b4:59:64:85:ad:63:59:1f:f2:e8:7c:79:ff:01:
16:a0:48:4d:5b:34:5a:3c:40:eb:f6:a4:6f:b1:b5:69:80:96:
0a:d0:56:6f:a4:a2:d1:bb:1a:d1:11:26:c8:7c:ce:de:0a:57:
fc:34:fb:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZB6FkbpKFPmrE5yzEiccU8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzNjQyYzFjYTNkMzhjN2UxNWU2ODdlMGQ5NDg1Yzc4MjY5
MzhjMTAwHhcNMjUwNDE3MDQwMTA4WhcNMjUwNDE4MDQwMTA4WjAzMTEwLwYDVQQD
EyhkNTZkNTc2N2FlYmNmNDZmNmJiYzI3MzRjZjVjNTBlMTE4YTI3ODIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx16OwGJFUruevKzCLhp7rDzv3NnW
OXiX55JhWV2H7ZsC5kZ/yQtmX3eiEM4wWGqRxYNnGIL158D1Ar7fWlbafkspCS7B
vr+AdaGxAhggluL1WCwsx8ubFVtE36NI4WO+PJq6HE4cpG0G7Jq4OdA5u6igIbhG
b9Yxjl293XW8EfCyrMPRC28/I94hfQ8PgbucUu4LV30iw6NO8ZPWvPLJ1ywUA8l2
KCzm4qFV+44sgDAHOPwegVPxzcytksYPcHGhypdNQ2gTihJAz4l8ue9R7Q7oiWVh
R9qj8HeQT20aibgD27zdnB397bEYmtCpcRw8/JrOslGOAnyDEmGip8IC4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNVtV2euvPRva7wnNM9cUOEYongjMB8GA1UdIwQY
MBaAFGNkLByj04x+FeaH4NlIXHgmk4wQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80ZjU5MDMtZmY5Zi00ZWM2LTg2YzAt
MDdiMGVhNzVjMjRiLzEvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS80ZjU5MDMtZmY5Zi00ZWM2LTg2YzAtMDdiMGVhNzVjMjRi
LzEvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVMajX31+
ian2TXNAKGX8187HWSO5shHX2kqHkv5/MCv95b+akaW8ZLj4Etc2JRm2fWwSgTjl
IjUWq41m+Waw50MgFeeWLUDeCqQQPJVDvHAHVfKsIEAgHwAVCqZvtWeQQY1O0VZC
4qqlJPk+RqIQMb6Fq5y0kRJPhRY/YE8LTopYSuyxbW0aXkrn6ZJEQA0HYn/1Txtr
1Wly8tBRntM5u7zXGQjD3CnDKZLWRKJWOUwaFSvBZFgqz6iGJN4+ZtcpgMnyHs3A
O6Oas7RZZIWtY1kf8uh8ef8BFqBITVs0WjxA6/akb7G1aYCWCtBWb6Si0bsa0REm
yHzO3gpX/DT7Lg==
-----END CERTIFICATE-----
Generated at Thu Apr 17 13:26:43 2025 by rpki-client