Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json)
Hash identifier: IQXK/WDzDSC7FDfMGWlfl2JUMKTjrodABs+qlgGsVos=
Subject key identifier: BC:2B:CB:E5:5F:DE:ED:8D:A7:14:4F:D3:51:EE:AF:6F:5F:EB:8C:EA
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 01964D7EC4BC222557AA8D44A66495EC27FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
Manifest number: 02D0
Signing time: Sat 19 Apr 2025 10:01:15 +0000
Manifest this update: Sat 19 Apr 2025 10:01:15 +0000
Manifest next update: Sun 20 Apr 2025 10:01:15 +0000
Files and hashes: 1: UVQQxsyFxE5G_GAZUd3A6ZXjkCE.roa (hash: zpm9oScjJUHtNk/CwO+EVZyjIHRYFCB8FAgH34Qnsvo=)
2: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: 48j5RJtITuH09ctcxOp7DAzUPYaMzM+WSnn7nhnYsfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 10:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:c4:bc:22:25:57:aa:8d:44:a6:64:95:ec:27:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: Apr 19 10:01:15 2025 GMT
Not After : Apr 20 10:01:15 2025 GMT
Subject: CN=bc2bcbe55fdeed8da7144fd351eeaf6f5feb8cea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fb:09:40:14:09:33:21:3a:00:8d:24:c7:5e:
c3:e6:a4:8e:0c:6f:07:ce:1c:1c:58:53:2c:93:ef:
f2:4a:15:88:c1:f9:84:ff:e3:b5:dd:31:24:6d:05:
c8:fd:07:c0:ca:53:40:8d:d8:b5:d7:1f:8d:f0:80:
08:46:d0:44:b3:5f:fa:4a:22:a0:53:cf:9e:20:c2:
3c:67:6d:c9:6b:7f:41:31:a9:17:dc:9c:7c:36:3c:
e0:c3:74:8a:38:33:1a:34:97:e3:24:2e:a7:bd:8c:
d1:a0:4b:f7:63:08:41:08:f5:ee:30:8a:8d:0b:2a:
0b:4d:e0:8e:aa:ac:38:1e:5b:12:a6:16:c4:ee:9f:
b2:a0:e6:b4:db:4d:83:a0:92:66:07:40:78:58:10:
33:5c:fd:a5:45:c3:e0:a1:0e:13:62:0a:22:4a:24:
ba:a1:d6:9a:9d:d9:10:ea:61:14:a9:ae:1e:56:64:
8c:ef:be:bb:1e:39:b8:b8:34:bc:e8:4f:ca:19:5f:
9b:fb:bc:75:29:64:72:5d:90:19:5d:7e:22:0d:6e:
f2:4c:4b:4a:93:39:96:e9:6a:9b:94:b2:75:fc:ba:
f0:60:f7:13:4a:3d:c2:59:0b:ee:35:06:d0:12:49:
0c:01:7a:2c:38:32:76:91:d3:29:15:a8:db:fe:45:
f6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:2B:CB:E5:5F:DE:ED:8D:A7:14:4F:D3:51:EE:AF:6F:5F:EB:8C:EA
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:fe:46:92:38:9d:37:26:d7:1b:66:4e:f0:fc:15:8a:ba:1d:
25:54:2a:2e:8d:ae:87:2b:bb:30:ef:ed:46:39:ce:a0:a4:85:
a7:0e:99:2e:75:60:08:e8:d2:66:fb:a3:90:50:be:a1:da:8a:
65:8c:42:59:69:72:dd:79:27:54:8c:2f:7a:8e:51:69:88:62:
b6:4a:d1:db:6d:30:d4:1a:4d:5e:1f:c9:21:43:b7:7f:5f:8f:
1c:00:7d:a3:25:ca:1b:da:07:cc:95:4c:79:2f:0e:f2:60:9f:
3c:2c:a9:4e:1c:81:6e:7e:f8:30:db:63:ad:67:b7:1f:8c:d0:
52:d4:4f:30:9c:ac:55:7a:7f:98:45:60:db:70:6f:f2:55:ee:
a9:d1:7a:f5:32:91:85:fa:29:a7:23:52:f4:a5:3e:fd:99:94:
04:e3:80:ae:7e:9d:1b:04:69:c0:d8:62:ca:3f:e2:67:b0:8c:
2c:05:4e:f4:9c:9d:ae:44:47:1f:3d:b4:3d:0c:30:cb:48:7f:
18:b3:1c:e8:2b:ad:b8:43:81:39:82:c1:81:db:c6:31:e0:6d:
e7:13:d4:1b:78:72:8b:a8:73:e6:8a:f2:95:11:2a:d2:a0:c9:
f1:c6:7f:76:51:f9:be:e6:bb:d5:b1:5b:c9:18:14:82:c5:1a:
f8:34:56:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNfsS8IiVXqo1EpmSV7Cf6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5YTNhNWU0MTFkZWFmMjI4NGZmZDAxNTMwYmZiNDFmODE2
Y2JiYTMwHhcNMjUwNDE5MTAwMTE1WhcNMjUwNDIwMTAwMTE1WjAzMTEwLwYDVQQD
EyhiYzJiY2JlNTVmZGVlZDhkYTcxNDRmZDM1MWVlYWY2ZjVmZWI4Y2VhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvsJQBQJMyE6AI0kx17D5qSODG8H
zhwcWFMsk+/yShWIwfmE/+O13TEkbQXI/QfAylNAjdi11x+N8IAIRtBEs1/6SiKg
U8+eIMI8Z23Ja39BMakX3Jx8Njzgw3SKODMaNJfjJC6nvYzRoEv3YwhBCPXuMIqN
CyoLTeCOqqw4HlsSphbE7p+yoOa0202DoJJmB0B4WBAzXP2lRcPgoQ4TYgoiSiS6
odaandkQ6mEUqa4eVmSM7767Hjm4uDS86E/KGV+b+7x1KWRyXZAZXX4iDW7yTEtK
kzmW6WqblLJ1/LrwYPcTSj3CWQvuNQbQEkkMAXosODJ2kdMpFajb/kX2EwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLwry+Vf3u2NpxRP01Hur29f64zqMB8GA1UdIwQY
MBaAFMmjpeQR3q8ihP/QFTC/tB+BbLujMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWFPbDVCSGVyeUtFXzlBVk1MLTBINEZzdTZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9iOGVhODMtNDc2NS00M2E2LWE1NGYt
MjBkMjQ5MDAxMzBhLzEveWFPbDVCSGVyeUtFXzlBVk1MLTBINEZzdTZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9iOGVhODMtNDc2NS00M2E2LWE1NGYtMjBkMjQ5MDAxMzBh
LzEveWFPbDVCSGVyeUtFXzlBVk1MLTBINEZzdTZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvf5Gkjid
NybXG2ZO8PwVirodJVQqLo2uhyu7MO/tRjnOoKSFpw6ZLnVgCOjSZvujkFC+odqK
ZYxCWWly3XknVIwveo5RaYhitkrR220w1BpNXh/JIUO3f1+PHAB9oyXKG9oHzJVM
eS8O8mCfPCypThyBbn74MNtjrWe3H4zQUtRPMJysVXp/mEVg23Bv8lXuqdF69TKR
hfoppyNS9KU+/ZmUBOOArn6dGwRpwNhiyj/iZ7CMLAVO9JydrkRHHz20PQwwy0h/
GLMc6CutuEOBOYLBgdvGMeBt5xPUG3hyi6hz5orylREq0qDJ8cZ/dlH5vua71bFb
yRgUgsUa+DRWwA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 18:35:24 2025 by rpki-client