Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
File: YbGV0TBQ_zxGihSXeHELU1giUdk.mft (raw, json)
Hash identifier: J+jZ0BGP1UXr7EAPZKdraeTDbmkqivpTE0Vvd2iP1R0=
Subject key identifier: CA:89:3D:E0:79:8C:0F:8D:DD:FE:DB:7A:AD:3D:8C:8A:C9:27:BD:72
Authority key identifier: 61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
Certificate issuer: /CN=61b195d13050ff3c468a149778710b53582251d9
Certificate serial: 01964BFE186E9E0ABED53D574EE6ACA435B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
Manifest number: 14FD
Signing time: Sat 19 Apr 2025 03:01:05 +0000
Manifest this update: Sat 19 Apr 2025 03:01:05 +0000
Manifest next update: Sun 20 Apr 2025 03:01:05 +0000
Files and hashes: 1: Wt3X3B6NcZ-mxrNPh2fG99PqrRE.roa (hash: q1LYdMsfXSEFkYw+v/2PtBLKm0CXtMVR1H0DEe1ErnY=)
2: YbGV0TBQ_zxGihSXeHELU1giUdk.crl (hash: xk1lBGP0qLlb2HNywE1lkb2pAY/NjNEBnWkJTUut5Xk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fe:18:6e:9e:0a:be:d5:3d:57:4e:e6:ac:a4:35:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b195d13050ff3c468a149778710b53582251d9
Validity
Not Before: Apr 19 03:01:05 2025 GMT
Not After : Apr 20 03:01:05 2025 GMT
Subject: CN=ca893de0798c0f8dddfedb7aad3d8c8ac927bd72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6e:9b:e2:1d:71:0d:6e:f9:64:a9:a2:7a:97:
d9:eb:4c:eb:92:a7:b6:4a:dd:23:87:22:78:b8:e5:
fe:72:78:11:b6:cc:ef:5d:04:ff:5c:e2:99:26:cf:
7c:b2:e9:86:4b:39:9f:2d:8e:d8:02:9c:ed:f8:fe:
c7:26:b9:59:9f:43:df:9c:09:ad:cb:d3:ce:c5:fd:
0d:66:88:d3:81:c6:34:88:70:a4:60:e2:9e:20:77:
32:73:8a:f9:bc:60:7b:05:f9:05:0e:61:59:01:03:
fc:80:b1:d9:bb:ac:27:ad:da:bc:b3:bf:9a:28:f1:
7b:08:98:71:f4:b3:32:97:b9:62:2e:2a:51:0b:8e:
c0:c3:ec:64:12:f9:1c:3e:00:d2:40:f5:36:68:23:
63:ca:51:3d:3d:37:5d:ac:ae:e1:f6:f6:56:9b:24:
78:91:05:89:9a:42:be:bc:b5:7a:2d:78:10:c4:e0:
5e:e1:35:13:e5:ae:ba:ba:e7:ab:58:1b:70:fe:14:
13:08:97:27:d8:63:ee:c2:c7:02:fd:91:5f:6c:6e:
5d:7e:68:ee:bf:53:41:c9:f2:5f:cc:bc:dc:8c:d1:
fc:8f:d0:85:ae:67:eb:60:0b:d0:cf:a2:46:16:e4:
c1:9c:fe:e9:90:56:29:f1:a1:5c:9e:7e:f5:1e:77:
1d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:89:3D:E0:79:8C:0F:8D:DD:FE:DB:7A:AD:3D:8C:8A:C9:27:BD:72
X509v3 Authority Key Identifier:
keyid:61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:1a:5b:08:f0:c4:36:fc:fe:84:48:66:95:2d:ac:70:ae:9b:
b2:89:18:75:63:e2:ae:f7:bf:f0:3e:8f:2d:6d:2a:61:35:d9:
51:c6:ef:60:96:f9:d5:d0:58:97:00:02:9b:0e:c4:fa:6b:7e:
c3:a2:34:ff:0e:c3:a2:91:a4:b7:6a:52:df:ab:a3:3f:cd:9d:
f3:33:0e:aa:0f:df:cf:a2:a7:c8:17:3a:1c:74:2c:ff:05:9a:
6e:f6:3f:0b:ea:7a:4e:e4:90:ea:c7:c8:dd:9f:cd:24:ff:33:
af:bc:8b:9c:48:3c:0c:0c:bf:6f:15:0c:fc:30:48:c0:6e:d4:
9a:a9:eb:98:43:6d:9f:fe:f2:3c:b3:3f:77:e9:dd:26:5c:0b:
80:ce:3d:ee:4a:30:ef:95:c9:4c:3a:87:15:84:21:7f:31:00:
ff:fb:d9:85:b9:b3:64:1c:0a:06:9a:f6:2d:b3:f2:91:cf:9c:
d0:d2:0c:ea:6f:08:4e:86:da:f0:5e:7b:9b:51:63:8c:e2:13:
b4:6a:5a:c5:bd:ba:1b:e1:ca:e3:62:8c:aa:ab:86:ee:9b:7e:
fc:e0:6f:d1:fa:fb:34:07:53:12:c8:0f:f3:94:ad:5d:00:d7:
8e:03:15:01:0b:63:0d:39:e8:30:52:71:91:b7:07:0f:78:45:
9d:a6:c3:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZL/hhungq+1T1XTuaspDW1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYjE5NWQxMzA1MGZmM2M0NjhhMTQ5Nzc4NzEwYjUzNTgy
MjUxZDkwHhcNMjUwNDE5MDMwMTA1WhcNMjUwNDIwMDMwMTA1WjAzMTEwLwYDVQQD
EyhjYTg5M2RlMDc5OGMwZjhkZGRmZWRiN2FhZDNkOGM4YWM5MjdiZDcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2m6b4h1xDW75ZKmiepfZ60zrkqe2
St0jhyJ4uOX+cngRtszvXQT/XOKZJs98sumGSzmfLY7YApzt+P7HJrlZn0PfnAmt
y9POxf0NZojTgcY0iHCkYOKeIHcyc4r5vGB7BfkFDmFZAQP8gLHZu6wnrdq8s7+a
KPF7CJhx9LMyl7liLipRC47Aw+xkEvkcPgDSQPU2aCNjylE9PTddrK7h9vZWmyR4
kQWJmkK+vLV6LXgQxOBe4TUT5a66uuerWBtw/hQTCJcn2GPuwscC/ZFfbG5dfmju
v1NByfJfzLzcjNH8j9CFrmfrYAvQz6JGFuTBnP7pkFYp8aFcnn71Hncd4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMqJPeB5jA+N3f7beq09jIrJJ71yMB8GA1UdIwQY
MBaAFGGxldEwUP88RooUl3hxC1NYIlHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWJHVjBUQlFfenhHaWhTWGVIRUxVMWdpVWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8yZjNjMTktNTZkNS00OTI0LThiY2It
YmFjNDcyYWI3YjZhLzEvWWJHVjBUQlFfenhHaWhTWGVIRUxVMWdpVWRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8yZjNjMTktNTZkNS00OTI0LThiY2ItYmFjNDcyYWI3YjZh
LzEvWWJHVjBUQlFfenhHaWhTWGVIRUxVMWdpVWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAixpbCPDE
Nvz+hEhmlS2scK6bsokYdWPirve/8D6PLW0qYTXZUcbvYJb51dBYlwACmw7E+mt+
w6I0/w7DopGkt2pS36ujP82d8zMOqg/fz6KnyBc6HHQs/wWabvY/C+p6TuSQ6sfI
3Z/NJP8zr7yLnEg8DAy/bxUM/DBIwG7UmqnrmENtn/7yPLM/d+ndJlwLgM497kow
75XJTDqHFYQhfzEA//vZhbmzZBwKBpr2LbPykc+c0NIM6m8IToba8F57m1FjjOIT
tGpaxb26G+HK42KMqquG7pt+/OBv0fr7NAdTEsgP85StXQDXjgMVAQtjDTnoMFJx
kbcHD3hFnabDwQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 07:13:51 2025 by rpki-client