Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: Uq97oQpttXXdcWyTklvvHgA9BHBTLnapfT6BYcuy3yw=
Subject key identifier: FB:02:0E:5F:D5:12:CB:F1:17:2A:18:94:EE:0A:EE:08:AB:35:E2:F9
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019619FE97D5EDEBDF656B450B9382271A77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 1047
Signing time: Wed 09 Apr 2025 10:00:37 +0000
Manifest this update: Wed 09 Apr 2025 10:00:37 +0000
Manifest next update: Thu 10 Apr 2025 10:00:37 +0000
Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: hTblP8TJ3VYYUQPKE+ItM0shFILp6kAH8MavMQyziDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 07:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:19:fe:97:d5:ed:eb:df:65:6b:45:0b:93:82:27:1a:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Apr 9 10:00:37 2025 GMT
Not After : Apr 10 10:00:37 2025 GMT
Subject: CN=fb020e5fd512cbf1172a1894ee0aee08ab35e2f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3c:04:44:0c:c1:ad:b7:4b:99:d3:34:a4:89:
e6:db:66:ec:fc:5e:14:e2:ce:da:b3:de:d4:e5:c9:
06:8e:bd:9b:18:46:9a:fd:42:b5:e6:90:4e:ad:80:
8f:2a:62:aa:6f:5d:92:fd:9d:22:42:4c:8e:c2:8a:
bd:bc:27:61:0d:f2:cc:fd:a3:5d:70:da:69:00:31:
86:1f:c3:ce:15:8e:a1:e4:9c:b3:8d:ef:1a:90:ef:
a5:a7:8e:a8:7c:8b:a6:38:27:46:73:2a:17:d4:ae:
8a:e6:8e:8f:b4:ff:c2:f5:55:44:19:5f:66:81:3c:
67:29:ef:22:a9:ae:40:c5:75:6b:63:ba:6d:26:b1:
4e:e7:a8:a1:b9:ab:c5:dd:25:6a:15:e3:30:1d:74:
7d:df:6b:75:da:f4:6e:4c:e5:e2:bb:ab:e3:25:98:
26:d4:62:f8:c9:a2:33:4c:52:b4:e5:d3:f9:ac:7e:
e3:27:ee:b0:6a:3d:7f:2b:9e:8d:29:d0:07:29:0f:
8a:e0:8f:40:78:0b:02:9d:60:47:fa:de:f2:87:74:
2c:2e:f2:f9:fc:a2:f0:0c:35:7c:fa:b2:6c:fe:27:
77:56:ac:81:cb:8c:66:50:01:49:c6:9a:28:e0:e8:
eb:51:59:a7:4e:72:83:1f:e1:dc:ca:3c:63:f7:1d:
5d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:02:0E:5F:D5:12:CB:F1:17:2A:18:94:EE:0A:EE:08:AB:35:E2:F9
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:e7:84:d4:f2:c4:1a:f0:8e:95:af:25:8a:59:93:e4:f8:ae:
ad:05:b4:f0:45:22:ad:85:02:1d:9d:35:73:7d:32:2e:a0:14:
3b:2a:a2:71:58:00:26:1f:d5:4c:a8:6b:52:a9:94:f0:10:37:
67:45:81:22:b7:17:d7:fa:1e:8b:f6:fa:5f:99:bf:cf:b6:63:
1d:42:2a:e4:47:8c:a0:51:14:54:ff:e4:fc:df:de:14:f6:00:
0c:d6:cb:6b:00:95:d0:05:a3:2a:1f:a1:bf:a4:e7:9d:10:f2:
69:57:ba:e5:ca:a5:19:ca:8b:ca:a7:41:54:61:d7:1e:e3:2e:
a7:57:0e:94:56:3d:66:64:d8:1a:b4:34:84:9f:41:90:c6:a2:
38:e1:bc:1d:82:ab:74:42:5c:8c:eb:c1:01:86:c5:49:81:1e:
98:5b:89:6b:ea:55:ca:65:37:27:44:b3:a5:6e:13:16:60:13:
20:3a:11:32:bb:f8:a2:11:f2:36:34:da:52:28:9a:c6:87:d3:
54:87:cb:2b:cb:a9:be:49:d4:18:cc:57:0b:a8:e9:fb:39:f4:
bb:0a:cf:3b:cc:79:f5:65:51:30:27:d7:cd:03:3e:07:65:a6:
b2:9f:be:af:f7:5e:1b:e9:18:4c:63:23:d8:ee:bf:f4:42:0d:
1f:03:76:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYZ/pfV7evfZWtFC5OCJxp3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw
NTM3NzAwHhcNMjUwNDA5MTAwMDM3WhcNMjUwNDEwMTAwMDM3WjAzMTEwLwYDVQQD
EyhmYjAyMGU1ZmQ1MTJjYmYxMTcyYTE4OTRlZTBhZWUwOGFiMzVlMmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTwERAzBrbdLmdM0pInm22bs/F4U
4s7as97U5ckGjr2bGEaa/UK15pBOrYCPKmKqb12S/Z0iQkyOwoq9vCdhDfLM/aNd
cNppADGGH8POFY6h5Jyzje8akO+lp46ofIumOCdGcyoX1K6K5o6PtP/C9VVEGV9m
gTxnKe8iqa5AxXVrY7ptJrFO56ihuavF3SVqFeMwHXR932t12vRuTOXiu6vjJZgm
1GL4yaIzTFK05dP5rH7jJ+6waj1/K56NKdAHKQ+K4I9AeAsCnWBH+t7yh3QsLvL5
/KLwDDV8+rJs/id3VqyBy4xmUAFJxpoo4OjrUVmnTnKDH+Hcyjxj9x1ddwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPsCDl/VEsvxFyoYlO4K7girNeL5MB8GA1UdIwQY
MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt
MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz
LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIueE1PLE
GvCOla8lilmT5PiurQW08EUirYUCHZ01c30yLqAUOyqicVgAJh/VTKhrUqmU8BA3
Z0WBIrcX1/oei/b6X5m/z7ZjHUIq5EeMoFEUVP/k/N/eFPYADNbLawCV0AWjKh+h
v6TnnRDyaVe65cqlGcqLyqdBVGHXHuMup1cOlFY9ZmTYGrQ0hJ9BkMaiOOG8HYKr
dEJcjOvBAYbFSYEemFuJa+pVymU3J0SzpW4TFmATIDoRMrv4ohHyNjTaUiiaxofT
VIfLK8upvknUGMxXC6jp+zn0uwrPO8x59WVRMCfXzQM+B2Wmsp++r/deG+kYTGMj
2O6/9EINHwN2bw==
-----END CERTIFICATE-----
Generated at Wed Apr 9 14:15:23 2025 by rpki-client