Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
File: yS0-Y6HAGI17pgy4TXDk64m4rlE.mft (raw, json)
Hash identifier: zp9tHGi4v/8IN6H1CeshUVi/jtrMuc/9DLHudXmVmxQ=
Subject key identifier: 0B:42:87:64:BC:13:16:DA:DB:B1:C6:77:3B:CC:A3:A5:24:E3:44:72
Authority key identifier: C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
Certificate issuer: /CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Certificate serial: 0196515B26485133840ACA2A9F6CF637E36C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
Manifest number: 0584
Signing time: Sun 20 Apr 2025 04:00:50 +0000
Manifest this update: Sun 20 Apr 2025 04:00:50 +0000
Manifest next update: Mon 21 Apr 2025 04:00:50 +0000
Files and hashes: 1: yS0-Y6HAGI17pgy4TXDk64m4rlE.crl (hash: yUN01zdGq+FZ+zs5/w+cNCdUnogFiKtdiQmTWWTtKkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:26:48:51:33:84:0a:ca:2a:9f:6c:f6:37:e3:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Validity
Not Before: Apr 20 04:00:50 2025 GMT
Not After : Apr 21 04:00:50 2025 GMT
Subject: CN=0b428764bc1316dadbb1c6773bcca3a524e34472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bc:cc:95:5c:1d:06:e5:2a:ee:f9:61:aa:24:
9b:f7:0b:b4:25:2b:f6:7a:b9:e4:8b:51:9c:91:9b:
98:6a:cc:c4:af:c6:b3:9f:e4:58:7c:d0:c2:d0:d8:
90:4c:5d:1b:55:1c:72:a9:f2:96:53:69:e4:55:73:
c9:9c:81:e5:e1:97:d4:e8:07:4b:42:54:27:d7:b9:
2e:07:02:a5:67:38:1b:51:48:43:fc:2c:a0:ca:ae:
f0:30:55:ef:fc:0a:af:d7:bd:7b:21:da:1e:8e:59:
2f:56:a8:18:fa:75:31:5e:1a:9e:1a:6d:08:4a:49:
ce:a2:52:dc:d9:85:7e:91:0c:7e:f2:5e:77:40:0e:
d5:73:e5:3c:12:bd:df:f0:d7:84:4b:cd:b1:8d:c1:
7f:c4:32:ae:dc:7e:25:0c:bf:ff:84:d8:fe:5a:b3:
37:1a:bf:7c:7f:12:e3:31:23:ea:a3:da:e9:c9:24:
62:59:e5:a1:60:eb:45:b3:da:55:fb:f0:fa:0f:91:
75:bc:47:0b:1d:8c:77:6b:75:69:f2:d3:db:06:c8:
92:16:ff:66:6d:21:65:18:60:19:28:d7:29:18:45:
78:6a:45:15:71:8e:46:fb:20:12:92:67:8d:51:dc:
67:1f:36:af:ba:7d:83:0e:4e:e9:b9:a4:e1:a8:24:
c5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:42:87:64:BC:13:16:DA:DB:B1:C6:77:3B:CC:A3:A5:24:E3:44:72
X509v3 Authority Key Identifier:
keyid:C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:10:2a:75:f1:e1:1e:b4:d2:27:62:8f:18:8f:c8:10:bb:e1:
d8:27:10:fb:b8:2f:5e:df:b7:a1:4c:a4:3c:74:f1:7e:b1:d5:
c7:e8:3f:45:11:fd:58:48:10:99:65:34:aa:ad:e9:b8:74:b3:
28:cd:f8:36:28:ad:dd:34:ff:bd:67:5b:01:bb:7c:ac:73:dd:
33:db:0c:dd:29:f5:e2:27:95:29:ff:44:44:84:5e:b6:30:d3:
8f:08:4d:48:02:0a:fb:d5:77:5f:9b:33:58:7e:cb:60:57:9e:
b5:7e:60:18:67:a8:16:1f:5d:30:37:03:00:c6:60:10:27:dd:
12:d0:0a:c1:b8:dd:a2:33:3f:ab:c3:57:b1:89:cd:11:8f:7b:
45:1e:d2:fa:bc:80:3e:fb:8d:9d:a1:60:c0:77:56:33:a2:4c:
72:a2:ea:57:31:f9:ae:43:d9:e1:77:34:f1:1b:a8:66:1c:54:
2d:3d:e9:99:ec:9d:c0:a8:cf:6f:20:13:c1:ac:a7:27:ab:5d:
a6:74:aa:1a:30:fb:1a:24:bb:69:43:e3:42:e0:1c:41:b8:cb:
56:b9:68:2c:80:cc:f0:07:b5:6a:48:a0:6d:d6:ff:18:55:84:
0f:31:b8:df:c8:50:82:e1:5d:6d:50:d0:a3:24:2b:6f:54:c7:
3c:da:6a:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZRWyZIUTOECsoqn2z2N+NsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MmQzZTYzYTFjMDE4OGQ3YmE2MGNiODRkNzBlNGViODli
OGFlNTEwHhcNMjUwNDIwMDQwMDUwWhcNMjUwNDIxMDQwMDUwWjAzMTEwLwYDVQQD
EygwYjQyODc2NGJjMTMxNmRhZGJiMWM2NzczYmNjYTNhNTI0ZTM0NDcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybzMlVwdBuUq7vlhqiSb9wu0JSv2
ernki1GckZuYaszEr8azn+RYfNDC0NiQTF0bVRxyqfKWU2nkVXPJnIHl4ZfU6AdL
QlQn17kuBwKlZzgbUUhD/Cygyq7wMFXv/Aqv1717IdoejlkvVqgY+nUxXhqeGm0I
SknOolLc2YV+kQx+8l53QA7Vc+U8Er3f8NeES82xjcF/xDKu3H4lDL//hNj+WrM3
Gr98fxLjMSPqo9rpySRiWeWhYOtFs9pV+/D6D5F1vEcLHYx3a3Vp8tPbBsiSFv9m
bSFlGGAZKNcpGEV4akUVcY5G+yASkmeNUdxnHzavun2DDk7puaThqCTFjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAtCh2S8Exba27HGdzvMo6Uk40RyMB8GA1UdIwQY
MBaAFMktPmOhwBiNe6YMuE1w5OuJuK5RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVMwLVk2SEFHSTE3cGd5NFRYRGs2NG00cmxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hN2MzOWMtNjFjNy00MWQ2LWE4MTYt
N2ZlZjIzZjk3YTM0LzEveVMwLVk2SEFHSTE3cGd5NFRYRGs2NG00cmxFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9hN2MzOWMtNjFjNy00MWQ2LWE4MTYtN2ZlZjIzZjk3YTM0
LzEveVMwLVk2SEFHSTE3cGd5NFRYRGs2NG00cmxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVhAqdfHh
HrTSJ2KPGI/IELvh2CcQ+7gvXt+3oUykPHTxfrHVx+g/RRH9WEgQmWU0qq3puHSz
KM34Niit3TT/vWdbAbt8rHPdM9sM3Sn14ieVKf9ERIRetjDTjwhNSAIK+9V3X5sz
WH7LYFeetX5gGGeoFh9dMDcDAMZgECfdEtAKwbjdojM/q8NXsYnNEY97RR7S+ryA
PvuNnaFgwHdWM6JMcqLqVzH5rkPZ4Xc08RuoZhxULT3pmeydwKjPbyATwaynJ6td
pnSqGjD7GiS7aUPjQuAcQbjLVrloLIDM8Ae1akigbdb/GFWEDzG438hQguFdbVDQ
oyQrb1THPNpqpQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:57:48 2025 by rpki-client