Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
File: yYuCXzbpzDMDFclA3oAMurzjOXs.mft (raw, json)
Hash identifier: gPN0c9C3WgA15JKJpri6XtvrW//Qvb4f9dxoO6Sp960=
Subject key identifier: 37:9C:3D:64:25:40:25:C0:9A:3E:23:1E:54:67:E1:90:2F:49:C9:C4
Authority key identifier: C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B
Certificate issuer: /CN=c98b825f36e9cc330315c940de800cbabce3397b
Certificate serial: 01958B16D3B966DA5B2C5F1516C6DC04555C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
Manifest number: 10A0
Signing time: Wed 12 Mar 2025 16:01:23 +0000
Manifest this update: Wed 12 Mar 2025 16:01:23 +0000
Manifest next update: Thu 13 Mar 2025 16:01:23 +0000
Files and hashes: 1: 9fWXkacnWfLXH44Xb8HrXGzmknY.roa (hash: ueIT5017I7hv93aOprGzdVNSjT4YNhBA1fdwv5/AgdI=)
2: f9hfmHvrY5AwY36q7MIQ4falWVM.roa (hash: poIPC46neVOYvv7bF8o92LK9XXWLEMpfpDFVMKy16AU=)
3: gdv0H1VOQqEC1g3NPKKSe4k3m8c.roa (hash: SQr6HXuQcMmwRyJVvHRUD8exv8UImT2IUgeTeEYqV74=)
4: x5P0EDTdVktqZKkEboWB0PM5bas.roa (hash: r1ZTmgOlTkgzyPjFRQu4X4TsA76Y2Iw9iuXpWXvKbw0=)
5: yYuCXzbpzDMDFclA3oAMurzjOXs.crl (hash: 2TD237b5DiOOUzn2vG8oGtUBB36Xa4+CgHLfSu6L6cI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 16:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:16:d3:b9:66:da:5b:2c:5f:15:16:c6:dc:04:55:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c98b825f36e9cc330315c940de800cbabce3397b
Validity
Not Before: Mar 12 16:01:23 2025 GMT
Not After : Mar 13 16:01:23 2025 GMT
Subject: CN=379c3d64254025c09a3e231e5467e1902f49c9c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:41:0a:75:4f:97:3b:1a:d2:71:2c:e1:65:95:
17:68:88:7c:e8:ba:33:72:e8:db:e2:fa:44:fc:ad:
8a:0e:ca:0e:58:1a:33:f6:95:90:f6:c8:ec:44:92:
01:f2:2e:b4:0b:cc:9e:ab:56:57:97:12:8e:26:e6:
f4:af:e6:c6:3c:8f:39:1e:21:a8:78:8c:a9:d6:5c:
5b:45:a5:17:ba:0b:d3:72:58:59:ac:b5:54:1e:c9:
da:69:95:dd:49:ad:20:ec:71:75:88:cd:59:fe:34:
72:7c:24:21:49:ce:25:64:37:1f:70:9e:50:94:6d:
a7:92:95:93:8f:3e:de:c4:c8:39:04:a3:56:40:fd:
79:3e:39:bf:e6:5e:99:40:d0:94:6b:00:cd:80:20:
a8:25:e9:1c:66:36:c1:90:4f:6f:f3:07:9d:df:ec:
3b:e6:f6:39:ce:f9:a2:d4:b2:4b:d5:7b:8a:02:37:
b1:27:ca:e4:02:e9:e1:8e:d6:f4:e3:0a:38:1f:01:
60:fc:a9:fe:27:ec:c2:47:63:b6:66:7d:4b:7c:1b:
57:67:35:f1:74:99:b2:4f:6e:0d:82:af:8f:60:13:
e1:5a:ba:63:d6:62:61:4f:31:fe:c5:07:79:13:73:
a1:b3:7f:cb:61:26:d1:72:07:44:80:9b:04:fd:c3:
4e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:9C:3D:64:25:40:25:C0:9A:3E:23:1E:54:67:E1:90:2F:49:C9:C4
X509v3 Authority Key Identifier:
keyid:C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:51:42:ab:42:7d:40:c2:a1:ad:fa:15:b2:55:aa:81:5c:98:
ae:25:8c:dd:ad:c6:9b:df:f4:07:64:07:48:73:73:63:ab:4d:
09:96:94:0c:bd:62:d2:e8:29:f4:97:3b:a9:4f:1e:f4:52:ec:
32:94:b0:4c:ce:ff:91:b0:f9:19:c0:79:ca:55:ff:2e:4f:10:
e3:ff:4e:b5:0d:9d:30:fa:41:6b:a5:37:67:ea:3d:6f:0d:d2:
00:61:75:f5:d3:e8:77:61:2a:30:48:59:d4:87:c5:5f:3d:1f:
ec:e6:6a:85:b4:bf:21:24:7d:43:7f:ee:e0:2c:05:7f:7c:47:
ec:1b:54:23:20:06:ee:12:30:b7:dd:88:4c:b3:ec:9e:17:8f:
c0:f5:88:3f:16:49:44:57:54:d9:30:e3:4f:00:04:f8:de:0b:
e8:4a:72:e9:e6:30:b7:dc:7e:b1:64:cc:44:15:f7:29:db:cf:
01:2f:65:b9:1c:88:30:16:08:99:5c:f6:0f:9e:53:23:a3:6f:
1c:2a:92:53:43:a5:80:2d:d9:c4:2d:fe:7f:e7:5d:e1:b5:79:
50:b3:2e:96:97:9e:87:e4:6e:3b:38:e4:ab:da:12:66:f9:ab:
72:49:87:d8:e3:8e:be:08:47:dd:45:fc:2e:42:96:8d:7d:81:
50:66:03:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWLFtO5ZtpbLF8VFsbcBFVcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5OGI4MjVmMzZlOWNjMzMwMzE1Yzk0MGRlODAwY2JhYmNl
MzM5N2IwHhcNMjUwMzEyMTYwMTIzWhcNMjUwMzEzMTYwMTIzWjAzMTEwLwYDVQQD
EygzNzljM2Q2NDI1NDAyNWMwOWEzZTIzMWU1NDY3ZTE5MDJmNDljOWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3UEKdU+XOxrScSzhZZUXaIh86Loz
cujb4vpE/K2KDsoOWBoz9pWQ9sjsRJIB8i60C8yeq1ZXlxKOJub0r+bGPI85HiGo
eIyp1lxbRaUXugvTclhZrLVUHsnaaZXdSa0g7HF1iM1Z/jRyfCQhSc4lZDcfcJ5Q
lG2nkpWTjz7exMg5BKNWQP15Pjm/5l6ZQNCUawDNgCCoJekcZjbBkE9v8wed3+w7
5vY5zvmi1LJL1XuKAjexJ8rkAunhjtb04wo4HwFg/Kn+J+zCR2O2Zn1LfBtXZzXx
dJmyT24Ngq+PYBPhWrpj1mJhTzH+xQd5E3Ohs3/LYSbRcgdEgJsE/cNOiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDecPWQlQCXAmj4jHlRn4ZAvScnEMB8GA1UdIwQY
MBaAFMmLgl826cwzAxXJQN6ADLq84zl7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVl1Q1h6YnB6RE1ERmNsQTNvQU11cnpqT1hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9lYTM2MTQtZjA5MC00YTJiLTkzNTUt
Yjg5YTUxMWMzYmJkLzEveVl1Q1h6YnB6RE1ERmNsQTNvQU11cnpqT1hzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9lYTM2MTQtZjA5MC00YTJiLTkzNTUtYjg5YTUxMWMzYmJk
LzEveVl1Q1h6YnB6RE1ERmNsQTNvQU11cnpqT1hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS1FCq0J9
QMKhrfoVslWqgVyYriWM3a3Gm9/0B2QHSHNzY6tNCZaUDL1i0ugp9Jc7qU8e9FLs
MpSwTM7/kbD5GcB5ylX/Lk8Q4/9OtQ2dMPpBa6U3Z+o9bw3SAGF19dPod2EqMEhZ
1IfFXz0f7OZqhbS/ISR9Q3/u4CwFf3xH7BtUIyAG7hIwt92ITLPsnhePwPWIPxZJ
RFdU2TDjTwAE+N4L6Epy6eYwt9x+sWTMRBX3KdvPAS9luRyIMBYImVz2D55TI6Nv
HCqSU0OlgC3ZxC3+f+dd4bV5ULMulpeeh+RuOzjkq9oSZvmrckmH2OOOvghH3UX8
LkKWjX2BUGYDYg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:42:10 2025 by rpki-client