Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
File: YAluN0CSzDAL0LsGxBZAky7Pi0k.mft (raw, json)
Hash identifier: MHgqT0MyS5XmdfbEqlE6ABhYULx9rSXiJ6f6SggCZbM=
Subject key identifier: 98:BB:B3:E2:0F:F6:E6:FA:2C:F5:0B:FA:F0:04:71:42:99:9E:49:88
Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49
Certificate serial: 01965537EA81CA78ECCB775FCE18DB2402E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
Manifest number: 1490
Signing time: Sun 20 Apr 2025 22:00:49 +0000
Manifest this update: Sun 20 Apr 2025 22:00:49 +0000
Manifest next update: Mon 21 Apr 2025 22:00:49 +0000
Files and hashes: 1: 526G98YrX5YRgU8kSVFlOR-68SU.roa (hash: EfmIyH+1frBE08mLPE+N4lUdJCEbw7QSSljLZgrUP1M=)
2: YAluN0CSzDAL0LsGxBZAky7Pi0k.crl (hash: QhYTtESwu+KJwRV/GaNi5QAuww1Q52LpADtE0oW1rX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:ea:81:ca:78:ec:cb:77:5f:ce:18:db:24:02:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49
Validity
Not Before: Apr 20 22:00:49 2025 GMT
Not After : Apr 21 22:00:49 2025 GMT
Subject: CN=98bbb3e20ff6e6fa2cf50bfaf0047142999e4988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:42:51:1e:7d:fc:5f:51:27:46:81:7a:7b:de:
f8:45:5b:88:90:f4:e8:77:fb:3e:a2:75:d5:4c:c4:
f6:9d:50:e3:eb:73:5c:96:18:e3:4d:37:88:4a:71:
57:6f:3f:5c:1a:84:95:c4:cb:a7:53:ca:55:e5:ce:
10:a4:6c:fa:a2:46:f0:34:ad:46:30:a5:f6:f9:aa:
27:cb:f4:5f:07:01:b4:8a:5e:8a:bd:a0:6c:22:fc:
46:e7:c7:95:6e:eb:49:fa:e3:9a:b5:08:4a:e0:ea:
ed:25:12:73:2c:c0:64:f7:55:ed:3b:d3:25:09:a1:
27:7d:bd:ee:f1:93:3d:6e:59:27:e7:96:02:07:48:
2c:76:9f:e8:f2:7a:bd:2c:97:cb:e4:3d:1c:b9:34:
d8:76:4f:1e:22:d4:2b:c2:db:2d:4c:5b:82:f2:ef:
da:67:bc:5e:45:bc:05:0f:32:88:85:37:67:14:63:
9f:6e:af:3e:74:51:6d:b8:44:03:38:1e:01:9a:2e:
fc:d4:78:17:fc:94:ff:a9:47:e8:29:29:38:b0:a1:
62:d3:68:9c:0c:97:c2:62:d1:d5:aa:cb:b4:b6:6a:
ef:28:46:8f:63:c6:02:fd:5a:1f:5b:cd:f9:54:91:
f5:5a:b5:82:bb:7e:dc:13:03:9e:a8:a3:b6:6a:f7:
36:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:BB:B3:E2:0F:F6:E6:FA:2C:F5:0B:FA:F0:04:71:42:99:9E:49:88
X509v3 Authority Key Identifier:
keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:89:cf:49:3a:92:ac:1b:fe:14:a2:7f:41:96:ad:d8:90:ad:
75:60:7d:dc:e7:a0:dc:37:e0:6c:c9:7c:0b:7f:af:a1:98:37:
e3:56:91:db:6b:1f:01:df:4c:9b:09:55:bd:7a:6e:58:da:c5:
f1:99:01:55:2c:ec:2f:18:1f:44:c7:57:dd:51:2d:11:4e:b3:
03:64:0e:b3:b4:68:99:49:fb:ce:c8:ba:1d:0f:ad:df:ad:3f:
c0:a7:56:79:46:45:2d:38:e8:27:5b:2a:b8:f3:d7:c2:a5:9f:
9c:69:60:0c:c2:b2:41:36:64:be:82:a7:34:71:18:72:ab:95:
f4:f5:60:30:01:4a:eb:1b:ea:73:2d:9a:03:f9:3d:84:87:9f:
f5:6a:d0:61:fa:69:2f:01:b7:28:dd:1e:35:51:c0:23:bf:81:
75:91:a8:0a:6c:db:e5:7e:c6:f9:97:7e:d6:8e:5e:47:06:61:
27:bb:43:85:5c:e5:b4:7f:d5:1e:d7:fe:9a:73:8f:dc:38:d3:
f7:07:e9:85:60:33:9a:03:da:ce:91:70:21:39:35:4b:69:d9:
7c:5d:29:8f:5b:2e:9b:9e:e0:e1:e0:0e:b2:17:37:88:72:15:
6a:86:d6:f0:81:8c:02:e6:45:5e:c8:22:98:6c:92:c3:72:49:
a3:25:ab:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVN+qBynjsy3dfzhjbJALpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMDk2ZTM3NDA5MmNjMzAwYmQwYmIwNmM0MTY0MDkzMmVj
ZjhiNDkwHhcNMjUwNDIwMjIwMDQ5WhcNMjUwNDIxMjIwMDQ5WjAzMTEwLwYDVQQD
Eyg5OGJiYjNlMjBmZjZlNmZhMmNmNTBiZmFmMDA0NzE0Mjk5OWU0OTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAikJRHn38X1EnRoF6e974RVuIkPTo
d/s+onXVTMT2nVDj63NclhjjTTeISnFXbz9cGoSVxMunU8pV5c4QpGz6okbwNK1G
MKX2+aony/RfBwG0il6KvaBsIvxG58eVbutJ+uOatQhK4OrtJRJzLMBk91XtO9Ml
CaEnfb3u8ZM9blkn55YCB0gsdp/o8nq9LJfL5D0cuTTYdk8eItQrwtstTFuC8u/a
Z7xeRbwFDzKIhTdnFGOfbq8+dFFtuEQDOB4Bmi781HgX/JT/qUfoKSk4sKFi02ic
DJfCYtHVqsu0tmrvKEaPY8YC/VofW835VJH1WrWCu37cEwOeqKO2avc2AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJi7s+IP9ub6LPUL+vAEcUKZnkmIMB8GA1UdIwQY
MBaAFGAJbjdAkswwC9C7BsQWQJMuz4tJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85MWNmZTctNWMyZC00NzRhLWI1ODct
YzQ1ODUyYzdiZTIwLzEvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC85MWNmZTctNWMyZC00NzRhLWI1ODctYzQ1ODUyYzdiZTIw
LzEvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV4nPSTqS
rBv+FKJ/QZat2JCtdWB93Oeg3DfgbMl8C3+voZg341aR22sfAd9MmwlVvXpuWNrF
8ZkBVSzsLxgfRMdX3VEtEU6zA2QOs7RomUn7zsi6HQ+t360/wKdWeUZFLTjoJ1sq
uPPXwqWfnGlgDMKyQTZkvoKnNHEYcquV9PVgMAFK6xvqcy2aA/k9hIef9WrQYfpp
LwG3KN0eNVHAI7+BdZGoCmzb5X7G+Zd+1o5eRwZhJ7tDhVzltH/VHtf+mnOP3DjT
9wfphWAzmgPazpFwITk1S2nZfF0pj1sum57g4eAOshc3iHIVaobW8IGMAuZFXsgi
mGySw3JJoyWrjw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:27:11 2025 by rpki-client