Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
File: y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft (raw, json)
Hash identifier: PbalzpR9FnlpJfNXGR9IrdXvwpaGnF1yRG0z1tbw1nc=
Subject key identifier: 14:04:79:C6:39:F8:87:0B:06:05:87:7A:47:22:12:6E:65:6E:B1:92
Authority key identifier: CB:FF:7F:D7:EE:11:EF:F8:91:4A:31:50:FC:D1:6A:64:8A:3C:7F:30
Certificate issuer: /CN=cbff7fd7ee11eff8914a3150fcd16a648a3c7f30
Certificate serial: 01964C6BFD7E885E6C36B83E053385DEA5AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
Manifest number: 0455
Signing time: Sat 19 Apr 2025 05:01:07 +0000
Manifest this update: Sat 19 Apr 2025 05:01:07 +0000
Manifest next update: Sun 20 Apr 2025 05:01:07 +0000
Files and hashes: 1: meIfpWGWvt-OCR5hELolYg558lc.roa (hash: b6ypOtwfgJ3TZwPfNgJCJZ3JwL1dV4492jTSEMjG2cE=)
2: y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl (hash: THrXILA2JAQtVflM/C1HcR31X1Qy4TbhaWjaBcKV5IE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:fd:7e:88:5e:6c:36:b8:3e:05:33:85:de:a5:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbff7fd7ee11eff8914a3150fcd16a648a3c7f30
Validity
Not Before: Apr 19 05:01:07 2025 GMT
Not After : Apr 20 05:01:07 2025 GMT
Subject: CN=140479c639f8870b0605877a4722126e656eb192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c8:82:40:00:13:10:e4:26:d1:74:0d:9e:3d:
24:75:62:10:37:b8:88:52:50:17:e9:77:0e:89:d6:
c4:ad:62:66:6b:59:5f:21:0f:14:38:b9:06:a2:9e:
d6:cf:81:ac:95:9c:95:a8:a6:ef:eb:6e:47:6b:82:
60:47:60:20:f9:98:04:a0:93:f1:0b:b9:35:95:cf:
94:c0:ab:99:0c:f4:04:b0:89:95:96:2d:0a:52:84:
f9:8b:78:5c:18:09:8a:8c:fa:73:c7:45:55:7d:ff:
e1:b1:4a:a0:18:76:1b:38:18:bf:cb:4b:09:6e:43:
57:a4:e7:74:7e:02:c8:70:d0:e9:d5:e6:3a:04:96:
3a:30:ef:10:67:52:fa:bc:76:09:18:ba:3e:4c:d1:
4d:bb:ee:56:55:8d:a9:f8:1c:d5:df:9b:4a:b8:26:
84:4f:fd:15:c0:84:0e:3d:36:14:5f:0e:68:12:3e:
ee:8d:fc:25:36:c3:ab:2d:7c:45:70:de:25:0c:e4:
39:c5:11:7f:61:8a:7f:bd:d9:65:80:5e:8b:0f:58:
75:90:2d:11:f9:f7:55:e6:bc:56:48:89:39:c2:d2:
94:23:4b:f3:08:59:f6:9e:24:0f:ab:3c:ce:e0:c1:
6d:b1:b1:c4:cd:d4:b7:d4:bb:68:91:41:c7:f0:38:
bd:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:04:79:C6:39:F8:87:0B:06:05:87:7A:47:22:12:6E:65:6E:B1:92
X509v3 Authority Key Identifier:
keyid:CB:FF:7F:D7:EE:11:EF:F8:91:4A:31:50:FC:D1:6A:64:8A:3C:7F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:28:b5:26:ce:d5:33:c6:aa:0b:79:e9:4a:e5:51:bb:9e:62:
bd:4f:26:df:8e:2c:61:75:af:be:27:d5:4f:7c:3d:d3:6a:f0:
73:c6:b4:17:69:6b:9e:bd:b2:bf:f5:ca:da:20:c0:de:33:95:
c6:a0:32:a5:5f:14:df:e1:8f:c5:71:7f:a2:94:a5:a3:ea:73:
bc:b2:62:00:0b:f9:b4:8e:f4:98:80:b1:b7:b9:43:24:ce:cc:
4a:4f:d4:82:ab:44:f5:41:17:ae:44:f6:8d:ab:25:c6:df:03:
19:bc:60:5e:57:29:f2:5c:e7:0d:44:20:49:73:8b:0b:06:24:
fb:b2:f0:a1:e6:b5:75:25:48:bf:88:57:d3:4c:b0:cb:6f:2f:
ba:3b:61:0f:6e:9a:ab:46:98:af:0e:67:b2:05:31:01:bc:b2:
4b:7c:59:00:fd:87:74:71:d9:45:60:45:3e:fa:6e:55:83:b8:
f1:60:58:ad:05:5e:7b:59:6e:12:65:42:10:c2:37:78:12:96:
bc:af:8f:f8:a7:33:ed:5f:ff:dc:40:bf:24:69:a7:dc:94:a1:
6a:01:ed:cb:14:66:69:aa:71:29:8f:13:36:80:9b:2b:bf:ad:
bb:99:7d:9d:70:91:5e:00:8d:5c:97:29:fe:ef:92:80:de:16:
14:de:ab:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZMa/1+iF5sNrg+BTOF3qWsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiZmY3ZmQ3ZWUxMWVmZjg5MTRhMzE1MGZjZDE2YTY0OGEz
YzdmMzAwHhcNMjUwNDE5MDUwMTA3WhcNMjUwNDIwMDUwMTA3WjAzMTEwLwYDVQQD
EygxNDA0NzljNjM5Zjg4NzBiMDYwNTg3N2E0NzIyMTI2ZTY1NmViMTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxciCQAATEOQm0XQNnj0kdWIQN7iI
UlAX6XcOidbErWJma1lfIQ8UOLkGop7Wz4GslZyVqKbv625Ha4JgR2Ag+ZgEoJPx
C7k1lc+UwKuZDPQEsImVli0KUoT5i3hcGAmKjPpzx0VVff/hsUqgGHYbOBi/y0sJ
bkNXpOd0fgLIcNDp1eY6BJY6MO8QZ1L6vHYJGLo+TNFNu+5WVY2p+BzV35tKuCaE
T/0VwIQOPTYUXw5oEj7ujfwlNsOrLXxFcN4lDOQ5xRF/YYp/vdllgF6LD1h1kC0R
+fdV5rxWSIk5wtKUI0vzCFn2niQPqzzO4MFtsbHEzdS31LtokUHH8Di93wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBQEecY5+IcLBgWHekciEm5lbrGSMB8GA1UdIwQY
MBaAFMv/f9fuEe/4kUoxUPzRamSKPH8wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveV85XzEtNFI3X2lSU2pGUV9ORnFaSW84ZnpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NTgxNDMtYWYwYy00OTNlLThlZDEt
OWY1Zjc4MDU2OWExLzEveV85XzEtNFI3X2lSU2pGUV9ORnFaSW84ZnpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NTgxNDMtYWYwYy00OTNlLThlZDEtOWY1Zjc4MDU2OWEx
LzEveV85XzEtNFI3X2lSU2pGUV9ORnFaSW84ZnpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASii1Js7V
M8aqC3npSuVRu55ivU8m344sYXWvvifVT3w902rwc8a0F2lrnr2yv/XK2iDA3jOV
xqAypV8U3+GPxXF/opSlo+pzvLJiAAv5tI70mICxt7lDJM7MSk/UgqtE9UEXrkT2
jaslxt8DGbxgXlcp8lznDUQgSXOLCwYk+7Lwoea1dSVIv4hX00ywy28vujthD26a
q0aYrw5nsgUxAbyyS3xZAP2HdHHZRWBFPvpuVYO48WBYrQVee1luEmVCEMI3eBKW
vK+P+Kcz7V//3EC/JGmn3JShagHtyxRmaapxKY8TNoCbK7+tu5l9nXCRXgCNXJcp
/u+SgN4WFN6rPg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:18:07 2025 by rpki-client