Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
File: YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft (raw, json)
Hash identifier: VwA1gBR9nDz099zYqyrL/c4TZRGC78+qa9Szzis0OzI=
Subject key identifier: 03:B8:1A:8C:B6:D7:CE:A2:B5:D4:2A:55:FE:27:7E:70:32:25:EC:4D
Authority key identifier: 61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
Certificate issuer: /CN=61041121ccc6e65d933961fd572d59e261f21a31
Certificate serial: 0196102097DE55B02C19C46D337FF77E4BDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
Manifest number: 14DB
Signing time: Mon 07 Apr 2025 12:01:33 +0000
Manifest this update: Mon 07 Apr 2025 12:01:33 +0000
Manifest next update: Tue 08 Apr 2025 12:01:33 +0000
Files and hashes: 1: EwMUoWYW4dc0tRkkx15ciptmQak.roa (hash: IxyoruIJ2PWmvP6nW1K1qsmgYgo96Vwp6Gm5YCkQlWE=)
2: YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl (hash: g2x+sHMW381+7hPKFEK8Bv6JnDYxzCAvPVnWQgP2xmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 12:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:20:97:de:55:b0:2c:19:c4:6d:33:7f:f7:7e:4b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61041121ccc6e65d933961fd572d59e261f21a31
Validity
Not Before: Apr 7 12:01:33 2025 GMT
Not After : Apr 8 12:01:33 2025 GMT
Subject: CN=03b81a8cb6d7cea2b5d42a55fe277e703225ec4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d5:99:63:cc:d6:73:ec:e0:d0:2d:c5:c9:73:
80:1d:96:41:2e:ba:ce:90:18:44:23:c9:0a:6e:04:
de:c2:6c:3d:17:c9:3f:c6:37:95:33:72:17:c8:28:
dc:38:a5:3a:46:c2:71:80:c6:8b:03:f9:8a:77:43:
fb:89:60:8d:af:cd:82:2e:9a:bf:d3:bb:e8:6a:f5:
a8:22:f2:83:d5:de:84:40:0a:04:8e:91:85:ab:75:
16:f3:c1:b5:c4:7f:25:a2:15:06:cc:a9:e9:71:4c:
be:44:2b:9e:4c:d0:77:f1:9b:e9:1b:60:00:35:3b:
f3:c0:d1:4c:bd:de:11:57:54:54:b3:b0:36:1b:2d:
64:ce:2a:ca:3a:cd:1b:39:24:05:54:f7:ef:53:43:
cb:61:85:37:37:e0:3e:db:e9:d8:4c:f9:07:a1:bf:
8f:7d:ac:e1:26:0d:f5:83:2c:01:6f:da:03:d8:e6:
c4:9d:e8:21:2c:54:63:be:13:7d:d7:cc:46:b7:27:
34:13:6f:ee:4e:80:93:06:8b:de:05:bf:3c:e1:31:
5a:f5:3e:92:c0:53:ae:e0:65:3b:dd:f6:6e:c1:ef:
d1:42:34:3d:e2:ff:cf:40:fd:45:d6:20:50:b5:ae:
38:d6:e1:53:72:18:d0:b6:d0:34:ee:ef:24:34:cf:
f8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B8:1A:8C:B6:D7:CE:A2:B5:D4:2A:55:FE:27:7E:70:32:25:EC:4D
X509v3 Authority Key Identifier:
keyid:61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:9e:d1:1a:e1:06:5a:4b:0e:c1:82:2e:3e:6b:22:8c:64:8b:
c4:0a:3d:51:ca:f0:59:9f:13:36:06:50:29:f6:a3:90:b4:53:
a0:8c:32:3c:60:37:71:04:5b:67:73:06:e2:e2:5a:a7:48:68:
20:26:e4:a5:ab:de:2b:4b:1f:dd:bf:a5:5d:e1:63:3b:58:94:
38:35:e3:26:76:83:ad:9f:e4:72:05:a8:7a:15:77:03:b3:29:
4b:41:2c:57:ab:a1:cf:1c:a0:83:aa:55:28:28:96:61:fc:a5:
25:a8:bb:0d:fc:94:70:d1:28:2a:51:d3:56:fc:13:5b:29:f2:
45:13:52:4f:5b:04:db:d0:28:d9:ee:61:2d:2c:7a:ea:be:57:
8f:00:89:53:be:c9:c6:8f:06:dd:d8:c2:48:96:8a:c8:18:d4:
9b:3a:43:16:d1:1d:63:92:f5:d4:89:3e:a7:4e:7e:f6:44:6d:
2e:f9:88:24:88:b3:ea:44:00:a4:3a:34:cf:52:07:55:ca:aa:
31:f2:cc:ea:1a:bb:37:15:54:8d:57:4e:e9:d8:2e:18:75:e3:
02:18:7a:25:26:d0:53:a7:d6:cb:5c:7e:3c:87:82:bf:7f:a9:
b1:fa:1f:73:b7:a6:9f:df:e9:d1:2c:e9:a6:58:67:78:f6:81:
15:ab:59:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYQIJfeVbAsGcRtM3/3fkvbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxMDQxMTIxY2NjNmU2NWQ5MzM5NjFmZDU3MmQ1OWUyNjFm
MjFhMzEwHhcNMjUwNDA3MTIwMTMzWhcNMjUwNDA4MTIwMTMzWjAzMTEwLwYDVQQD
EygwM2I4MWE4Y2I2ZDdjZWEyYjVkNDJhNTVmZTI3N2U3MDMyMjVlYzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNWZY8zWc+zg0C3FyXOAHZZBLrrO
kBhEI8kKbgTewmw9F8k/xjeVM3IXyCjcOKU6RsJxgMaLA/mKd0P7iWCNr82CLpq/
07voavWoIvKD1d6EQAoEjpGFq3UW88G1xH8lohUGzKnpcUy+RCueTNB38ZvpG2AA
NTvzwNFMvd4RV1RUs7A2Gy1kzirKOs0bOSQFVPfvU0PLYYU3N+A+2+nYTPkHob+P
fazhJg31gywBb9oD2ObEneghLFRjvhN918xGtyc0E2/uToCTBoveBb884TFa9T6S
wFOu4GU73fZuwe/RQjQ94v/PQP1F1iBQta441uFTchjQttA07u8kNM/4TwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAO4Goy2186itdQqVf4nfnAyJexNMB8GA1UdIwQY
MBaAFGEEESHMxuZdkzlh/VctWeJh8hoxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVFRUkljekc1bDJUT1dIOVZ5MVo0bUh5R2pFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zODNiZTYtN2MzMS00ZGNhLWIzYzEt
ZGJhNmQ3NTk0YzE5LzEvWVFRUkljekc1bDJUT1dIOVZ5MVo0bUh5R2pFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8zODNiZTYtN2MzMS00ZGNhLWIzYzEtZGJhNmQ3NTk0YzE5
LzEvWVFRUkljekc1bDJUT1dIOVZ5MVo0bUh5R2pFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT57RGuEG
WksOwYIuPmsijGSLxAo9UcrwWZ8TNgZQKfajkLRToIwyPGA3cQRbZ3MG4uJap0ho
ICbkpaveK0sf3b+lXeFjO1iUODXjJnaDrZ/kcgWoehV3A7MpS0EsV6uhzxygg6pV
KCiWYfylJai7DfyUcNEoKlHTVvwTWynyRRNST1sE29Ao2e5hLSx66r5XjwCJU77J
xo8G3djCSJaKyBjUmzpDFtEdY5L11Ik+p05+9kRtLvmIJIiz6kQApDo0z1IHVcqq
MfLM6hq7NxVUjVdO6dguGHXjAhh6JSbQU6fWy1x+PIeCv3+psfofc7emn9/p0Szp
plhnePaBFatZyg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:03:08 2025 by rpki-client